A dark web actor has taken responsibility for a data breach involving ADT, the American security firm renowned for its residential and business alarm monitoring services. On August 1, 2024, an individual or group operating under the alias “netnsher” publicly announced their involvement in this significant breach.
According to the threat actor post, the ADT data leak has compromised over 30,812 records, including approximately 30,400 unique email addresses.
The leaked information encompasses a range of personal details such as customer emails, physical addresses, user IDs, and purchase history. The threat actor “netnsher” not only released these records but also provided a sample as proof of the ADT breach.
Decoding the ADT Data Breach Claims
The ADT data leak was initially reported on July 31, 2024, and became public the following day. Notably, another data leak involving ADT occurred earlier on July 8, 2024, when the threat actor known as “Abu_Al_Sahrif” disclosed internal documents from ADT spanning from 2020 to 2023.
It remains unclear whether the recent breach by “netnsher” involved data from this earlier leak or was obtained through a different method.
The impact of this ADT data breach is considerable, given that ADT Inc. is a major player in the security industry with a revenue of approximately $5 billion. The exposed records contain sensitive information that could potentially lead to identity theft or phishing attacks if misused.
The Cyber Express has contacted ADT Inc. for comments on this incident. In their response, ADT confirmed their awareness of the incident and stated, “ADT is aware of this claim, and it is under investigation.” The company is currently evaluating the full extent of the breach and its implications for affected customers.
Previous Cyberattacks Linked to netnsher
This ADT breach follows a series of similar incidents involving the threat actor “netnsher.” On April 26, 2024, this TA was linked to another data breach claim involving Kernel Finance, an Indian GST billing solution, which allegedly exposed over 7,000 bank account numbers and other sensitive data.
On the same day, “netnsher” also leaked critical access tokens and files from the Law Firm Banking Trustnota, further highlighting their capabilities and the potential risks posed by their activities, reported by Constella Intelligence.
The threat actor also claimed a cyberattack on RestoreCord last month, selling 840k lines of RestoreCord database, including DiscordID, Discord Name, IP address, and dates. As for the ADT data breach, this is an ongoing story and The Cyber Express will provide updates and further details as they become available.
The situation remains fluid, and both ADT and affected customers should remain vigilant in the face of potential misuse of the exposed information.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.
