Update: Illinois Department Of Human Services Data Breach Affects 700k People

These maps, intended for internal use to guide decisions such as office placement, remained accessible online for years before the issue was discovered last year.

The resulting data breach affected two groups of Illinois residents. Roughly 672,616 Medicaid and Medicare Savings Program recipients had their addresses, case numbers, demographic details, and medical assistance plan names exposed online from January 2022 through September 2025, but their names were not included.

Another, smaller group of 32,401 Division of Rehabilitation Services customers had information, including names, addresses, case numbers, case status, and referral sources, exposed from April 2021 through September 2025.

"The mapping website was unable to identify who viewed the maps. To date, IDHS is unaware of any actual or attempted misuse of personal information as a result of this incident."

After discovering the incident, the IDHS restricted access to the maps to authorized employees, completing the lockdown on September 26. The agency has also conducted a review of all exposed maps and now blocks attempts to upload identifiable customer information to public mapping platforms.

In December 2024, the IDHS disclosed another data breach after attackers breached multiple employee accounts following a phishing attack and accessed the personal information of 1,166,094 people.

It's budget season! Over 300 CISOs and security leaders have shared how they're planning, spending, and prioritizing for the year ahead. This report compiles their insights, allowing readers to benchmark strategies, identify emerging trends, and compare their priorities as they head into 2026.

Learn how top leaders are turning investment into measurable impact.

US broadband provider Brightspeed investigates breach claims

Baker University says 2024 data breach impacts 53,000 people

Source: BleepingComputer