Health care data breach affects over 600k patients, Illinois agency says
4 months ago
- #privacy
- #healthcare
- #data breach
- Thousands of Illinois Department of Human Services (IDHS) patients' data was publicly viewable due to incorrect privacy settings from 2021 to 2025.
- Over 32,000 rehabilitation services patients had names, addresses, case numbers, and other details exposed between April 2021 and September 2025.
- Approximately 670,000 Medicaid and Medicare Savings Program recipients had addresses, case numbers, and demographic information exposed from January 2022 to September 2025.
- IDHS is unaware of any misuse of the leaked data and cannot identify who viewed the maps.
- The issue was discovered on September 22, 2025, and immediate action was taken to restrict access and implement a secure map policy.
- Affected individuals will receive notices about the leak, including a contact number for further inquiries.