DISA Global Solutions, a Texas-based company specializing in background screening, drug testing, and compliance, has disclosed a major data breach that impacts 3.3 million individuals. The breach, which occurred in 2024, involves personal information of individuals who used DISA’s services, either through their current or former employers.
The breach was discovered on April 22, 2024, after an intrusion into a part of DISA’s network, which had been ongoing since February 9, 2024. The company has since conducted a thorough investigation into the stolen data, revealing that the hackers accessed sensitive information, including names, Social Security numbers, driver’s license details, financial account information, and more.
While DISA has not confirmed if the breach was linked to a ransomware attack, the company emphasized that it has not seen any evidence of the compromised information being misused. The company is offering affected individuals one year of free credit monitoring and identity restoration services.
DISA, which serves over 55,000 customers, says that no ransomware group has taken responsibility for the attack. The company has notified those impacted and continues to monitor the situation.
Sources: DISA Global Solutions data breach notice
