FEMA Tests National Emergency Alert System - What You Need to Know

National Emergency Alert System Tested by FEMA

Were you among those who received it? The Federal Emergency Management Agency (FEMA) recently conducted its first nationwide test of the U.S. emergency alert system following the pandemic period.

Testing of EAS and WEA

The agency, FEMA, evaluated both the Emergency Alert System (EAS) – utilizing a distinctive tone and message broadcast on radio and television – and Wireless Emergency Alerts (WEA), a more contemporary system delivering emergency notifications directly to smartphones. This represented the second nationwide WEA test since its initial implementation in 2018, and notably, the first encompassing all U.S. mobile phones of users who had actively chosen to receive test alerts.

The testing commenced at approximately 2:20 p.m. Eastern Time. Individuals who had opted-in to receive the test likely encountered a message on their devices stating: “THIS IS A TEST of the National Wireless Emergency Alert System. No action is needed.” (Detailed instructions on opting-in to these test alerts are available from the FCC).

Spanish Language Support

A significant development in this test was the inclusion of Spanish-language messaging. For the first time, the WEA test disseminated the same message in Spanish to phones configured with Spanish as their primary language.

Improvements to WEA

Since the last comprehensive test in 2019, FEMA has implemented enhancements to WEA, enabling the transmission of more extensive and detailed messages to a greater number of compatible phones. These updates also facilitate the inclusion of interactive elements, such as clickable web links.

FEMA undertakes these tests on an annual or bi-annual basis to verify the operational integrity of the system. Maintaining a national emergency alert system capable of broadcasting a unified message to potentially hundreds of millions of individuals simultaneously presents substantial technological challenges, necessitating close collaboration between cellular carriers and broadcast networks.

EAS and WEA: A Historical Perspective

The EAS system has been in operation since the late 1990s. However, WEA was developed more recently in response to the increasing reliance on mobile phones by the American public. Both WEA and EAS alerts are intended for dissemination by local and state authorities concerning public safety warnings, alerts regarding missing children, and notifications of immediate threats, including severe weather events.

Furthermore, FEMA has introduced “presidential alerts,” designed to be broadcast to all mobile devices within the U.S. during a national emergency. Unlike other alert types, presidential alerts can be issued by the current president for any reason, and citizens are unable to opt-out of receiving them.

How WEA Works

WEA utilizes cell towers within a designated affected area – for example, a region anticipating a severe storm – to broadcast emergency notifications, rather than sending individual text messages that could overwhelm cellular networks. These alerts are generated by local, state, or federal authorities and are validated by FEMA through the Integrated Public Alert & Warning System (IPAWS), before being delivered to cellular carriers.

Past Issues and Security Concerns

The emergency alert system is not without its flaws. In 2018, Hawaii residents received a false alarm warning of an incoming ballistic missile attack, initially presented as a genuine threat. The alert was subsequently retracted within minutes.

This incident occurred during a period of heightened tensions between the U.S. and North Korea, when Pyongyang was actively conducting rocket tests related to its nuclear weapons program.

Moreover, security professionals have consistently highlighted potential security vulnerabilities within EAS systems. Recent research identified numerous internet-connected servers utilized by television and radio stations to interrupt broadcasts for emergency alerts, suggesting a potential entry point for malicious actors to compromise these systems.