US emergency alert systems hit by OnSolve CodeRED cyberattack

BleepingComputer reports that multiple U.S. state and local governments, as well as police and fire departments, had their emergency notification systems disrupted following a cyberattack against risk management firm Crisis24's OnSolve CodeRED platform, which the INC ransomware-as-a-service gang has since claimed.

Only the OnSolve CodeRED environment was impacted by the intrusion, which has resulted in the theft of users' names, addresses, phone numbers, email addresses, and passwords, according to Crisis24, which emphasized that no misuse of the stolen data has been observed so far. Meanwhile, the INC ransomware operation took responsibility for the attack against OnSolve's systems on Nov. 1 and subsequent data encryption on Nov. 10.

All data pilfered in the intrusion has been offered for sale following Crisis24's purported refusal to pay the demanded ransom. Numerous organizations around the world have already been compromised by INC since its emergence more than two years ago, with Xerox Business Solutions' U.S. division, Ahold Delhaize, and Scotland's National Health Service among its most recent victims.