Massive Cyber Incident Exposes Millions’ Personal Data in U.S.

BOSTON, Mass. — A major cybersecurity breach at DISA Global Solutions has compromised the personal information of over 3.3 million individuals across the United States, with nearly 360,000 impacted residents in Massachusetts alone. The company reported the incident on April 22, 2024, revealing that unauthorized access to their network occurred between February 9 and April 22.

The breach, marked as affecting a ‘limited portion’ of DISA’s network, has resulted in the theft of sensitive data, including Social Security numbers, financial account details, and government-issued identification documents. As the company initiates notifications to affected individuals, industry experts are urging those impacted to take immediate steps to safeguard their personal information.

“People often feel overwhelmed by such massive breaches and may think they can’t do anything,” said Ian Bednowitz, general manager at LifeLock. “But there are proactive measures individuals can take to protect themselves from identity theft.”

According to DISA’s filings with state attorneys general, the breach has the potential to facilitate numerous scams, significantly heightening the risks for those affected. In Massachusetts alone, approximately 2 million individuals have faced data exposure across 1,900 reported incidents over the past few years.

Bednowitz emphasized the importance of immediate action for those who believe they are affected. “The most crucial step is to freeze your credit,” he noted. “This is the primary method identity thieves use to exploit their victims.” He also recommended monitoring bank and credit card statements and utilizing the free weekly credit reports provided by the three major credit bureaus.

Potential victims should also consider deleting unused accounts, which can leave them vulnerable to scams and identity theft. For parents, a Protected Consumer Freeze is available to shield their children’s credit without impacting future credit scores.

In addition, DISA Global Solutions will provide affected individuals with access to credit monitoring and identity restoration services through Experian, giving them tools to mitigate the possible impacts of this breach.

Bednowitz concluded by stressing the ongoing risk for consumers, advising, “Without proactive measures, the availability of personal information can increase vulnerability exponentially.”