TZUTC: -0500   
   MSGID: 1751.consprcy@1:2320/105 2d8c7334   
   PID: Synchronet 3.21a-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0   
   TID: SBBSecho 3.28-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0   
   BBSID: CAPCITY2   
   CHRS: ASCII 1   
   FORMAT: flowed   
   Emergency alert systems across US disrupted following OnSolve CodeRED   
   cyberattack   
      
   Date:   
   Wed, 26 Nov 2025 14:04:00 +0000   
      
   Description:   
   INC Ransom claimed responsibility for the attack.   
      
   FULL STORY   
      
   OnSolve, a cloud-based critical-event and mass-notification platform,    
   suffered a highly disruptive cyberattack recently which forced it to sunset   
   its legacy CodeRED environment and move to a new version, as well as losing   
   sensitive data and even a business customer.    
      
   OnSolve is a service that helps organizations send urgent alerts and   
   communications via SMS, phone, email, push notifications and more. It is used   
   by state and local governments, the police, and other emergency services.   
   CodeRED is the platform that enables this service.    
      
   Crisis24, the company behind OnSolve and CodeRED, recently notified its   
   customers about a targeted attack by an organized cybercriminal group, in   
   which it said that data associated with the legacy OnSolve CodeRED platform   
   was removed from our systems. It stressed that there is no evidence the data   
   was published online, but added that there is a strong possibility that it   
   might leak.    
      
   FBI was notified   
      
   It appears that the impacted dataset may contain contact information of   
   OnSolve CodeRED users: name, address, email address, phone numbers, and/or   
   associated passwords used to create user profiles for alerts, the    
   notification reads.    
      
   If the same password is used by users for any other personal or business   
   accounts, those passwords should be changed immediately.    
      
   The attack forced Crisis24 to rebuild its service via backup. However, since   
   the backup is more than six months old, the accounts and data generated in    
   the meantime seem to be lost for good.    
      
   The attack was claimed by a ransomware operator known as INC Ransom which   
   created a new entry on its Tor data leak site, and added screenshots showing   
   OnSolve customer data.    
      
   At the same time, the Douglas County Sheriffs Office and the Douglas County   
   911 Board decided to cut all ties with CodeRED and look for a replacement.    
      
   Our top priority is the privacy and protection of our citizens, which led to   
   the decision to end our agreement with CodeRED, it said in a press release.    
      
    Via BleepingComputer    
      
   ======================================================================   
   Link to news story:   
   https://www.techradar.com/pro/security/emergency-alert-systems-across-us-disru   
   pted-following-onsolve-codered-cyberattack   
      
   $$   
   --- SBBSecho 3.28-Linux   
    * Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)   
   SEEN-BY: 105/81 106/201 128/187 129/14 305 153/7715 154/110 218/700   
   SEEN-BY: 226/30 227/114 229/110 206 300 307 317 400 426 428 470 664   
   SEEN-BY: 229/700 705 266/512 291/111 320/219 322/757 342/200 396/45   
   SEEN-BY: 460/58 633/280 712/848 902/26 2320/0 105 304 3634/12 5075/35   
   PATH: 2320/105 229/426