Media release from the Floyd County, GA Emergency Management Agency:
The Floyd County Emergency Management Agency has been made aware of a targeted cyberattack against our mass communication vendor commonly known as CodeRED. A theft of an unknown amount of data occurred and users with CodeRED login are encouraged to change passwords.
Floyd County EMA received an email from the CodeRED parent company Crisis24 on Saturday describing a “targeted attack by an organized cybercriminal group” and its impact on Floyd County and local subscribers of the service.
“Please continue to follow safe cybersecurity practices,” said Tim Herrington, director of Floyd County EMA. “Avoid links and attachments from unfamiliar senders and don’t be pressured by callers or emails that compel you to act quickly or share financial information.”
According to the email announcement from Crisis24, data associated with the CodeRED platform “was removed” from the system.
As a result of this incident, the subscriber database for sending messages is currently unavailable. All subscribers who enrolled after March 31, 2025 have been lost.
Emergency messages and alerts for incidents that pose a risk to the community will be sent through Georgia Emergency Management Agency (GEMA) using the Integrated Public Alert and Warning System (IPAWS). National Weather Service alerts are based on GPS data and do not rely on CodeRED subscriber data.
Crisis24 describes the incident as a “contagion” and asserts that it did not spread outside of the company. “Data potentially associated with the OnSolve CodeRED platform may be published,” according to an FAQ published in the email statement on Saturday.
Data affected by the attack was limited to contact information of CodeRED users, to include: name, address, email address, phone numbers, and/or associated passwords used to create user profiles for alerts.
“If the same password is used by users for any other personal or business accounts, those passwords should be changed immediately,” the announcement states.
Floyd County EMA first observed a problem with CodeRED on November 10 but were told that it was only an outage. On November 18 we were notified of a cybersecurity incident, and on Saturday November 22 we were advised that it was the result of criminal activity.
Questions and concerns may be sent to [email protected] CodeRED can be found online at www.crisis24.com/lp/onsolve-contact-us.