Illinois Department of Public Health reports data breach exposing 126k individuals

published: Aug. 24, 2023

Learn More

The Illinois Department of Public Health (IDPH) reported a significant data breach which led to the exposure of sensitive information, affecting a considerable number of individuals—approximately 126,000 people.

The specific cause behind the data breach at the Illinois Department of Public Health is not reported, and is apparently still under investigation. The current available information is limited information about the breach's origins. The breach was the result of "a hacking or IT incident that specifically targeted a network server."

It remains uncertain whether IDPH itself was the intended target of the breach or if the unauthorized access was facilitated through a third-party vendor associated with IDPH.

Regrettably, as of now, IDPH has not made available a data breach letter that provides a comprehensive account of the incident.

Upon discovering that sensitive consumer data had been illicitly accessed, the Illinois Department of Public Health undertook an evaluation of the compromised files to ascertain the extent of the information breach and to identify the affected individuals. The precise categories of data that were exposed are not disclosed but public reporting is mandated when breaches involve consumers' protected health information.

The Illinois Department of Public Health dispatched data breach notification letters on August 18, 2023, to all those impacted by this recent data security incident. These letters are expected to provide recipients with a comprehensive list outlining the specific nature of the compromised information pertaining to them.

Illinois Department of Public Health reports data breach exposing 126k individuals