News & Updates
Security incidents, policy updates, and YesGov platform news.
Arab, Alabama Loses $430,000+ to Phishing Attack Despite Prior Warnings
The City of Arab, AL lost over $430,000 to a business email compromise attack in 2026. YesGov had warned the city about its critical email security failures in both December 2024 and January 2025. The city took no action and maintained an F security rating.
Read more »Smithville, Tennessee Loses $425,000 to Email Spoofing Fraud
In December 2025, the City of Smithville, TN lost $425,000 when attackers spoofed a vendor's email and tricked city officials into wiring payment to a fraudulent account. Proper SPF and DMARC configuration would have blocked the attack.
Read more »Baltimore Spent $18 Million Recovering from Ransomware Attack
In 2019, Baltimore's city government was crippled by a ransomware attack that exploited unpatched systems and weak security controls. The city spent an estimated $18 million on recovery — taxpayer dollars diverted from essential services.
Read more »Nevada State Systems Hit by $1.5 Million Ransomware Attack
In August 2025, Nevada's state systems were compromised in a ransomware attack that began when an employee downloaded malicious software. Weak email security controls allowed the payload to reach the employee. Recovery cost $1.5 million.
Read more »Attleboro, Massachusetts City and Police Systems Taken Offline by Ransomware
In 2025, the City of Attleboro, MA was hit by a ransomware attack that forced both city and police operations to manual, paper-based processes. The attack demonstrated how a single point of failure can cripple an entire municipal government.
Read more »Columbus, Ohio Ransomware Attack Exposes Thousands of Citizens' Personal Data
Columbus, Ohio experienced a major ransomware attack that disrupted city operations and exposed thousands of citizens' Social Security numbers and personal information. The breach highlighted how interconnected systems and weak controls allow attackers to move laterally.
Read more »Clark County School District Breach Exposes Data of 200,000+ Students
The Clark County School District in Nevada suffered a data breach that exposed personal information of over 200,000 students. The breach demonstrated that educational institutions face the same threats as other government agencies — with particularly vulnerable populations at risk.
Read more »