Cyber Incident Victim: Town of Summerville

The Town of Summerville, South Carolina, experienced a ransomware-based cyberattack beginning on the morning of Thursday, July 1, 2024. The incident first manifested when the Summerville Police Department reported administrative system outages, prompting notification of the town's IT department within 30 minutes. Attack activity persisted into Friday morning before being identified and contained through the town's monitoring systems, which officials described as "vigilant." While the attack disrupted certain administrative functions, particularly within police operations, town representatives confirmed no evidence indicated compromise of sensitive data or documents. The containment measures implemented limited operational damage, though officials acknowledged the inherent complexity of cyberattacks during response efforts. Christopher Makowski, the town's Public Information Officer, emphasized the evolving understanding of the incident as investigations progressed.

Following containment, the Town of Summerville engaged state and federal cybersecurity teams to conduct a comprehensive investigation and full forensic review of all systems. Municipal departments—including police, fire, and public works—maintained full operational capacity throughout the incident, with emergency services continuing uninterrupted response to community needs. Town leadership affirmed their existing cybersecurity protocols but declined to disclose specific measures due to security sensitivities. The origin, perpetrators, and technical methodology of the attack remained undetermined pending completion of investigative processes. Officials committed to public transparency, pledging to share updates through social media channels and the town website as new information emerged from the ongoing forensic examination. No timeline was provided for resolution of the investigation or public disclosure of findings.