Cyber Incident Victim: Clark County

On October 21, 2023, Clark County detected suspicious activity on its countywide network, prompting an immediate investigation. Initial public communications described the incident vaguely as "suspicious website activity," with county spokesperson Joni McAnally declining to confirm whether hackers were involved. The disruption forced the temporary shutdown of multiple online services, including the Property Information Center, Geographic Information Services (GIS) webpages, and the county jail roster. During an emergency board meeting that same day, Councilman Gary Medvigy characterized the event as a "cyberattack," emphasizing that such threats target organizations continuously. The council unanimously approved an emergency resolution to bypass standard procurement procedures and retain an unnamed forensic consultant to assess the attack's scope and impacts. County officials stated no evidence indicated compromise of employee or resident data during the initial phase of the investigation.

Information Technology teams worked to restore functionality, successfully bringing the main county website and jail roster page back online while other systems remained under evaluation. The Elections Office confirmed its voter registration database operated on Washington State's VoteWA system remained unaffected, resolving earlier delays in registration updates unrelated to the attack. By the time of the county's service update, GIS, Property Information Center, and jail systems were fully operational, though some employee computers required further remediation. Clark County reiterated its commitment to transparency regarding potential data exposure while continuing forensic analysis with external specialists. Network monitoring protocols enabled early detection of the anomaly, though investigators had not determined whether multiple incidents occurred or if the activity constituted a single coordinated attack at the time of reporting.