PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

PCMag UK

Hack at Employee Screening Firm DISA Exposes Personal Data of 3.3M People

DISA provides employment screening solutions, such as drug and alcohol testing and background verifications, for franchises.

Jibin Joseph
 & Jibin Joseph Contributor

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology.

Our Expert
LOOK INSIDE PC LABS HOW WE TEST
65 EXPERTS
43 YEARS
41,500+ REVIEWS
(Credit: Vertigo3d/Getty Images)

A hack at employee screening firm DISA Global Solutions has exposed the personal data of more than 3.3 million people.

DISA confirmed the breach in a Monday filing with Maine's attorney general, TechCrunch notes.

The incident occurred on Feb. 9, 2024, and was discovered on April 22, 2024. Upon discovery, DISA says it contained the incident and initiated an internal investigation with the help of third-party forensic experts. The investigation found that the hackers "procured some information," but DISA couldn’t “definitively conclude the specific information procured.”

DISA provides employment screening solutions, such as drug and alcohol testing and background verifications, to franchises. According to the company website, its client base boasts 55,000 customers, including 30% of Fortune 500 companies.

The exposed data could include names, Social Security numbers, driver’s license numbers, other government ID numbers, financial account information, and more, DISA says. These data points were obtained from the screening services provided to employers and prospective employers, the company adds. 

Recommended by Our Editors

Google Will Soon Spot Fake Calls on Supported Android Phones
Google Will Soon Spot Fake Calls on Supported Android Phones
Report Cites Misinformation As Key Threat to Election Security, Doesn't Name the Biggest Offenders
Report Cites Misinformation As Key Threat to Election Security, Doesn't Name the Biggest Offenders
Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts
Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts

DISA has already begun notifying affected individuals. According to the filing with Maine’s attorney general, 15,198 of the 3,332,750 individuals affected are residents of Maine. Another filing shows that over 360,000 are residents of Massachusetts.

If you believe your data has been exposed or have questions about the breach, you can call DISA’s toll-free number at 833-931-9800, Monday through Friday, from 9:00 a.m. to 11:00 p.m. ET.

DISA is offering affected individuals 12 months of credit monitoring and identity restoration services through Experian. Interested individuals must enroll by June 30. The company has also asked them to remain vigilant against potential phishing attacks, monitor their accounts regularly, and report suspicious activities to authorities. 

Additionally, affected individuals can place a fraud alert on their credit files via Equifax, Experian, and TransUnion or freeze their credits. These steps ensure that credit, loans, and services aren’t approved without consent.

About Our Expert

Jibin Joseph

Jibin Joseph

Contributor

Jibin is a tech news writer based out of Ahmedabad, India. Previously, he served as the editor of iGeeksBlog and is a self-proclaimed tech enthusiast who loves breaking down complex information for a broader audience.

Read the latest from Jibin Joseph

Read full bio