personal information
-
Illinois Health Dept Exposes 700,000 Residents’ Data
Read Full Article: Illinois Health Dept Exposes 700,000 Residents’ Data
The Illinois Department of Human Services (IDHS) inadvertently exposed the personal information of over 700,000 residents due to a security lapse that lasted from April 2021 to September 2025. This lapse made an internal mapping website publicly viewable, revealing data such as addresses, case numbers, and demographic information of Medicaid and Medicare Savings Program recipients, although names were not included. Additionally, information about 32,401 individuals receiving services from the Division of Rehabilitation Services was also compromised. IDHS has not confirmed if any unauthorized parties accessed the data during the exposure period, highlighting significant concerns about data privacy and security. This matters because it underscores the importance of robust cybersecurity measures to protect sensitive personal information from unauthorized access.
-
California’s New Privacy Law Empowers Residents
Read Full Article: California’s New Privacy Law Empowers Residents
California has implemented one of the nation's strictest privacy laws, empowering residents to stop data brokers from collecting and selling their personal information. The new law, known as DROP (Delete Request and Opt-out Platform), simplifies the process by allowing residents to make a single request to delete their data, which is then forwarded to all data brokers by the California Privacy Protection Agency. This addresses the previous challenge where individuals had to file separate requests with each broker, a task that proved too burdensome for most. By streamlining the data deletion process, California aims to enhance privacy protection and reduce the exploitation of personal data by over 500 companies.
-
Condé Nast User Database Breach: Ars Unaffected
Read Full Article: Condé Nast User Database Breach: Ars Unaffected
A hacker named Lovely claimed responsibility for breaching a Condé Nast user database, releasing over 2.3 million user records from WIRED, with plans to leak an additional 40 million records from other Condé Nast properties. The data includes demographic information but no passwords, and Ars Technica remains unaffected due to its unique tech stack. Despite Lovely's claims of urging Condé Nast to fix security vulnerabilities, it appears the hacker's motives were financially driven rather than altruistic. Condé Nast has yet to comment on the breach, and the situation highlights the importance of robust cybersecurity measures to protect user data. This matters because it underscores the ongoing threat of data breaches and the need for companies to prioritize user data security.