ADT HACKED BY CYBERCRIMINALS FOR THE SECOND TIME IN TWO MONTHS

   The well-known leading provider of home security systems in the US has gone public to disclose a second breach in the last few months. A notification was filed with the SEC on Monday, stating that a breach took place from an unnamed third party that ADT is partnered with in business transactions. The company stated that it uncovered that an unauthorized actor had illegally accessed ADT’s network, as early as the first week of October, using credentials that were compromised through a third-party business partner. Some of ADT’s operations were put on hold to mitigate the breach. The third party has been notified that its network had been compromised and ADT is now working closely with them, the federal law, and outside security experts to alleviate the situation. Details of the incident released state that cybercriminals were able to access and exfiltrate “certain encrypted internal ADT data associated with employee user accounts during the intrusion. Sensitive data from over 6 million customers is believed to not be compromised and includes the security systems of customers at home. Recently this past August, ADT systems were confirmed of indicators of compromise resulting in hackers accessing customer databases that were later put up for sale in the cyber black market. The bad actors claimed to have stolen over “30,812 records, including 30,400 unique emails from ADT databases. This included customer ID numbers, the products purchased, and URLs to customers’ portals. As a precaution, anyone with an ADT account should monitor and report any suspicious changes associated with their account and bank statements.