The State of Nevada suffered a **cyberattack starting Sunday**, disrupting critical government operations and forcing closures of in-person services, including the **Department of Motor Vehicles (DMV)**. Multiple state websites, such as the governor’s official site, were taken offline, though emergency services (e.g., 911) remained functional. The attack initially **disabled Nevada Highway Patrol and State Police dispatch lines for roadside emergencies**, which were later restored. While no evidence of **personal data compromise** has been confirmed, the incident triggered a **24/7 recovery effort** involving state, local, and federal agencies, including **CISA and the FBI**. The **Governor’s Technology Office (GTO)** implemented temporary workarounds to maintain partial public access while validating systems before full restoration. Employees were temporarily sent home, and in-person services were expected to resume later in the week. The attack follows a pattern of **increasing cyber threats against U.S. public entities**, linked to geopolitical tensions (e.g., Iran-affiliated actors). Analysts warn of rising **havoc-based attacks**—focused on disruption rather than ransom—highlighting vulnerabilities in government infrastructure. The incident underscores the **operational and reputational risks** faced by public sectors amid evolving cyber threats, with experts advocating for **proactive risk management and cyber insurance** to mitigate future impacts.
TPRM report: https://www.rankiteo.com/company/nv-gto
"id": "nv-852090225",
"linkid": "nv-gto",
"type": "Cyber Attack",
"date": "8/2025",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of geographical region"{'affected_entities': [{'customers_affected': 'Residents and businesses '
'relying on state services '
'(e.g., DMV, online portals)',
'industry': 'Public Sector',
'location': 'Nevada, USA',
'name': 'State of Nevada',
'type': 'Government'},
{'customers_affected': 'Residents requiring in-person '
'DMV services',
'industry': 'Public Sector / Transportation',
'location': 'Nevada, USA',
'name': 'Nevada Department of Motor Vehicles (DMV)',
'type': 'Government Agency'},
{'customers_affected': 'Residents requiring roadside '
'emergency assistance',
'industry': 'Public Safety',
'location': 'Nevada, USA',
'name': 'Nevada Highway Patrol',
'type': 'Law Enforcement Agency'},
{'customers_affected': 'Residents requiring roadside '
'emergency assistance',
'industry': 'Public Safety',
'location': 'Nevada, USA',
'name': 'Nevada State Police',
'type': 'Law Enforcement Agency'}],
'customer_advisories': ['Public memo on service disruptions and expected '
'restoration timelines',
'Assurance that no evidence of personal information '
'compromise (as of disclosure)'],
'data_breach': {'personally_identifiable_information': 'No evidence of '
'compromise (as of '
'disclosure)'},
'date_detected': '2023-10-08T00:00:00Z',
'date_publicly_disclosed': '2023-10-09T00:00:00Z',
'description': 'The state of Nevada identified a network security incident on '
'Sunday, leading to widespread disruptions in state services. '
'Several offices, including the Department of Motor Vehicles, '
'were closed for in-person visits, and many state websites '
"(including the governor's website) were disabled. Emergency "
'services like 911 remained functional. The incident began '
'with the Nevada Highway Patrol and Nevada State Police '
'dispatch phone lines for roadside emergency and assistance '
"calls going down. The Governor's Technology Office (GTO) is "
'working with state, local, and federal partners (including '
'CISA and the FBI) to restore services using temporary '
'workarounds. There is currently no evidence that personal '
'information was compromised, but the investigation remains '
'active, and technical details are withheld to protect '
'internal systems.',
'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
'service disruptions and lack of '
'transparency during active '
'investigation',
'downtime': {'duration': 'Ongoing (as of disclosure, expected to '
'resume in-person services later in the '
'week)',
'end': None,
'services_affected': [{'expected_restoration': 'Later '
'in '
'the '
'week '
'(post-2023-10-10)',
'service': 'In-person visits '
'(e.g., DMV)',
'status': 'Closed since '
'2023-10-09'},
{'expected_restoration': None,
'service': 'State websites '
"(e.g., governor's "
'website)',
'status': 'Disabled since '
'2023-10-08'},
{'service': 'Nevada Highway '
'Patrol dispatch '
'phone lines',
'status': 'Down on 2023-10-08, '
'restored by '
'2023-10-09'},
{'service': 'Nevada State '
'Police dispatch '
'phone lines',
'status': 'Down on 2023-10-08, '
'restored by '
'2023-10-09'}],
'start': '2023-10-08T00:00:00Z'},
'operational_impact': ['State offices closed for in-person '
'services',
'Employees on leave on 2023-10-09, returned '
'on 2023-10-10',
'Temporary routing and operational '
'workarounds implemented by GTO',
'System validation required before '
'restoring normal operations'],
'systems_affected': ["State websites (including governor's "
'website)',
'Department of Motor Vehicles (in-person '
'services)',
'Nevada Highway Patrol dispatch phone lines',
'Nevada State Police dispatch phone lines']},
'investigation_status': 'Active (as of 2023-10-10)',
'recommendations': ['Proactive risk management (per Fitch Ratings report)',
'Cyber insurance to mitigate threats and maintain credit '
'quality',
'Increased awareness of sophisticated cyber threats, '
'including havoc-based attacks',
'Balancing cybersecurity priorities with other government '
'tasks'],
'references': [{'date_accessed': '2023-10-09',
'source': "Governor Joe Lombardo's Office (via X/Twitter)"},
{'source': 'Fitch Ratings Report (June 2023)'},
{'source': 'HilltopSecurities (Tom Kozlik, Head of Public '
'Policy and Municipal Strategy)'},
{'source': 'Historical Context: St. Paul, Minnesota (July '
'2023) and Baltimore (2018) Cyberattacks'}],
'response': {'communication_strategy': ['Public memo posted on X (formerly '
"Twitter) by Governor Joe Lombardo's "
'office',
'Press release updates (e.g., '
'2023-10-09 and 2023-10-10)',
'Limited disclosure due to active '
'criminal investigation'],
'containment_measures': ['Temporary routing and operational '
'workarounds',
'Disabling affected state websites and '
'in-person services',
'System validation before restoration'],
'incident_response_plan_activated': True,
'law_enforcement_notified': True,
'recovery_measures': ["24/7 recovery efforts by Governor's "
'Technology Office (GTO)',
'Restoration of Nevada Highway Patrol and '
'State Police dispatch phone lines '
'(completed by 2023-10-09)',
'Planned resumption of in-person services '
'later in the week'],
'third_party_assistance': [{'organization': 'Cybersecurity & '
'Infrastructure '
'Security Agency '
'(CISA)',
'role': 'Investigation and Recovery '
'Support'},
{'organization': 'Federal Bureau of '
'Investigation (FBI)',
'role': 'Criminal Investigation'},
{'organization': 'Local and State '
'Partners',
'role': 'Coordinated Recovery '
'Efforts'}]},
'stakeholder_advisories': ['State and local government partners',
'Federal agencies (CISA, FBI)',
'Residents and businesses relying on state '
'services'],
'title': 'Nevada State Government Cyberattack',
'type': ['Cyberattack', 'Network Security Incident']}