Nevada Government Hit by Major Ransomware Attack, Disrupting Critical Services
Nevada state agencies are grappling with the aftermath of a ransomware attack detected early Sunday morning, which has crippled key government systems and triggered a multi-agency recovery effort. Governor Joe Lombardo confirmed that while some services are being restored, the Department of Motor Vehicles (DMV) and Nevada Health Authority remain heavily impacted, with no clear timeline for full recovery.
The attack was first identified when security teams noticed unusual activity on state networks. In response, officials activated emergency protocols, isolating affected systems to contain the breach. While the investigation remains ongoing, authorities have acknowledged that "some data has been extricated," though the nature of the compromised information including whether it contains personal identifiers is still unknown. Due to the active criminal probe, technical details remain undisclosed under Nevada Revised Statute 242.105.
The disruption has forced temporary closures of state offices and intermittent outages for non-emergency services, though critical functions like 911 and law enforcement access to the FBI’s National Crime Information Center remain operational. The DMV has suspended all in-person and online services indefinitely, prompting the state to waive expirations, late fees, and penalties during the outage period. Canceled appointments will be honored as walk-ins for two weeks after services resume. Meanwhile, the Nevada Health Authority is accepting paper applications for Medicaid benefits while digital systems remain offline.
State payroll, pension systems, and public school funding have not been affected, ensuring continuity for essential financial operations. However, officials have warned residents to remain cautious of potential scams, emphasizing that the state will never request passwords or banking details via unsolicited communications.
Governor Lombardo stated that recovery efforts are prioritizing critical services, with temporary workarounds in place to maintain limited public access. The administration is still evaluating whether to rebuild systems from scratch or consider a ransom payment, though no details on demands or attacker motives have been disclosed. Lombardo defended the state’s response, asserting that agencies acted swiftly to secure vital services despite the challenges.
The incident has drawn political scrutiny, particularly over Lombardo’s absence from a Wednesday press conference in Carson City, where he was attending pre-scheduled events in rural Nevada. The governor maintained that he remained fully engaged, receiving hourly updates and directing response efforts remotely.
As Nevada works to restore affected systems, the attack underscores the vulnerabilities of digital governance, leaving thousands of residents facing delays in routine services like driver’s license renewals and Medicaid filings. Officials continue to urge patience while emphasizing a cautious, methodical approach to recovery.
Source: https://thecyberexpress.com/cyberattack-on-nevada/
Nevada Health Authority TPRM report: https://www.rankiteo.com/company/state-of-nevada
"id": "sta1771108067",
"linkid": "state-of-nevada",
"type": "Ransomware",
"date": "8/2025",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of geographical region"{'affected_entities': [{'customers_affected': 'Thousands of residents (DMV and '
'Medicaid users)',
'industry': 'Public Sector',
'location': 'Nevada, USA',
'name': 'Nevada State Government',
'size': 'State-level',
'type': 'Government'},
{'customers_affected': 'Residents requiring driver’s '
'license renewals and vehicle '
'services',
'industry': 'Public Sector',
'location': 'Nevada, USA',
'name': 'Department of Motor Vehicles (DMV)',
'type': 'Government Agency'},
{'customers_affected': 'Medicaid applicants and '
'beneficiaries',
'industry': 'Healthcare/Public Sector',
'location': 'Nevada, USA',
'name': 'Nevada Health Authority',
'type': 'Government Agency'}],
'customer_advisories': 'DMV services suspended indefinitely; Medicaid '
'accepting paper applications; residents advised to '
'expect delays',
'data_breach': {'data_encryption': 'Yes (ransomware-related encryption)',
'data_exfiltration': 'Yes (some data extricated)',
'sensitivity_of_data': 'Unknown (potential personal '
'identifiers)'},
'date_detected': 'Sunday morning (exact date not specified)',
'description': 'Nevada state agencies are grappling with the aftermath of a '
'ransomware attack detected early Sunday morning, which has '
'crippled key government systems and triggered a multi-agency '
'recovery effort. The attack disrupted critical services, '
'including the Department of Motor Vehicles (DMV) and Nevada '
'Health Authority, with no clear timeline for full recovery.',
'impact': {'brand_reputation_impact': 'Potential erosion of public trust due '
'to service disruptions and data '
'compromise',
'data_compromised': 'Some data has been extricated',
'downtime': 'Indefinite suspension of DMV services; Medicaid '
'digital systems offline',
'identity_theft_risk': 'Unknown (nature of compromised data not '
'disclosed)',
'operational_impact': 'Temporary closures of state offices, '
'intermittent outages for non-emergency '
'services, paper-based workarounds for '
'Medicaid applications',
'systems_affected': 'State networks, DMV, Nevada Health Authority'},
'investigation_status': 'Ongoing (active criminal probe)',
'ransomware': {'data_encryption': 'Yes', 'data_exfiltration': 'Yes'},
'references': [{'source': "Governor Joe Lombardo's statements"}],
'response': {'communication_strategy': 'Public advisories on service '
'disruptions, warnings about scams',
'containment_measures': 'Isolating affected systems to contain '
'the breach',
'incident_response_plan_activated': 'Yes (emergency protocols '
'activated)',
'recovery_measures': 'Rebuilding systems or evaluating ransom '
'payment (undecided)',
'remediation_measures': 'Prioritizing critical services, '
'temporary workarounds for public '
'access'},
'stakeholder_advisories': 'State agencies coordinating recovery efforts, '
'public warned about scams',
'title': 'Nevada Government Hit by Major Ransomware Attack',
'type': 'Ransomware'}