A ransomware attack against Nevadaβs government was traced back to a May intrusion caused by a state employee downloading malicious software from a spoofed website. The state managed to recover 90% of the impacted data without paying ransom, highlighting the importance of cybersecurity readiness. #NevadaGovernment #RansomwareAttack
Keypoints
- The attack affected over 60 Nevada government agencies, including critical departments.
- It involved theft of 26,400 files and exposure of 3,200 files across multiple systems.
- The threat actor used remote monitoring software, stolen credentials, and remote desktop protocol to move laterally across systems.
- Recovery costs amounted to approximately $1.3 million, with assistance from major cybersecurity firms.
- The attack underscores the ongoing challenges for government agencies to maintain resilience and protect essential services.