Three breaches in ten days. In two of them, the attacker never wrote a line of code.
ADT, Medtronic, and Trellix confirmed unauthorized access between April 17 and May 2, 2026. Two of the three breaches started with a phone call. No malware. A conversation.
