Home security company ADT disclosed on April 24, 2026, that cybercriminals breached its systems and exfiltrated a "limited set" of customer and prospective customer data. The company said it detected the unauthorized access and moved quickly to contain the incident.
What Happened
ADT confirmed that threat actors gained unauthorized access to the company's systems. While the company described the stolen dataset as limited, the breach affects both existing customers and individuals who had inquired about ADT's services — a particularly sensitive category given the nature of ADT's business.
Home security customers entrust ADT with detailed information about their residences, security configurations, and daily routines. Even a "limited" dataset in this context carries elevated risk for affected individuals.
What Was Stolen
ADT has not disclosed the exact fields compromised, but in previous breach notifications the company has referenced data including:
- Customer names and contact details
- Email addresses
- Physical addresses
- Account and service information
The company indicated it is continuing its investigation to determine the full scope of impacted records.
Context: A Pattern of ADT Breaches
This is not ADT's first encounter with data theft. In mid-2024, a threat actor was found selling purported ADT customer data on criminal forums. That breach involved approximately 30,000 customer records including email addresses, phone numbers, and postal codes.
More recently, in April 2026, the ShinyHunters threat group claimed responsibility for an ADT breach and threatened to leak data. The current intrusion may be related or represent a separate incident — ADT has not publicly confirmed a link.
The recurring nature of these incidents suggests ADT may be dealing with systemic exposure in how it stores or processes customer data, rather than isolated one-off attacks.
ADT's Response
ADT said it:
- Detected the unauthorized access and initiated containment measures
- Launched an investigation with cybersecurity professionals
- Is notifying affected customers
- Has taken steps to prevent similar intrusions
The company did not specify whether law enforcement has been notified or whether a ransom demand was made.
Impact for Customers
If you are an ADT customer or have previously inquired about their services:
- Monitor for phishing emails or phone calls impersonating ADT
- Watch your email accounts for unusual activity — contact details may be used in follow-on attacks
- Be alert to physical security implications if your home address and security system details were included in the stolen data
- Consider placing a credit freeze if financial information may have been exposed
ADT customers with concerns should contact the company directly and request specifics about whether their data was involved.
The Broader Picture
Data breaches at home security and physical security companies represent a unique threat category. Unlike a retail breach exposing purchase history, a home security breach can expose:
- Whether a property has a monitored alarm system
- Entry/exit patterns and daily schedules
- Sensor placement and coverage gaps
- Emergency contact information
This combination of physical and digital data makes home security breaches particularly actionable for criminals targeting high-value properties or individuals.
The ADT incident is a reminder that protecting customer data in the security industry must be held to an even higher standard than in most other sectors.