TechCrunch Desktop Logo
TechCrunch Mobile Logo
Image Credits:Mark Wilson (opens in a new window) / Getty Images

US defense agency says personal data ‘compromised’ in 2019 data breach

Zack Whittaker

A U.S. defense agency charged with providing information technology and communications support to the U.S. government, including the president and other senior officials, says its network may have been “compromised.”

The Defense Information Systems Agency sent letters to possible victims earlier this month to warn of a “data breach” involving a system run by the agency.

It’s believed Social Security numbers and other sensitive information may have been taken in the data breach between May and July 2019, the letter said. But it’s not known if the data was stored on a classified system.

DISA, a division of the Dept. of Defense., has about 8,000 military staff and contractors.

Techcrunch event

Join 10k+ tech and VC leaders for growth and connections at Disrupt 2025

Netflix, Box, a16z, ElevenLabs, Wayve, Hugging Face, Elad Gil, Vinod Khosla — just some of the 250+ heavy hitters leading 200+ sessions designed to deliver the insights that fuel startup growth and sharpen your edge. Don’t miss the 20th anniversary of TechCrunch, and a chance to learn from the top voices in tech. Grab your ticket before doors open to save up to $444.

Join 10k+ tech and VC leaders for growth and connections at Disrupt 2025

Netflix, Box, a16z, ElevenLabs, Wayve, Hugging Face, Elad Gil, Vinod Khosla — just some of the 250+ heavy hitters leading 200+ sessions designed to deliver the insights that fuel startup growth and sharpen your edge. Don’t miss a chance to learn from the top voices in tech. Grab your ticket before doors open to save up to $444.

San Francisco | October 27-29, 2025
REGISTER NOW

DISA spokesperson Charles Prichard confirmed the breach in an email to TechCrunch.

“The Defense Information Systems Agency has begun issuing letters to people whose personally identifiable information may have been compromised in a data breach on a system hosted by the agency,” said Prichard. “While there is no evidence to suggest that any of the potentially compromised PII was misused, DISA policy requires the agency to notify individuals whose personal data may have been compromised.”

“DISA has conducted a thorough investigation of this incident and taken appropriate measures to secure the network,” he said.

Reuters first reported the news.

Last week, the Justice Department charged four members of the Chinese military with hacking into Equifax, the credit rating agency, which saw more than 147 million credit reports stolen. Prosecutors also attributed the same hackers to breaches at health insurance giant Anthem, the Marriott Starwood hotel breach and the U.S. Office of Personnel Management breach in 2015, believed to be the largest breach in the U.S. government’s history. The breach saw the theft of 21 million vetting files on federal employees and contractors.

By tweeting from a SCIF, House lawmakers put national security at risk

Topics

, ,
Zack Whittaker

Zack Whittaker is the security editor at TechCrunch. He also authors the weekly cybersecurity newsletter, this week in security.

He can be reached via encrypted message at zackwhittaker.1337 on Signal. You can also contact him by email, or to verify outreach, at zack.whittaker@techcrunch.com.

View Bio
October 27-29, 2025
San Francisco


ONE-WEEK BUNDLE FLASH SALE

Founder Bundle Offer: Land your investor and sharpen your pitch. Save 15% when you bring 4-9 founders.

Investors Bundle Offer: Discover your next breakout startup. Save 20% when you bring 4-9 investors.

Bundle offer ends October 3.

Register Now
Loading the next article
Error loading the next article