Nevada Remains silent on Ransom Payment Following Cyberattack
CARSON CITY, NV – More than two weeks after a significant cyberattack disrupted state government services, Nevada officials have yet to disclose whether a ransom was paid to the attackers. The incident, initially described as a ransomware attack by Governor Joe Lombardo, continues to fuel speculation and criticism regarding openness and the state’s cybersecurity preparedness.
The lack of information is particularly sensitive as Nevada heads into an election year, with Governor Lombardo considered a vulnerable incumbent. The attack impacted services across multiple state agencies, though the full extent of compromised data remains unclear. While some states have enacted laws prohibiting the payment of ransoms to cybercriminals, Nevada currently lacks such legislation, leaving the option open for negotiation.
Governor Lombardo stated on September 11th, “Until we know the hacker and the motivation it’ll be hard to know what they were looking for.” He initially suggested the motivation was financial, indicating a potential ransom demand.
Michael Leonard,a former IT professional and publisher of Mike’s Reno Report,noted the possibility of a deal being struck. “They could have cut a deal or paid a ransom,” Leonard said. “Keep quiet and we’ll give you money.” He has been vocal about the need for greater transparency, stating the state needs “to come forward with enough information to ensure us they’re investigating and credible.” Leonard suspects political considerations are influencing the level of disclosure, suggesting “equal motivation” to protect the reputations of government and elected officials.
Democratic legislative leaders initially criticized Lombardo’s handling of the situation but have as remained largely quiet. Assembly Speaker Steve Yeager announced the formation of a legislative working group on cybersecurity on September 9th, but has not provided updates on its progress.
Governor Lombardo is up for reelection next year, and Attorney general Aaron Ford is considered a potential challenger. Candidate filing does not begin until march. The ongoing silence surrounding the cyberattack and potential ransom payment raises questions about the state’s vulnerability and its commitment to informing the public about threats to its digital infrastructure.
