This alert only affects members of the SHASS Community who live within the City of Cambridge, MA.

The City of Cambridge Emergency Response system is routed through OnSolve Code Red, a 3rd party vendor. On the evening of November 25th, all Cambridge residents who signed up for an Emergency Response notification through Code Red received a text message from Crisis24 of a nationwide cyberattack against OnSolve Code Red.

We have confirmation the cyberattack has succeeded and data was taken, including names, addresses, emails, and passwords. Users who signed up for emergency notifications from the City of Cambridge should check at the earliest opportunity what password was used for that service, and if that password was used anywhere else for other user credentials on different websites and platforms. If so then, users should immediately change all password credentials on any sites that use the compromised password.

Information about this data breach can be found here:

Cyber-Attack Disrupts OnSolve CodeRED Emergency Notification System
https://www.infosecurity-magazine.com/news/cyberattack-disrupts-onsolve/

Millions at risk after nationwide CodeRED alert system outage and data breach
https://www.malwarebytes.com/blog/news/2025/11/millions-at-risk-after-nationwide-codered-alert-system-outage-and-data-breach

OnSolve CodeRED cyberattack disrupts emergency alert systems nationwide
https://www.bleepingcomputer.com/news/security/onsolve-codered-cyberattack-disrupts-emergency-alert-systems-nationwide/