Cyber Incident Victim: Tipton County Schools

On January 23, 2017, Tipton County Schools in Tennessee suffered a data breach after an employee fell victim to a phishing attack. An unauthorized third party posing as the district’s Director of Schools, Dr. William “Buddy” Bibb, successfully tricked the employee into emailing a PDF file containing sensitive W-2 tax information for all district staff. The compromised data included employees’ Social Security numbers, exposing them to potential identity theft and financial fraud. With approximately 700 teachers and support staff employed by the district, the breach impacted the entire workforce of the county’s largest employer. The incident was discovered promptly, as the district initiated notifications the same day the phishing scheme succeeded. No technical system intrusion or malware deployment occurred; the breach resulted solely from human error in responding to the fraudulent email request.

Dr. Bibb confirmed the unauthorized disclosure in a letter distributed to all affected employees, advising them to take protective measures against identity theft. The district mobilized its full resources to address the breach, though specific technical or forensic actions were not detailed in public communications. The notification emphasized the accidental nature of the data exposure while acknowledging the seriousness of the compromised personally identifiable information. As W-2 forms were being distributed nationwide during this period, the incident highlighted the heightened risk of similar phishing attempts targeting payroll data across organizations. The breach’s impact was confined to the exposure of employee records, with no evidence suggesting further system compromises or secondary attacks stemming from the event.