Key Takeaways
- Spartanburg County’s core network services were restored after a weeks‑long outage that disrupted internet‑dependent government functions.
- The outage forced offices to rely on manual, paper‑based processes, causing delays but not a complete halt to services.
- SLED’s South Carolina Critical Infrastructure Cybersecurity (SC CIC) team investigated “questionable activity” on the county network.
- County officials state there is currently no evidence that data was accessed, exfiltrated, or compromised.
- Precautionary network isolation and ongoing security reviews were implemented while IT staff and external partners worked to restore systems safely.
- The county acknowledges the inconvenience to employees, residents, and businesses and thanks its IT team and support partners for their efforts.
- Spartanburg County is strengthening its cybersecurity posture with additional tools, resources, and measures, though specific technologies remain undisclosed for security reasons.
- The incident follows a prior data breach in August 2025 and a ransomware attack in April 2023, highlighting an ongoing threat landscape for the county.
Overview of the Outage and Immediate Impacts
Spartanburg County officials announced that core network services have been fully restored after an extended outage that left many government offices without reliable internet, computer, and phone access. For several weeks, employees were unable to perform routine digital tasks, which affected a broad range of county‑provided services. The disruption was significant enough to prompt the South Carolina Law Enforcement Division (SLED) to launch an investigation into the underlying cause. While the exact nature of the incident has not been disclosed publicly, the county emphasized that the outage was not merely a minor hiccup‑level but a sustained loss of connectivity that required coordinated response efforts across multiple departments.
Effects on Specific Departments and Manual Workarounds
During the outage, certain offices in the County Administration building could not process card payments or issue documents such as licenses and deeds. The Sheriff’s Office reported a shift to handwritten reports to keep investigations moving forward; Lieutenant Graham McLellan noted that while the reliance on pens and paper introduced delays, it did not bring investigative work to a complete standstill. Similarly, the Clerk of Court’s office, led by Amy Cox, described how staff members utilized personal devices and assets to fulfill professional requests when county systems were unavailable. These improvisations allowed essential functions to continue, albeit at a reduced pace, highlighting the resilience of county personnel in the face of technical failure.
SLED’s Investigation and the Role of SC CIC
The outage triggered an examination by SLED’s South Carolina Critical Infrastructure Cybersecurity (SC CIC) team, which was tasked with investigating the “questionable activity” detected on the county’s network. Although the county has not released specifics about what the investigators found, the involvement of SC CIC underscores the seriousness with which state authorities treat potential threats to critical local government infrastructure. The investigation aimed to determine whether the outage stemmed from malicious intent, accidental misconfiguration, or another source, and to ensure that any vulnerabilities were identified and addressed before full service restoration.
Official Statement on Restoration and Monitoring
On Monday, June 29, Spartanburg County issued a formal statement to WYFF News 4 confirming that core network services had been restored and that employees had resumed normal network connectivity. The statement highlighted that the county’s IT team continues to monitor systems closely, addressing any isolated issues that arise as devices and applications reconnect. It also cautioned that some services might experience intermittent delays while validation processes bring all components back into full, normal operation. The transparency of this update was intended to reassure residents, businesses, and county staff that the situation was under control and that efforts were underway to ensure lasting stability.
Security Measures, Network Isolation, and Ongoing Review
After detecting activity that warranted further scrutiny, the county took the precautionary step of securing and isolating portions of its network while additional security checks were performed. During this period, the internal IT team collaborated with outside support partners to review and restore systems in a safe, controlled manner. Officials reiterated that, to date, there is no evidence that any data was accessed, exfiltrated, or compromised. Nevertheless, the security review remains ongoing, with the county continuing to engage external experts to complete a thorough assessment and to confirm that all potential threats have been mitigated.
Acknowledgement of Challenges and Appreciation for Partners
The county’s statement also acknowledged the disruption’s impact on employees, residents, and members of the business community who depend on county systems and records for daily operations. Officials expressed gratitude for the patience and understanding demonstrated by those affected and extended special thanks to the IT staff and external support partners whose diligent efforts facilitated the safe and efficient restoration of services. This recognition underscores the collaborative nature of the response and the importance of maintaining morale and trust during technical crises.
Future Cybersecurity Enhancements and Ongoing Commitment
Looking ahead, Spartanburg County emphasized its commitment to continually evaluating and strengthening its cybersecurity practices to prevent similar incidents. The county reported that it has already invested in additional tools, resources, and security measures as part of an ongoing initiative to protect its systems and the information entrusted to it. While specific technologies or protocols remain undisclosed due to their sensitive nature, officials affirmed that bolstering the security posture is a top priority and that they will continue to work with partners and experts to safeguard county infrastructure against future threats.
Historical Context: Prior Breach and Ransomware Incident
The summary concludes by noting that Spartanburg County has previously faced significant cyber challenges, including a data breach in August 2025 and a ransomware attack in April 2023. No further details about those events were provided in the current report, but their mention serves to illustrate that the recent outage is part of a broader pattern of cybersecurity threats confronting the county. This historical perspective reinforces the necessity of the ongoing investments and vigilance described in the county’s statement, as well as the importance of learning from past incidents to improve future defenses.