When hackers tried to hold Nevada hostage, Governor Joe Lombardo didn’t blink. He refused to pay the ransom—and the state got back on its feet anyway.
This August, a ransomware attack knocked out systems across more than 60 state agencies. It could have been a disaster. Instead, the Governor’s Technology Office (GTO) and its partners restored services in just 28 days without paying a single cent to the criminals who caused it.
A Test of Leadership
When the attack hit, Lombardo’s team faced a tough choice: pay off the hackers to get the data back or trust their own people to rebuild from scratch. The governor made the call—no ransom.
“Nevada’s teams protected core services, paid our employees on time, and recovered quickly—without paying criminals,” Lombardo said in a statement.
That one decision shaped the entire response. It showed confidence in state workers, respect for taxpayers, and a commitment to principle over panic.
What Happened
Investigators found the trouble started months earlier, when a state employee unknowingly downloaded a fake software tool that contained hidden malware. That mistake opened a digital backdoor for hackers.
By late August, the attackers had crept through critical servers, stolen passwords, and deleted backups. At 1:50 a.m. on August 24, state IT staff discovered a system outage—and a ransom note.
Rather than panic, Nevada followed the playbook it had practiced for years. The GTO isolated affected systems, called in expert help from Mandiant, Microsoft, and Dell, and alerted federal partners like the FBI and Homeland Security.
Within hours, teams were working around the clock to contain the breach, clean up the damage, and start the rebuild.
What It Cost—and What It Saved
Refusing to pay didn’t mean it was free. The state spent about $1.3 million on specialized vendors for forensics, legal guidance, and system recovery.
But here’s the key: that money went to trusted experts—not to criminals.
Meanwhile, 50 state employees logged 4,212 overtime hours during the 28-day recovery, earning about $210,000 in overtime pay (around $259,000 with benefits). If Nevada had hired contractors instead, costs could have soared past $700,000 just in labor.
That’s what fiscal discipline looks like—doing the work in-house and keeping control.
How They Pulled It Off
The Governor’s Technology Office ran on one simple rule:
“Execute, then communicate.”
That meant restoring payroll, public safety, and citizen services first—then explaining what happened, step by step, once the systems were safe.
The state used its cyber insurance and pre-arranged contracts to bring in top vendors within hours. Experts rebuilt servers, restored data, and verified security before flipping any switches back on.
In the end, about 90% of all data was recovered, and no confirmed leaks were found on the dark web.
Nevada was fully operational again in less than a month—faster than many states that pay the ransom and still struggle for weeks to rebuild.
Why It Matters to Conservatives
This story isn’t just about computers—it’s about good governance.
Governor Lombardo’s decision shows how limited, disciplined government can work when it’s well-prepared. Instead of throwing money at the problem or bowing to criminals, the state relied on training, partnerships, and careful planning.
That’s the kind of leadership conservatives believe in: self-reliance, accountability, and respect for taxpayer dollars.
No bailouts. No panic. Just a plan that worked.
Critics and Caution
Not everyone was satisfied. Some critics have said the 28-day recovery was too long or that details about data exposure should have been made public sooner.
But experts point out that many government ransomware recoveries take two to three months—or more. Nevada’s 28-day timeline is seen as a success story across the public sector.
And the state isn’t stopping there.
What’s Next
The After-Action Report lays out next steps to harden Nevada’s defenses:
-
A centralized Security Operations Center (SOC) to spot threats faster.
-
Modern Endpoint Detection and Response (EDR) tools for real-time protection.
-
Stronger identity and password controls.
-
Expanded employee training to recognize phishing and social-engineering attacks.
It’s all part of a push to make the state more resilient—without wasting resources or creating more bureaucracy.
The Bottom Line
Governor Lombardo’s refusal to pay ransom wasn’t just about money. It was about showing what government can do when it sticks to its principles and plans ahead.
Nevada didn’t cave. It recovered. And it did it the right way—through teamwork, planning, and common sense.
That’s something every taxpayer can appreciate.
Read the report: GTO Statewide Cyber Event AAR Final
The opinions expressed by contributors are their own and do not necessarily represent the views of Nevada News & Views. This article was written with the assistance of AI. Please verify information and consult additional sources as needed.
