OP 27 November, 2025 - 07:16 PM
The INC Ransom group breached Crisis24's legacy CodeRED system on November 1, 2025, encrypting files by November 10 and now auctioning stolen user details like names, addresses, and plain-text passwords.
Crisis24 shut down the affected platform and shifted customers to a new system from a March backup, meaning some recent sign-ups are gone and people need to re-register. Impacts hit places like Douglas County and Arapahoe County in Colorado, Frisco in Texas, and Worcester in Massachusetts, with agencies using social media and door-to-door alerts as backups while 911 stays online. Officials urge password changes and credit monitoring to protect residents ahead of winter threats.
https://www.bleepingcomputer.com/news/se...ationwide/
![[Image: Untitled.png]](https://i.ibb.co/Q3L96QM7/Untitled.png)
Crisis24 shut down the affected platform and shifted customers to a new system from a March backup, meaning some recent sign-ups are gone and people need to re-register. Impacts hit places like Douglas County and Arapahoe County in Colorado, Frisco in Texas, and Worcester in Massachusetts, with agencies using social media and door-to-door alerts as backups while 911 stays online. Officials urge password changes and credit monitoring to protect residents ahead of winter threats.
https://www.bleepingcomputer.com/news/se...ationwide/