DISA Global Solutions
Data Breach Class Action Lawsuit

Posted: February 26, 2025 -- Attention, victims of the DISA Global Solutions data breach.

Abington Cole + Ellery is investigating the data breach recently announced by DISA Global Solutions.

DISA Global Solutions Data Breach Summary:

Approximately 3.3 million individuals were affected by the DISA Global Solutions data breach.

Breached data may include, but is not necessarily limited to: names, social security numbers, driver’s license numbers, other government ID numbers, financial account data, and other information.

DISA Global Solutions, a company providing employment screening services like drug tests and background checks, recently faced a significant data breach. On April 22, 2024, DISA discovered a cyber incident affecting part of its network, with unauthorized access occurring between February 9, 2024, and the discovery date. The breach potentially exposed personal information of over 3.3 million individuals, including those who underwent screening for current, former, or prospective employers.

DISA acted by containing the incident and launching an investigation with third-party forensic experts. They reviewed affected files to identify compromised data, notified law enforcement, restored systems, and implemented additional security measures. Reports indicate the data may include Social Security numbers, financial accounts, and government IDs, though exact details are unclear. The company is offering identity protection services to affected individuals.

A notable aspect is the delay in notification, with public announcements and filings made in February 2025, nearly a year after the breach was discovered. This delay is attributed to the extensive investigation required to review affected files and determine the scope of the breach. Notifications began being mailed out in February 2025, as per reports, with DISA informing state authorities like Maine’s attorney general on February 21, 2025, and Massachusetts’s Office of Consumer Affairs and Business Regulation earlier that month.

As a result of the data breach, DISA Global Solutions is offering 12 months of free credit monitoring and/or identity theft protection services to some affected individuals.

Additional information about the DISA Global Solutions data breach may be found here: DISA Global Solutions Notice of Data Incident.

About DISA Global Solutions:

DISA Global Solutions, founded in 1986 and headquartered in Houston, Texas, has evolved into a prominent provider of employee screening, drug and alcohol testing, and compliance solutions, playing a crucial role in workplace safety and regulatory adherence. The company's growth trajectory includes a significant milestone in 2022 when it was acquired by Audax Private Equity, which has facilitated its expansion through strategic acquisitions. Notably, in 2024, DISA acquired Validata Group, enhancing its European presence and global capabilities, and CastleBranch Healthcare Compliance and Screening, strengthening its offerings in the healthcare sector. These moves underscore DISA's commitment to broadening its international footprint and deepening its service portfolio, reflecting its long-standing history since inception.

The service offerings of DISA Global Solutions are comprehensive, designed to assist employers in maintaining a safe and compliant workplace. The company provides background screening services, which involve verifying employment history, education, and criminal records, ensuring employers can make informed hiring decisions. Additionally, DISA conducts drug and alcohol testing to uphold workplace safety standards and offers compliance solutions to help navigate the complexities of employee screening laws across various industries. Its portfolio also includes occupational health services, safety training programs, and transportation compliance services, all tailored to meet the specific needs of sectors such as transportation, healthcare, staffing, retail, hospitality, financial services, and entertainment. This diverse range of services positions DISA as a versatile partner for businesses seeking to enhance their compliance and safety measures.

In terms of market presence, DISA Global Solutions maintains a robust operational scale with approximately 1,200 employees and annual revenue estimated at around $210 million, based on recent reports. The company serves over 55,000 customers, a figure that includes more than 30% of Fortune 500 companies, demonstrating its significant trust and reliability among major corporations, as highlighted in a 2024 integration announcement with Workday HCM. This extensive client base underscores its industry standing, particularly in safety-sensitive sectors. Furthermore, DISA has been recognized for its workplace culture, earning the "Top Workplaces" award in multiple locations, including Houston in 2022 and 2023, and Philadelphia in 2024, reflecting its dedication to fostering a positive and productive work environment, as noted in their award announcements. This recognition, coupled with its operational scale, highlights DISA's balanced approach to business growth and employee satisfaction.

The DISA Global Solutions Website may have additional information about or provide periodic updates regarding the data breach.

For more information about steps you can take to possibly reduce the chances harm arising from a data breach, please review the following article: What are some steps you can take if you've been the victim of a data breach?

If you believe you are a victim of the DISA Global Solutions data breach, and if you would like to volunteer to serve as a class representative in a class action lawsuit regarding this data breach, please submit your information via the form on this webpage. This website is not associated with nor authorized by DISA Global Solutions or any affiliated companies. If you have received any other data breach notifications, you may to review Abington Cole + Ellery's current list of data breach investigations.