A nationwide CodeRED outage, a major emergency notification platform used by emergency management agencies across the United States. The disruption follows a cybersecurity incident this month involving CodeRED’s vendor, Onsolve. South Carolina Emergency Management Division (SCEMD) confirmed that it cannot access the system. Local agencies using CodeRED also remain offline while the vendor works to restore services.
The CodeRED outage impacts how agencies deliver alerts to residents in fast-moving or hazardous situations. CodeRED supports notifications for weather risks, evacuation orders, utility issues, and local emergency updates. Many states rely on the system because it can send fast, location-based warnings to phones and email accounts. The current shutdown has placed extra pressure on backup tools that must stay active until full service returns.
Backup Alert Systems Continue to Operate
Despite the CodeRED outage, SCEMD said that agencies can still issue alerts through IPAWS, the federal platform designed to deliver emergency messages nationwide. These alerts can reach cell phones without needing access to CodeRED. Agencies can also use local broadcast tools to share warnings during dangerous events. This allows officials to maintain communication even while the main system is offline.
The CodeRED outage does not affect alerts from the National Weather Service. Weather warnings will still appear through regular channels, including Wireless Emergency Alerts on mobile devices. SCEMD stressed that residents will continue to receive urgent notifications for high-risk weather. Officials said these parallel alert paths remain reliable during the CodeRED disruption.
Vendor Confirms Data Exposure
Onsolve stated that the cybersecurity incident earlier this month exposed parts of the CodeRED subscriber database. The type of compromised information includes names, addresses, email contacts, phone numbers, and passwords tied to CodeRED accounts. The vendor said there is no sign that this information is online or being misused. However, the exposure still raises concerns because many people reuse passwords across different accounts.
SCEMD urged subscribers to change any passwords connected to CodeRED. This includes passwords that may also be used for banking, shopping, or work accounts. Password reuse makes people more vulnerable when data is involved in a CodeRED outage, even if the information has not appeared on public forums. A single reused password can place multiple accounts at risk, so immediate changes are necessary.
Onsolve has not released technical details about the CodeRED outage. The company said it continues to investigate the attack and review the affected data. It is also working to restore CodeRED service as quickly as possible. While timelines remain unclear, the company said its teams are applying new layers of protection before reconnecting agencies to the system.
Residents Urged To Use Multiple Alert Channels
SCEMD encouraged the public to make sure their phones have Wireless Emergency Alerts enabled. These alerts can reach phones even when local notification systems are offline. Agencies also recommend using NOAA Weather Radio, local news broadcasts, and official emergency management social media pages for updates. These channels help ensure people receive accurate information during storms, chemical hazards, or other fast-moving events.
People can also follow local emergency management pages for real-time instructions during the CodeRED outage. These channels provide updates on restoration efforts and any new temporary alert paths. They also share safety tips that help families prepare for unexpected disruptions. Officials said layered communication methods are important during any period of reduced system availability.
SCEMD said it will continue to work with local agencies to manage alerts until CodeRED is restored. The division noted that emergency communication remains stable through alternate platforms. It also emphasized that residents will continue to receive warnings during high-risk events. The goal is to maintain public safety while the vendor completes system recovery.
Also Read: Vendor Cyber Incident Triggers Data Exposure Concerns for Major U.S. Banks
