Nevada Confirms Ransomware Attack Behind Statewide Service Disruptions
Briefly

Nevada suffered a sophisticated ransomware attack on Sunday that disrupted state systems and services, prompting closures of all state offices on Monday and Tuesday. State technology officials activated the cybersecurity incident response plan, isolated affected systems, and took targeted actions to contain the threat. Officials confirmed that hackers exfiltrated data from the network, but data classification and identification remain ongoing. Forensic teams, law enforcement, and CISA have been working continuously to restore systems and prioritize critical services. Some state offices resumed public operations four days after the attack while investigations and recovery continue.
"Upon detection, we immediately activated our established cybersecurity incident response plan," Tim Galluzi, Executive Director of the Governor's Technology Office, said.
"Our first and most critical step was to contain the threat. To that end, we have taken deliberate and targeted actions, which have included isolating and taking certain systems offline," he added.
"CISA is fully committed to providing cybersecurity services and expertise to the state of Nevada as long as necessary. This unified response is an example of operational collaboration in real time," acting CISA director Madhu Gottumukkala said.
Read at SecurityWeek
[
|
]