On April 13, 2026, parents in Mount Vernon, Missouri received an emergency alert from CrimeRadar reporting an active shooting at Mount Vernon Elementary School. The school locked down. There was no shooting. A deputy's routine radio transmission — saying he was “show me out at” the school — had been processed by the app's automated audio pipeline as “shooting at.” The error took seconds to make and hours to contain.
What Happened
CrimeRadar is a commercial application that monitors local emergency dispatch audio feeds and pushes real-time incident alerts to subscribed users. The product's value proposition is speed: getting users information about nearby incidents before it surfaces in news or official channels. On the morning of April 13, a Lawrence County deputy used standard radio protocol to notify dispatch that he was physically arriving at Mount Vernon Elementary. The phrase “show me out at” — routine shorthand in dispatch communications for “I am now at this location” — was misread by CrimeRadar's speech-to-text and classification pipeline as a report of a shooting.
The alert went out. The school initiated lockdown protocols. Parents called and messaged each other in escalating panic before the false alert could be corrected. CrimeRadar later apologized and committed to improving its audio processing and verification systems.
As the author who first reported on the incident noted: “Systems like this are built to be fast. Safety requires being right. Those two things are not the same.”
That sentence is worth sitting with for a moment, because it identifies the central tension in AI-assisted public safety alerting — a tension that is not unique to CrimeRadar and will not be solved by a single software update.
How Automated Audio Monitoring Works — and Where It Breaks
Services that monitor police scanner feeds operate through a multi-stage pipeline. Audio is captured from scanner frequencies, converted to text via automatic speech recognition (ASR), and then classified by a language model or keyword-matching system to determine whether the content represents a reportable incident and, if so, what type.
Each stage introduces potential failure. ASR systems trained on clean studio audio degrade significantly on radio communications, which are compressed, subject to interference, cut off mid-phrase, and often use domain-specific jargon that consumer-grade models have not been trained to handle reliably. A 2023 benchmark of commercial ASR systems on emergency dispatch audio found word error rates ranging from 18% to 34% — substantially higher than rates on general spoken English. Radio communications from law enforcement are a more difficult input than general speech, not an easier one.
After transcription, classification introduces a second layer of risk. Even if the phrase “show me out at the elementary school” were transcribed perfectly, a classifier trained to detect threatening language must also correctly distinguish “shooting at” from “show me out at” in compressed audio with potential dropouts. The acoustic similarity between those two phrases in low-fidelity radio conditions is not trivial.
The Pipeline Problem
~26%
Avg. word error rate on emergency dispatch audio (ASR benchmarks)
3
Pipeline stages before an alert fires: capture, transcribe, classify
0
Human review steps in a speed-optimized automated alert system
Each of the three stages compounds error. If ASR transcription is 80% accurate and incident classification of the resulting text is 90% accurate, the end-to-end accuracy of the combined pipeline is closer to 72%. These are illustrative numbers, not measurements of CrimeRadar specifically — the company has not published accuracy data. But the compounding structure of the failure is a real characteristic of sequential AI pipelines, not a worst-case assumption.
The Calibration Problem
A related issue is how AI classification systems report their own confidence. Well-calibrated models produce confidence scores that correspond meaningfully to their actual accuracy: a model that outputs a 0.9 confidence score for a prediction should be correct approximately 90% of the time. In practice, large language models and many neural classifiers are overconfident — they routinely output high confidence scores on predictions that turn out to be wrong.
Research applying AI classification to public safety and injury data has found consistent evidence of this overconfidence. When token-level probabilities from LLMs are used as confidence proxies, they tend to cluster at the high end of the scale even on cases where the model is incorrect. This means that setting a confidence threshold as a gate before firing an alert — a reasonable-sounding engineering solution — does not reliably filter out incorrect classifications. A model can output a 0.95 confidence score on a prediction that is wrong.
This matters for alert systems specifically because the intuitive design response to accuracy concerns is to add a confidence filter: only alert when confidence exceeds some threshold. If that threshold is poorly calibrated, the filter does not work as intended. High-confidence false positives still pass through.
On Calibration
A confidence threshold is only as useful as the model's calibration. If a classifier outputs 0.92 confidence on a misclassified alert, a 0.90 threshold does not protect against it. Confidence scores from large language models are frequently not well-calibrated against real-world outcomes, particularly on out-of-distribution inputs like compressed radio audio.
The Asymmetry of Error Costs
Not all false positives cost the same. In a spam filter, a false positive means a legitimate email lands in a junk folder. In a medical triage system, a false positive might trigger an unnecessary test. In a public school active-shooter alert, a false positive triggers a full lockdown, sends hundreds of parents into acute distress, occupies law enforcement responding to a non-existent threat, and erodes trust in the alerting infrastructure that might be needed in an actual emergency.
This asymmetry should be the primary input to system design, not an afterthought. Speed-optimized and accuracy-optimized systems make different tradeoffs, and those tradeoffs look very different depending on what failure costs.
Error Cost Comparison
Spam filter false positive
Legitimate email delivered to junk. User retrieves it. No downstream harm.
Crime alert false positive (property crime)
User receives incorrect alert about nearby theft. Causes concern; corrected quickly with low second-order effects.
