The City of Greenville, Texas, has concluded its investigation into the cyber incident first identified on August 5, 2025.
Working closely with law enforcement and a third-party cybersecurity firm, the city has determined the scope and impact of the event.
Key findings include:
• The incident was not the result of phishing or employee error, but an issue with a third-party service provider. That provider has taken the necessary steps to mitigate the problem.
• No personal data belonging to citizens or employees - including Social Security numbers, payment systems, or other sensitive information - was affected.
• No Greenville Electric Utility System (GEUS) data was stolen.
While GEUS experienced the most visible customer impact, the cyber incident was not directed at GEUS and did not impact GEUS’s network.
Access to GEUS’s account database was temporarily disabled by the City as a protective measure.
City systems have been fully restored, and all critical services remained available to the public throughout the response.
The city will continue to review its cybersecurity infrastructure to further strengthen defenses and reduce the risk of future incidents.
“We are grateful to our staff and partners who worked quickly and diligently to protect the City’s systems and safeguard our community,” said City Manager Summer Spurlock. “We also appreciate the patience of our residents as we took the necessary time to investigate and restore services.”
