DISA Global Solutions (DISA) is a third-party administrator of employment screening services, including drug and alcohol testing, background checks, occupational health, transportation compliance, and financial due diligence. DISA has more than 6,000 collection sites and service centers in its preferred network across the United States.

After further investigation, DISA confirmed a data breach impacting approximately 3.3 million people. DISA disclosed that an unauthorized third party accessed their environment between February 9 and April 22, 2024, and “procured some information.” The potentially affected files include personal information for current and former employees and prospective candidates. This personal information may include names, Social Security numbers, driver’s license numbers, dates of birth, financial account information, and other data elements. Although the other data elements are not defined, they may include personally identifiable information (PII), contact details, employment and education history, criminal and background checks, drug and alcohol testing information, medical and health-related information, and more.

DISA is offering impacted individuals 12 months of free credit monitoring and identity theft protection services through Experian. Additional information can be found in the BleepingComputer article. If you suspect your PII has been compromised, please review the Identity Theft and Compromised PII NJCCIC Informational Report for additional recommendations and resources, including credit freezes and enabling MFA on accounts.