Companies that process huge amounts of user data are often the least cautious about it. Last year, public data breaches across the country revealed a record of 2.7 billion. The company’s entire business model was built around collecting data from public sources and creating detailed user profiles for people in the US and beyond. Another violation is now underway, this time affecting employee screening provider Disa Global Solutions.
The violation has published data on more than 3.3 million individuals and raises serious concerns about how sensitive personal information is processed. Millions of people are currently at risk of identity theft and fraud.
Be protected and informed! Get security alerts and expert technical tips – Sign up for The CyberGuy Report in your cart now.
Hacker illustration (Kurt “Cyberguy” Knutsson)
What you need to know
DISA Global Solutions, a company specializing in employee screening services, recently unveiled a major data breaches affecting more than 3.3 million individuals. The Texas-based company serves more than 55,000 companies, including a third of Fortune 500 companies, offering background checks, drug and alcohol testing and compliance solutions.
The violation began on February 9, 2024, when an unauthorized party accessed part of DISA’s network. Surprisingly, no intrusion was detected for more than two months until it discovered the “cyber incident” on April 22, 2024. Following the violation, DISA began an internal investigation with the assistance of third party forensic experts, assessing the damages.
It is still unknown how the attack took place. DISA has not checked whether phishing, malware or other methods have been used. However, the fact that hackers were accessed for several months without detection indicates a serious gap in the company’s surveillance system. In addition to concerns, it has been almost a year before the public is notified, and serious questions are raised about DISA’s cybersecurity measurement and response times.
Woman working on a laptop (Kurt “Cyberguy” Knutsson)
Spotify playlists are hijacked to promote pirated software and fraud
What data was stolen?
Hackers have accessed sensitive personal information, but DISA admits that they cannot clearly see the full scope of stolen data. The compromised information included Social Security numbers, financial account details (such as credit card numbers), driver’s licenses and other government-issued identification documents, according to filings with Maine Attorney General.
Given the role of DISA in employee screening, the violation could have exposed data collected from employment history, criminal records, and even drug testing, which include employment history, criminal history, and even health-related information. Notifications to affected individuals (more than 360,000 people in Massachusetts and 15,198 people in Maine highlighted the range of incidents, affecting a staggering 3,332,750 people across the country.
We reached out to DISA but did not respond before the deadline.
Woman working on desktop and laptop computer (Kurt “Cyberguy” Knutsson)
9 Ways Scammers Try to Deceive You Using Your Phone Number
Five ways to stay safe
If you have undergone background checks or drug testing through your employer or future employer, your data may be among the millions exposed in this violation. Below are five practical steps to protect yourself.
1) Financial account monitoring: Check regularly for suspicious activity in bank statements, credit card transactions and credit reports. The violation exposed financial details and made fraudulent transactions an actual risk. Consider setting up alerts for unusual activity.
2) Register for Credit Monitoring: DISA is offered to individuals for 12 months of free credit monitoring and ID recovery services through Experian. Sign up before the June 30th deadline to maintain your credit tab and detect potential misuses early and take advantage of this.
3) Do fraud warnings or credit freezes: Contact one of the major credit bureaus (Equifax, Experian, or Transunion) to place fraud alerts on your files, making it difficult for burglars to open an account in your name. For stronger protection, consider credit freezes that completely restrict access to your credit report.
4) Beware of phishing attempts and place strong antiviruses: use personal details in the hands of cybercrimes and expect an increase in targeted fraud. Do not click on a link or share information via unsolicited emails, texts, or calls.
The best way to protect yourself from malicious links to install malware is to install powerful antivirus software on all your devices, as it may access your personal information. This protection can also warn you that it will phish email and ransomware scams and keep your personal information and digital assets safe. Get the best 2025 Antivirus Protection Winners picks for Windows, Mac, Android and iOS devices.
5) Investing in Data Deletion Services: It is important to take proactive steps to protect your personal information in light of these repeated data breaches. Although there is no service that promises to delete all data from the internet, deleting a deletion service is great if you want to constantly monitor and automate the process of continuously deleting information from hundreds of sites over a long period of time. Please see the top picks for data deletion services.
Important points of cart
DISA Global Solutions Data Breaches are not an obvious mistake. It seems like a complete failure. Companies that process millions of sensitive data, including Fortune 500 clients, have been hiding hackers in their systems for more than two months. What’s worse, it took me 10 months to communicate to the public. Currently, 3.3 million people are dealing with fallout while DISA offers credit surveillance token years. Actual costs are years of potential identity theft and economic damage.
What do you think about companies that collect and sell data? Do you think they should be held liable for the violation? Please let us know by writing to cyberguy.com/contact.
For more information about my tech tips and security alerts, head to cyberguy.com/newsletter and subscribe to our free Cyberguy Report newsletter.
Please ask your cart or tell us what stories you would like us to cover.
Follow your cart on his social channels:
Answers to the most accused Cyber ​​Guy questions:
New from Cart:
Copyright 2025 cyberguy.com. Unauthorized reproduction is prohibited.
