Sat Mar 08 13:20:00 UTC 2025: ## Data Breach Lawsuits Filed Against DISA Global Solutions Following Cyberattack

**Houston, TX –** Two class-action lawsuits have been filed against DISA Global Solutions (DISA), a provider of employment screening services, in the Southern District of Texas. The suits allege negligence in protecting the personal data of over 3.3 million individuals following a cyberattack between February and April 2024.

DISA, which conducts background checks and drug/alcohol testing for employers, reportedly failed to adequately secure sensitive information, including names, Social Security numbers, driver’s license numbers, and financial account details. The company notified affected individuals in February 2025, a delay the plaintiffs argue exacerbated the risk of identity theft.

The lawsuits claim DISA failed to implement sufficient security measures, citing several industry-standard practices that were allegedly neglected. Plaintiffs highlight the high value of compromised data, specifically Social Security numbers, and argue DISA should have foreseen the risk of such an attack given the prevalence of similar breaches.

The complaints allege that DISA breached its duty of care by failing to invest in adequate security measures and by delaying notification of the breach. Experts say this case underscores the importance for organizations to not only maintain robust cybersecurity but also to implement thorough incident response plans, including prompt notification procedures, to mitigate legal risk. The case highlights the increasing scrutiny placed on companies regarding data protection and the potential legal ramifications of inadequate security practices.

Read More