• Home
  • cyber
  • South Country Health Alliance: Wabasha County officials issue warning about data breach
cyber Breach

South Country Health Alliance: Wabasha County officials issue warning about data breach

Dec 11, 2025 2 min read
South Country Health Alliance: Wabasha County officials issue warning about data breach

**Wabasha County Data Breach Exposes Resident Information via Emergency Notification System**

Wabasha County, Minnesota, officials disclosed a data breach affecting its emergency notification system, OnSolve CodeRED, after a forensic investigation confirmed unauthorized access by an organized cybercriminal group. The incident, first reported to the county’s emergency management office in November, involved the potential exfiltration of user data, including names, addresses, email addresses, phone numbers, and passwords tied to the CodeRED platform.

In a December 10 Facebook statement, the Wabasha County Sheriff’s Office revealed that the compromised system had been disabled and that the county is transitioning to an upgraded emergency notification system. While the investigation remains ongoing, officials urged residents who reused the exposed CodeRED password for other accounts to update their credentials immediately.

The breach highlights vulnerabilities in third-party emergency alert systems, raising concerns about the security of sensitive resident data. Wabasha County Emergency Management Director Brenda Tomlinson is available for further inquiries at 651-565-3069 or via email.

Source: https://www.postbulletin.com/news/local/wabasha-county-officials-issue-warning-about-data-breach

South Country Health Alliance cybersecurity rating report: https://www.rankiteo.com/company/south-country-health-alliance

"id": "SOU1765499305",
"linkid": "south-country-health-alliance",
"type": "Breach",
"date": "12/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 'Residents using OnSolve CodeRED',
                        'industry': 'Public Safety/Emergency Management',
                        'location': 'Wabasha, Minnesota, USA',
                        'name': 'Wabasha County Emergency Management',
                        'type': 'Government'}],
 'customer_advisories': 'Strong encouragement to change passwords for any '
                        'accounts using the same password as CodeRED',
 'data_breach': {'data_exfiltration': 'Data may have been removed from the '
                                      'system',
                 'personally_identifiable_information': 'Names, addresses, '
                                                        'email addresses, '
                                                        'phone numbers, '
                                                        'passwords',
                 'sensitivity_of_data': 'High (names, addresses, email '
                                        'addresses, phone numbers, passwords)',
                 'type_of_data_compromised': 'Personally identifiable '
                                             'information (PII)'},
 'date_detected': '2023-11',
 'date_publicly_disclosed': '2023-12-10',
 'description': "A data breach related to Wabasha County's emergency "
                'notification system, OnSolve CodeRED, has potentially '
                "impacted residents' online security. An organized "
                'cybercriminal group claimed responsibility, and data '
                "including users' names, addresses, email addresses, phone "
                'numbers, and passwords may have been removed from the system.',
 'impact': {'brand_reputation_impact': 'Potential impact due to apology and '
                                       'public disclosure',
            'data_compromised': "Users' names, addresses, email addresses, "
                                'phone numbers, and passwords',
            'identity_theft_risk': 'High due to exposure of personally '
                                   'identifiable information',
            'operational_impact': 'System disabled and being replaced',
            'systems_affected': 'OnSolve CodeRED emergency notification '
                                'system'},
 'investigation_status': 'Ongoing',
 'post_incident_analysis': {'corrective_actions': 'Replacing the compromised '
                                                  'system with an improved '
                                                  'emergency notification '
                                                  'system'},
 'recommendations': 'Change passwords for any accounts using the same password '
                    'as CodeRED',
 'references': [{'date_accessed': '2023-12-10',
                 'source': "Wabasha County Sheriff's Office Facebook post"}],
 'response': {'communication_strategy': 'Public advisory via Facebook and '
                                        'contact information for inquiries',
              'containment_measures': 'Compromised system disabled',
              'remediation_measures': 'Replacing with an improved emergency '
                                      'notification system',
              'third_party_assistance': 'Forensic investigation'},
 'stakeholder_advisories': 'Public advisory to change passwords and contact '
                           'emergency management for inquiries',
 'threat_actor': 'Organized cybercriminal group',
 'title': 'Wabasha County Emergency Notification System Data Breach',
 'type': 'Data Breach'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.