TZUTC: -0500
MSGID: 1751.consprcy@1:2320/105 2d8c7334
PID: Synchronet 3.21a-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0
TID: SBBSecho 3.28-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0
BBSID: CAPCITY2
CHRS: ASCII 1
FORMAT: flowed
Emergency alert systems across US disrupted following OnSolve CodeRED
cyberattack

Date:
Wed, 26 Nov 2025 14:04:00 +0000

Description:
INC Ransom claimed responsibility for the attack.

FULL STORY

OnSolve, a cloud-based critical-event and mass-notification platform, 
suffered a highly disruptive cyberattack recently which forced it to sunset
its legacy CodeRED environment and move to a new version, as well as losing
sensitive data and even a business customer. 

OnSolve is a service that helps organizations send urgent alerts and
communications via SMS, phone, email, push notifications and more. It is used
by state and local governments, the police, and other emergency services.
CodeRED is the platform that enables this service. 

Crisis24, the company behind OnSolve and CodeRED, recently notified its
customers about a targeted attack by an organized cybercriminal group, in
which it said that data associated with the legacy OnSolve CodeRED platform
was removed from our systems. It stressed that there is no evidence the data
was published online, but added that there is a strong possibility that it
might leak. 

FBI was notified

It appears that the impacted dataset may contain contact information of
OnSolve CodeRED users: name, address, email address, phone numbers, and/or
associated passwords used to create user profiles for alerts, the 
notification reads. 

If the same password is used by users for any other personal or business
accounts, those passwords should be changed immediately. 

The attack forced Crisis24 to rebuild its service via backup. However, since
the backup is more than six months old, the accounts and data generated in 
the meantime seem to be lost for good. 

The attack was claimed by a ransomware operator known as INC Ransom which
created a new entry on its Tor data leak site, and added screenshots showing
OnSolve customer data. 

At the same time, the Douglas County Sheriffs Office and the Douglas County
911 Board decided to cut all ties with CodeRED and look for a replacement. 

Our top priority is the privacy and protection of our citizens, which led to
the decision to end our agreement with CodeRED, it said in a press release. 

 Via BleepingComputer 

======================================================================
Link to news story:
https://www.techradar.com/pro/security/emergency-alert-systems-across-us-disru
pted-following-onsolve-codered-cyberattack

$$
--- SBBSecho 3.28-Linux
 * Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)
SEEN-BY: 105/81 106/201 128/187 129/14 305 153/7715 154/110 218/700
SEEN-BY: 226/30 227/114 229/110 206 300 307 317 400 426 428 470 664
SEEN-BY: 229/700 705 266/512 291/111 320/219 322/757 342/200 396/45
SEEN-BY: 460/58 633/280 712/848 902/26 2320/0 105 304 3634/12 5075/35
PATH: 2320/105 229/426