On February 3, a breach update from DISA Global Solutions reported by DataBreaches highlighted that 3,332,750 individuals were affected. Although DISA announced they took measures to prevent data release, they omitted this claim in their notification to the Maine Attorney General. This raised concerns over whether DISA paid a ransom for data deletion assurances. The ambiguity surrounding the exact data involved in the breach poses questions about the extent of the threat and what recipients should know regarding their potential exposure.
DISA indicates it "took measures to dissuade the threat actor from publicly releasing any acquired data and to provide confirmation of the deletion of the data."
To date, DISA has no evidence of this data being released on the dark web. While this may provide comfort, it does not mean the data is not in possession of bad actors.
Collection
[
|
...
]