Re: "ADT failed to monitor consumers’ accounts"
The problem is, how does ADT know the difference between a mail address the customer entered or an email address that was entered by an employee when visiting the customer? I assume it was private email address, so probably wouldn't have been suspicious in a log, on its own - just another gmail address, for example.
If their system checked for the same address on multiple accounts, it might work - unless he created a different address for each account he compromised...
I agree ADT has some fault here, but no matter how hard you make it, somebody will come up with a way around your precautions.