According to sources, St. Mary’s County (a Public Safety organization in Maryland) was hit with a cyber attack. It was first reported on 2025-11-26.
Source 1 | 2025-11-26
“St. Mary’s County officials notified residents Tuesday about a cybersecurity incident that potentially exposed personal information stored in the CodeRED emergency notification system, a third-party service used by the county’s Department of Emergency Services to deliver urgent alerts.“
“The breach, which occurred in early November on the vendor’s legacy platform, involved the unauthorized removal of user data, according to a public statement from the county. While no evidence shows the information has appeared online, officials warned that a future leak remains possible. The incident stemmed from a targeted attack by an organized cybercriminal group and affected only the private vendor’s systems, sparing county networks and databases. “
“CodeRED, operated by OnSolve under Crisis24, serves hundreds of local governments nationwide, including agencies in Southern Maryland for rapid notifications during storms, evacuations or other hazards. In St. Mary’s County, the system reaches registered users via phone calls, texts or emails to about 110,000 residents across 372 square miles, from Leonardtown to Point Lookout. The county activated CodeRED in 2008 to comply with federal mandates under the Emergency Alert System, enhancing local response capabilities in a region prone to hurricanes and flooding along the Potomac River and Chesapeake Bay. “
Cybersecurity for Critical Infrastructure
SecuLore provides Managed Detection and Response (MDR) to protect our nation’s critical infrastructure from cyber threats. Our expertise is built on deep knowledge of 9-1-1 technology, cyberwarfare, and ethical hacking, ensuring the highest level of cybersecurity for public safety agencies.
