Hacker infiltrated network
According to DISA, it discovered a “cyber incident” affecting a “limited portion” of its network on April 22, 2024. However, an internal investigation revealed that a hacker had infiltrated its systems as early as February 9, 2024, remaining undetected for over two months.
Sensitive information stolen
DISA in a separate filing with the Massachusetts attorney general confirmed that stolen data included individuals’ Social Security numbers, financial account details such as credit card numbers, and government-issued identification documents. The filing also revealed that more than 360,000 Massachusetts residents were affected by the breach.
Lack of clarity on data accessed
In its data breach notification letter to affected individuals, DISA admitted that it “could not definitively conclude the specific data procured.”
Unanswered questions remain
It remains unclear who was behind the cyberattack or how DISA’s systems were compromised. As investigations continue, affected individuals are urged to monitor their financial accounts and personal information for any signs of misuse.
DISA Global Solutions, Data breach, Employee screening services, Background screening, Drug and alcohol testing, Compliance solutions, Cyber incident, Network infiltration, Social Security numbers, Credit card numbers, Financial account details, Massachusetts attorney general, Maine attorney general, Data breach notification, Cyberattack, Personal information
#Data #breach #hits #firm #DISA3.3 #million #affected #hackers #steal #personal #info
