According to the filing, the cyberattack occurred on 9 February 2024, but remained undetected for more than two months. DISA identified the breach on 22 April 2024, following an internal investigation, which revealed that an unauthorised party had infiltrated a “limited portion” of its network.