Executive Summary
- Crisis24 notified Craven County of a targeted cyberattack on the CodeRED platform.
- The breach resulted in the unauthorized removal of user data from the system.
- CodeRED is utilized by the county for critical public emergency notifications.
CRAVEN COUNTY, N.C. – Authorities in Craven County have confirmed a cybersecurity breach involving the OnSolve CodeRED platform, a critical tool used for disseminating emergency alerts to the public. The county was notified by the service provider, CodeRED by Crisis24, that the system was the victim of a targeted cybersecurity attack in November.
According to the administrative disclosure, the security incident resulted in the unauthorized removal of user data from the platform. The CodeRED system is the primary vehicle for Craven County to alert residents regarding urgent safety matters and local emergencies. While the notification confirmed the exfiltration of data, the immediate scope of the compromised information remains under assessment following the vendor’s report.
Digital Infrastructure Security
This breach underscores the systemic vulnerabilities associated with third-party digital supply chains in municipal governance. As local administrations increasingly rely on external platforms for mass communication during crises, the security integrity of these vendors becomes a matter of public safety. This incident highlights the necessity for rigorous data governance and potential contingency planning for emergency alert channels in the event of vendor-side system compromises.
