Scam of the day – April 29, 2026 – ADT Suffers Massive Data Breach (Again)

by | Apr 28, 2026 | Scam of the day

ADT, the country’s largest home security company in the United States  became aware on April 20th that it had suffered a data breach which, according to Have I Been Pwned, a terrific website that tracks data breaches, resulted in person information of 5.5 million people being compromised.   According to Have I Been Pwned, the sensitive data included email addresses, names, dates of birth, phone numbers, physical addresses and partial government0-issued IDs.  This information can readily lead to identity theft.  ADT also acknowledged that in some instances the last four digits of Social Security numbers were also compromised.  Some people might mistakenly believe that having only the last four digits of their Social Security number in the possession of scammers does not put them in jeopardy.   It most certainly does.  The first three digits of your Social Security number relate to where you live and is easily determined; the second two digits are group numbers that until 2011 were based on when you obtained your Social Security number and are even available on the Social Security website for years up till 2011, but even for numbers issued after that date, there are only 99 possibilities so it is not particularly difficult for an identity thief to determine your Social Security number with just the last four digits.  Armed with your Social Security number, a criminal can make you a victim of costly identity theft quite readily.

ADT had previously suffered data breaches in August and October of 2024.

TIPS

One important lesson is to limit the amount of personal information that you provide to companies and websites whenever possible.  For example, your doctor doesn’t need your Social Security number for his or her records and neither do home security companies.

You should make sure that you have a unique password for each of your online accounts so that if one of your passwords is compromised in a data breach, all of your accounts will not be in danger.  If your information is compromised in a data breach, you should immediately change the password for that account.

If you have not already done so, set up dual factor authentication for each of you accounts where it is available. This will protect you from having those accounts stolen by someone who may have access to your password.  However it should be noted that the malware responsible for this particular data breach is able to bypass password requirements and dual factor authentication.

Freezing your credit is also something everyone should do.  It is free and easy to do.  In addition, it protects you from someone using your identity to obtain loans or make large purchases even if they have your Social Security number.  If you have not already done so, put a credit freeze on your credit reports at all of the major credit reporting agencies.  Here are links to each of them with instructions about how to get a credit freeze:
Everyone also should monitor their credit reports regularly for indications of identity theft.  The three major credit reporting agencies now provide free weekly access to your credit reports so you can monitor your credit reports easily on your own.  Here is the only link to use to get your free credit reports.https://www.annualcreditreport.com/index.action
Some scammers have websites that appear to offer “free” credit reports, but if you read the fine print, you often may find that you have signed up for unnecessary services.
Finally, be wary of anyone who calls you purportedly to assist you who asks for personal information in regard to this data breach as that is a favorite tactic of the hackers to lure you into providing personal information that can lead to your becoming a victim of identity theft.

If you are not a subscriber to Scamicide.com and would like to receive daily emails with the Scam of the day, all you need to do is sign up for free using this link. https://scamicide.com/scam-of-the-day/