The ShinyHunters extortion group breached ADT earlier this month and published an 11GB archive of stolen personal information, with Have I Been Pwned estimating 5.5 million affected. ADT said the April 20 intrusion exposed names, phone numbers, addresses and, in a small percentage of cases, dates of birth and last four digits of SSNs/Tax IDs, but no payment data or customer security systems were compromised. #ShinyHunters #ADT
Keypoints
- ShinyHunters leaked an 11GB cache after failing to extort ADT.
- Have I Been Pwned analyzed the data and reported 5.5 million unique individuals affected.
- ADT detected the breach on April 20 and confirmed limited access to personal information.
- Attackers claimed to gain access by vishing an employee’s Okta SSO and extracting data from Salesforce.
- ShinyHunters has conducted widespread vishing campaigns targeting SSO accounts and connected SaaS platforms.