OnSolve, the company behind the widely used CodeRED emergency alert system, has confirmed a major cybersecurity incident involving a nationwide service outage and a significant data breach. The event left municipal and state agencies unable to transmit critical public safety alerts for several hours and exposed the personal information of millions of subscribers across the United States.

The incident began with users reporting a widespread inability to access the CodeRED system. Public safety officials confirmed they could not issue alerts for emergencies, including severe weather warnings and evacuation notices. In a public statement, OnSolve acknowledged the system failure and announced that its engineering teams were actively investigating the disruption.

Details of the System Outage

The service outage affected the entirety of the CodeRED network, which serves thousands of clients in government and public safety sectors. For a period of approximately eight hours, the platform used to send geographically targeted alerts via phone calls, text messages, and emails was completely inoperable. OnSolve later issued a statement confirming that service had been restored but that the outage was linked to a malicious external cyberattack. The company did not provide specific details on the nature of the attack but confirmed it was the root cause of the system’s failure.

Confirmed Data Breach and Exposed Information

Following the service restoration, OnSolve confirmed that the cyberattack also resulted in a data breach. An investigation revealed that unauthorized actors gained access to a database containing the personal information of CodeRED subscribers. The compromised data includes full names, physical addresses, phone numbers, and email addresses. The company stated that financial information and social security numbers were not stored on the affected server and were therefore not exposed. OnSolve has begun the process of notifying affected individuals and regulatory bodies as required by law, and has engaged third-party cybersecurity firms to assist in the investigation and secure its network infrastructure.

Source: https://www.malwarebytes.com/blog/news/2025/11/millions-at-risk-after-nationwide-codered-alert-system-outage-and-data-breach