The Defense Information Systems Agency (DISA) announced that it was the subject of a significant data breach. DISA provides IT support and services to the White House, the President and Vice-President, US Secret Service, Joint Chiefs of Staff and more. A message sent by DISA’s CIO warned the recipients that their information may have been subject to a data breach. While the agency had no indications that any information had been misused, sensitive personally identifying information (PII) including Social Security numbers may have been breached. Few details of the breach are currently being released such as affected systems, how the compromise took place, or what was targeted by attackers. It has also not been made clear if the compromise affects DISA employees, users, or both. The only detail being released at this time is that the compromise took place between May and July of 2019.
Note: this post was originally shared on https://squiblydoo.blog/ by a member of the Binary Defense Team. In