Davidson County Emergency Management has been made aware of a data breach for the County's mass alerting system. The leaked data includes usernames and passwords for CodeRed, as well as addresses, emails, and phone numbers.
If you have subscribed to CodeRed and use the same username and password across multiple sites, we are asking you to change those passwords, as well as remain vigilant for any suspicious cyber activities. Davidson County will continue to work with CodeRed to ensure all of our information is up to date.
Source: https://www.davidsonlocal.com/news/jivb35xxzazqw7x3e3d9ca5h5zxayx
Community Resource Center, Middle Tennessee's Hygiene Hub cybersecurity rating report: https://www.rankiteo.com/company/crcmidtn
"id": "CRC1764803884",
"linkid": "crcmidtn",
"type": "Breach",
"date": "12/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'incident': {'affected_entities': [{'customers_affected': 'Subscribers to '
'CodeRed',
'industry': 'Emergency Management',
'location': 'Davidson County',
'name': 'Davidson County Emergency '
'Management',
'size': None,
'type': 'Government'}],
'customer_advisories': 'Change passwords and remain vigilant for '
'suspicious cyber activities',
'data_breach': {'data_encryption': None,
'data_exfiltration': None,
'file_types_exposed': None,
'number_of_records_exposed': None,
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Usernames',
'Passwords',
'Addresses',
'Emails',
'Phone numbers']},
'description': 'Davidson County Emergency Management has been '
"made aware of a data breach for the County's "
'mass alerting system. The leaked data includes '
'usernames and passwords for CodeRed, as well as '
'addresses, emails, and phone numbers.',
'impact': {'brand_reputation_impact': None,
'conversion_rate_impact': None,
'customer_complaints': None,
'data_compromised': 'Usernames, passwords, addresses, '
'emails, and phone numbers',
'downtime': None,
'financial_loss': None,
'identity_theft_risk': 'High',
'legal_liabilities': None,
'operational_impact': None,
'payment_information_risk': None,
'revenue_loss': None,
'systems_affected': 'CodeRed mass alerting system'},
'initial_access_broker': {'backdoors_established': None,
'data_sold_on_dark_web': None,
'entry_point': None,
'high_value_targets': None,
'reconnaissance_period': None},
'post_incident_analysis': {'corrective_actions': None,
'root_causes': None},
'ransomware': {'data_encryption': None,
'data_exfiltration': None,
'ransom_demanded': None,
'ransom_paid': None,
'ransomware_strain': None},
'recommendations': 'Change passwords if reused across multiple '
'sites and remain vigilant for suspicious '
'cyber activities',
'references': [{'date_accessed': None,
'source': 'Davidson County Emergency Management '
'Advisory',
'url': None}],
'regulatory_compliance': {'fines_imposed': None,
'legal_actions': None,
'regulations_violated': None,
'regulatory_notifications': None},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': 'Public advisory issued '
'to change passwords and '
'remain vigilant for '
'suspicious cyber '
'activities',
'containment_measures': None,
'enhanced_monitoring': None,
'incident_response_plan_activated': None,
'law_enforcement_notified': None,
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': None,
'remediation_measures': 'Password changes '
'recommended for affected '
'users',
'third_party_assistance': 'CodeRed'},
'title': 'Davidson County CodeRed Mass Alerting System Data '
'Breach',
'type': 'Data Breach'}}