• Home
  • cyber
  • Illinois Department of Human Services: Illinois Dept. Of Human Services Data Breach: 705k Affected
cyber Breach

Illinois Department of Human Services: Illinois Dept. Of Human Services Data Breach: 705k Affected

Apr 1, 2023 2 min read
Illinois Department of Human Services: Illinois Dept. Of Human Services Data Breach: 705k Affected

Illinois Department of Human Services Suffers Major Data Breach Affecting 705,017 Individuals

The Illinois Department of Human Services (IDHS) disclosed a significant data breach impacting 705,017 individuals across the U.S. The incident, which occurred between April 2023 and September 2025, was discovered on September 22, 2025, and linked to a distributed denial-of-service (DDoS) attack claimed by the hacking group Red Wolf Cyber.

The breach exposed sensitive information, including names, addresses, case numbers, case statuses, referral sources, regional office details, and protected health information (PHI) related to IDHS services. While Social Security numbers and financial data were not compromised, the leaked personally identifiable information (PII) and PHI pose privacy risks for affected individuals.

Red Wolf Cyber first publicized the breach on the dark web on September 28, 2025, providing evidence of service disruptions. The U.S. Department of Health and Human Services was officially notified on January 9, 2026, and IDHS later posted a public notice on its website.

In response, IDHS took steps to mitigate the incident and inform those impacted. The agency emphasized that the breach stemmed from a DDoS attack rather than a direct database compromise, though the exposed data could still be exploited for phishing or fraud. Affected individuals were advised to monitor accounts linked to IDHS services for suspicious activity.

Source: https://www.claimdepot.com/data-breach/illinois-dhs-2026

Illinois Department of Healthcare and Family Services cybersecurity rating report: https://www.rankiteo.com/company/ildhfs

"id": "ILD1770230857",
"linkid": "ildhfs",
"type": "Breach",
"date": "4/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': '705,017',
                        'industry': 'Human Services',
                        'location': 'Illinois, USA',
                        'name': 'Illinois Department of Human Services (IDHS)',
                        'type': 'Government Agency'}],
 'attack_vector': 'Distributed Denial-of-Service (DDoS)',
 'customer_advisories': 'Affected individuals advised to monitor accounts for '
                        'suspicious activity',
 'data_breach': {'number_of_records_exposed': '705,017',
                 'personally_identifiable_information': 'Names, addresses, '
                                                        'case numbers, case '
                                                        'statuses, referral '
                                                        'sources, regional '
                                                        'office details',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personally Identifiable '
                                              'Information (PII)',
                                              'Protected Health Information '
                                              '(PHI)']},
 'date_detected': '2025-09-22',
 'date_publicly_disclosed': '2025-09-28',
 'description': 'The Illinois Department of Human Services (IDHS) disclosed a '
                'significant data breach impacting 705,017 individuals across '
                'the U.S. The breach exposed sensitive information, including '
                'names, addresses, case numbers, case statuses, referral '
                'sources, regional office details, and protected health '
                'information (PHI). The incident was linked to a distributed '
                'denial-of-service (DDoS) attack claimed by the hacking group '
                'Red Wolf Cyber.',
 'impact': {'brand_reputation_impact': 'Potential privacy risks for affected '
                                       'individuals',
            'data_compromised': 'Names, addresses, case numbers, case '
                                'statuses, referral sources, regional office '
                                'details, protected health information (PHI)',
            'identity_theft_risk': 'High (due to PII and PHI exposure)',
            'operational_impact': 'Service disruptions',
            'payment_information_risk': 'None (Social Security numbers and '
                                        'financial data not compromised)'},
 'post_incident_analysis': {'root_causes': 'DDoS attack leading to data '
                                           'exposure'},
 'recommendations': 'Affected individuals advised to monitor accounts linked '
                    'to IDHS services for suspicious activity',
 'references': [{'date_accessed': '2025-09-28',
                 'source': 'Dark web post by Red Wolf Cyber'},
                {'source': 'IDHS public notice'}],
 'regulatory_compliance': {'regulatory_notifications': ['U.S. Department of '
                                                        'Health and Human '
                                                        'Services (notified on '
                                                        '2026-01-09)']},
 'response': {'communication_strategy': 'Public notice on IDHS website, '
                                        'advisories to affected individuals'},
 'threat_actor': 'Red Wolf Cyber',
 'title': 'Illinois Department of Human Services Data Breach',
 'type': 'Data Breach'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.