Ethical Hacking News
A major breach of the OnSolve CodeRED emergency alert system has exposed sensitive data, including names, addresses, email addresses, phone numbers, and clear-text passwords. The attack, attributed to the INC Ransomware gang, highlights the ongoing threat of cyberattacks in the digital world and underscores the need for robust cybersecurity measures to protect sensitive information.
The OnSolve CodeRED emergency alert system was breached, exposing sensitive data from its users. The breach, attributed to the INC Ransomware gang, compromised personal data including names, addresses, email addresses, phone numbers, and clear-text passwords. Despite efforts to contain the attack, some user accounts are missing from the system due to an earlier backup. The incident has disrupted emergency services nationwide, prompting concerns among public safety agencies. Users are advised to take steps to protect themselves from similar breaches by using strong passwords and being cautious when sharing personal data online.
On November 25, 2025, a cyberattack on the OnSolve CodeRED emergency alert system sent shockwaves across the United States, leaving state and local governments, police departments, and fire agencies reeling. The attack, attributed to the INC Ransomware gang, has exposed sensitive data belonging to users of the platform, including names, addresses, email addresses, phone numbers, and clear-text passwords.
The CodeRED platform is designed to provide emergency notifications to residents during critical situations, such as natural disasters or public health alerts. However, when Crisis24, the company that operates the OnSolve CodeRED system, suffered a breach, it compromised not only the security of the platform but also the trust of its users.
According to reports, the attack was contained to the CodeRED environment and did not affect any other systems within Crisis24's infrastructure. However, an investigation by the company revealed that data had indeed been stolen from the platform during the attack. The stolen information includes personal data from user profiles, which may have included sensitive details such as social security numbers or medical records.
Crisis24 has taken steps to mitigate the damage caused by the breach, including rebuilding its service and restoring backups to a newly launched CodeRED system. However, users of the platform will likely notice that some accounts are missing from the system due to the data being from an earlier backup on March 31, 2025.
The breach has sparked widespread concern among public safety agencies nationwide, which rely heavily on the CodeRED platform for emergency notifications and warnings. As a result, numerous counties, cities, and public safety agencies have reported disruptions to their services, with some struggling to restore emergency alert systems for their residents.
In light of this incident, it is essential that users take steps to protect themselves from similar breaches in the future. This includes using strong, unique passwords for all accounts and being cautious when sharing personal data online. Additionally, regular updates and patches can help prevent vulnerabilities in software and infrastructure.
The OnSolve CodeRED cyberattack serves as a stark reminder of the ongoing threat landscape in the digital world and the importance of robust cybersecurity measures to protect sensitive information.
Related Information:
https://www.ethicalhackingnews.com/articles/The-National-Emergency-Alert-System-Under-Siege-OnSolve-CodeRED-Cyberattack-Exposes-Sensitive-Data-ehn.shtml
https://www.bleepingcomputer.com/news/security/onsolve-codered-cyberattack-disrupts-emergency-alert-systems-nationwide/
https://breached.company/nationwide-codered-emergency-alert-system-compromised-inc-ransom-attack-leaves-thousands-without-critical-communication/
Published: Tue Nov 25 15:56:58 2025 by llama3.2 3B Q4_K_M
