CodeRED Alert: When Ransomware Plays the Weather Channel Villain!

The cyber-attack on the OnSolve CodeRED platform has thrown a wrench into emergency notifications, prompting Crisis24 to rebuild the system from scratch. While the stolen data hasn’t been posted online, INC Ransom claims to be selling it. Affected cities are urging password changes faster than you can say “data breach.”

3P
Published: November 26, 2025 4:17 pmAdded: November 26, 2025 at 8:35 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Looks like the CodeRED alert system went Code Blue, courtesy of the INC Ransom group. It’s like a fire drill, but the fire’s digital and everyone’s running around with their hair on fire trying to figure out who forgot to lock the door. You know it’s bad when even the emergency alert system needs emergency help. Looks like the only thing CodeRED didn’t warn us about was… itself! Bummer for the 21st-century Paul Reveres trying to get out the message: “The Hackers are coming!”

Key Points:

  • The OnSolve CodeRED platform, used by state and local agencies for emergency notifications, was hit by a cyber-attack.
  • Crisis24, the provider, had to shut down the legacy system, leading to a complete rebuild in a new, secure environment.
  • User data, including names, addresses, email addresses, and passwords, was stolen by the INC Ransom group.
  • There’s no evidence yet that the stolen data has been posted online, but it might be sold on the dark web.
  • The incident has prompted many local governments to either terminate or upgrade their CodeRED contracts.

Emergency Alert: Your Data is Having an Emergency

In an ironic twist that would make Alanis Morissette proud, the OnSolve CodeRED platform, the digital Paul Revere for emergencies, got hacked. This digital alarm bell, used by countless state and local agencies, now finds itself in need of rescue after a cyber-attack threw a wrench into its works, making it about as useful as a chocolate teapot. Crisis24, the brains behind CodeRED, was left with no choice but to pull the plug on the old system, effectively taking it out to the farm to live with grandma. They’ve started from scratch, hoping to build a new, more secure platform that doesn’t double as a data buffet for hackers.

Data Breach: The Gift That Keeps on Giving

The attack was as subtle as a bull in a china shop, leaving a mess in its wake. User data was left out in the open like a piñata at a kid’s birthday party, with names, addresses, emails, and passwords all up for grabs. However, it seems the bad guys were too busy counting their loot to post it online, but that’s small comfort to those affected. Just because your data isn’t being paraded across the internet yet doesn’t mean it won’t be, so maybe it’s time to start changing those passwords faster than a chameleon changes colors.

Local Agencies: The Cyber Chicken Little

Local governments across 15 states are sounding the alarm, this time about the very system that was supposed to sound alarms for them. Some are cancelling their CodeRED subscriptions faster than a New Year’s gym membership, while others are clambering onto the new, supposedly hacker-proof version. The switch to the new platform might leave a few user accounts in the dust, but it’s a small price to pay for a system that won’t betray you faster than the plot of a daytime soap opera.

INC Ransom: The Cyber Heist Villains

Enter INC Ransom, the digital equivalent of a mustache-twirling villain who claimed responsibility for the whole debacle. They reportedly sashayed into OnSolve systems and encrypted files like they owned the place. When ransom negotiations went south, they started waving screenshots of customer data around like they were showing off vacation photos. Now they’re peddling what they claim is stolen data, adding a little extra spice to this already fiery cybersecurity stew. It’s a classic case of “pay up or your data takes a permanent vacation to the dark web.”

CodeRED 2.0: The Comeback Tour

The legacy platform of CodeRED has been retired, not with a gold watch but perhaps more like a swift kick out the door. Crisis24 is on a mission to rebuild the system with more security features than a bank vault, hoping to keep out the digital riffraff. With a full security audit and penetration tests that sound more invasive than a TSA screening, they’re aiming for a system that won’t need to be rushed to the ER every time hackers come knocking. As for the users, they’re left crossing their fingers and hoping the new CodeRED will be more reliable than its predecessor. After all, when it comes to emergency alerts, you really want a system that won’t call in sick.

In the end, the whole affair is a stark reminder that even the systems designed to protect us from disasters aren’t immune to becoming disasters themselves. So here’s hoping CodeRED 2.0 rises from the ashes like a phoenix, ready to sound the alarm without needing one of its own.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?