Employee screening data breach exposes 3.3 million records

Data breaches are becoming all too common in today’s digital age, with companies that handle massive amounts of user data often being the least careful with it. Last year, the National Public Data breach exposed a staggering 2.7 billion records, highlighting the risks associated with collecting and storing personal information. Now, another major breach has come to light, this time affecting DISA Global Solutions, an employee screening provider.

DISA Global Solutions is a Texas-based company that specializes in providing employee screening services to over 55,000 businesses, including a third of Fortune 500 companies. The company offers background checks, drug and alcohol testing, and compliance solutions to help businesses make informed hiring decisions. However, a recent data breach has put the sensitive personal information of over 3.3 million individuals at risk.

The breach, which began on February 9, 2024, went undetected for more than two months until it was discovered on April 22, 2024. This lapse in detection is concerning and raises questions about the company’s cybersecurity measures and response time. It is still unclear how the hackers gained access to the network, but the fact that they had free rein for months without being detected is alarming.

The stolen data includes a trove of sensitive personal information such as Social Security numbers, financial account details, driver’s licenses, and other government-issued identification documents. Given DISA’s role in employee screening, the breach likely exposed data collected from background checks and drug tests, including employment histories, criminal records, and health-related information. The scope of the breach is vast, affecting over 3.3 million individuals nationwide.

In response to the breach, DISA has launched an internal investigation with the help of third-party forensic experts to assess the damage. The company is offering affected individuals 12 months of free credit monitoring and identity restoration services through Experian to help them protect their personal information and detect any potential misuse early. Additionally, individuals are advised to monitor their financial accounts, enroll in credit monitoring, place fraud alerts or credit freezes on their accounts, be wary of phishing attempts, and invest in data removal services to protect their personal information.

The DISA Global Solutions data breach serves as a stark reminder of the importance of safeguarding personal information in today’s digital world. Companies that collect and sell data must be held accountable for breaches and take proactive measures to protect the data of their users. It is essential for individuals to stay informed and take steps to protect their personal information from falling into the wrong hands.