A recent study reveals that residents of Nevada face the greatest risk of having their online personal information breached. 

DesignRush, a B2B marketplace linking advertising and marketing firms with clients looking for web design, digital marketing, search engine optimization, and social media services, celebrated Data Privacy Day 2025 on January 28 by conducting an in-depth analysis of which states offer the best protections in the current digital landscape. 

The DesignRush research evaluated all 50 US states according to their effectiveness in safeguarding residents’ information. Nevada, which hosts the wealthiest casino market in the nation filled with vast amounts of essential data on gamblers and their expenditures, ranked close to the lowest. 

The Silver State received a data safety score of 77.64 out of 100, placing it at No. 44. According to researchers, Nevada's score of 77.64 indicates the state's "significantly elevated cybercrime rate." 

Nevada’s cybercrime rate, at almost 308 incidents per 100,000 residents, is over three times higher than the national median. The rate is the highest nationwide. 

DesignRush clarified that the cybercrime rate quantifies the frequency of online offenses such as identity theft, fraud, and personal data breaches per 100,000 residents. Reduced rates reflect more robust defenses against cyber threats. 

Cybercrime in Nevada 

Due to its numerous casinos and licensed gaming establishments — 310 venues featuring slot machines by December 2024 — cybercriminals persist in aiming at businesses in Nevada. Cyberattacks frequently target customer and employee data, which malicious individuals may sell on the dark web if ransoms are not fulfilled. 

The DesignRush investigation utilized information provided by the FBI's Internet Crime Report and IT Governance USA to create its rankings and statistics. IT Governance is a provider based in NYC that offers services related to IT governance, risk management, and compliance. 

In addition to an exceptionally high rate of cybercrime, Nevada recorded "moderate data breaches" at a rate of 0.25 per 100,000 individuals. Data breaches include leaks of governmental and public information, with rates modified according to population size. 

The sole area where Nevada received a high rating in the DesignRush report was for its laws regarding data protection. Every state received a score between one and six according to how comprehensive its data privacy laws were. Nevada received five points for enacting a “narrow law.” 

The final grades were calculated by assigning weights of 70% to cybercrime per capita and data breaches per capita, while data protection laws contributed 30%. Nevada's total data safety rating surpassed only six states — South Carolina, Florida, Arizona, Massachusetts, Alaska, and South Dakota. 

Casino Security Breached 

The roster of recent cyberattacks targeting casinos in Nevada is extensive, yet no incident received more media attention than the significant September 2023 strike on the IT infrastructure of MGM Resorts and Caesars International. 

MGM declined to pay a ransom, leading to significant interruptions in its US operations. MGM subsequently stated that the cyber incident, which occurred through a method known as “social engineering,” where an unauthorized individual deceives an employee to achieve unlawful entry into a computer network, resulted in costs exceeding $100 million for the Bellagio operator. 

Caesars opted to pay a $15 million ransom to promptly restore its systems.