Active-shooter false alert (school)
Lockdown initiated. Parents panic. Law enforcement dispatched. Trust in alert infrastructure damaged. Potential for injury during lockdown response.
Speed and accuracy are not always in opposition. In some domains, fast models can also be accurate. But in audio-based classification of police dispatch under adverse acoustic conditions, the tradeoff is real: more verification steps take more time. A system that waits for a human dispatcher to confirm a shooting report before alerting will be slower than one that does not. Whether that latency is acceptable depends entirely on what you think the cost of a false positive is.
At a minimum, alert systems ought to be honest with users about this tradeoff, and the categories of incident where they are most likely to fail. Active-shooter events, which are both rare and linguistically similar to routine location check-ins, are among the worst-performing categories for automated audio classification precisely because the base rate of actual events is so low that even a highly accurate model will generate many false positives for each true positive.
Base Rates Matter
This is a basic result from probability theory, but it is often absent from how AI safety products are marketed and evaluated. Suppose a classifier correctly identifies active-shooter events with 99% sensitivity (catching 99% of true events) and 99% specificity (correctly dismissing 99% of non-events). These are extremely strong numbers. Now apply that classifier to a realistic population of alerts.
Active-shooter events at K–12 schools are rare in absolute terms. The FBI recorded 40 active-shooter incidents nationally in 2023 across all location types, of which a subset occurred at schools. If a monitoring system processes thousands of school-proximate police radio events per day nationally, the population of genuine active-shooter transmissions is vanishingly small relative to the population of benign ones. Even a 99%-specific classifier will generate many false positives for every true positive when operating in a domain where the event base rate is low.
The CrimeRadar incident is consistent with this structural reality. It is not evidence of a uniquely bad system. It is evidence of what happens when any probabilistic system — regardless of its headline accuracy rate — encounters a low-base-rate, high-consequence event category.
Implications for Crime Data Platform Design
The CrimeRadar incident is one data point, not a verdict on all AI-assisted public safety tools. But it surfaces design questions that any platform working with crime data should be able to answer:
- What is your data source? Structured, verified incident reports from law enforcement agencies carry different reliability characteristics than real-time audio transcription. The underlying input is not a detail; it is the primary determinant of downstream accuracy.
- What is your error taxonomy? Systems should be explicit about which incident types are most and least reliable. Active-shooter classification from audio is harder than robbery classification from structured CAD data. Users deserve to know this.
- How are confidence scores calibrated?If your system uses a confidence threshold before firing alerts, you should be able to show that the threshold corresponds to real-world accuracy, not just the model's internal confidence output.
- What is your false-positive cost model? Systems optimized for recall (catching all true events) will generate more false positives than systems optimized for precision (ensuring alerts are correct). In public-facing alerting, especially for violent events, the cost of false positives typically argues for precision.
- Where does human review fit?Fully automated pipelines are faster. Adding review steps — either human confirmation or secondary verification against a structured data source — reduces false positive rates at the cost of latency. The right answer depends on the incident category.
Verified Structured Data as a Different Model
The approach SpotCrime takes is different from real-time audio monitoring. Our incident data comes from law enforcement agencies directly — structured crime reports from more than 22,000 jurisdictions across the United States — rather than from inference applied to unstructured audio streams. This creates different tradeoffs. Structured incident reports are not instantaneous; there is latency between when an event occurs and when it appears in an agency's data feed. But the classification of what occurred is not produced by a model guessing at ambiguous audio. It reflects what the responding agency reported.
That distinction matters for the applications built on top of the data. A real estate platform displaying neighborhood crime patterns does not need to know about an event in the next five minutes. It needs to know accurately what has occurred over the past 36 months. A family safety app delivering alerts about incidents near a child's school location needs recent data, but an alert based on a misheard radio phrase is worse than no alert — it trains users to ignore the system.
The Real-Time Crime Index, maintained by the Council on Criminal Justice, provides a useful benchmark for how crime data aggregated from structured agency reports performs against national trends. The RTCI draws on data from hundreds of law enforcement agencies with a roughly 45-day reporting lag. That lag is a real constraint. But the RTCI's strength is that it reflects what agencies actually recorded, not what a classifier inferred from compressed radio audio.
What “Good Enough” Means in Context
There is no single accuracy threshold that qualifies an AI system for public safety use. The right threshold is a function of the base rate of the event you are trying to detect, the cost of false positives in your deployment context, and the availability of secondary verification mechanisms.
For low-stakes, high-base-rate events — a robbery-type crime in a high-incident area, flagged in a system where users understand they are receiving unverified early signals — 80% precision might be appropriate. For a school active-shooter alert delivered directly to parents with no secondary verification, 99% precision may still generate unacceptable false positives at scale, given how low the true event rate is.
The CrimeRadar incident at Mount Vernon Elementary is not an argument against AI in public safety. It is an argument for being precise about what you are optimizing for, honest about where your system will fail, and thoughtful about which failure modes you are willing to accept before you ship.
The author who covered the incident put it plainly: systems built to be fast and systems built to be right are not the same thing. In public safety contexts, that gap needs to be explicit before the first alert goes out — not after.
Access Address-Level Crime Data
Real-time incidents · SpotScore™ safety ratings · 36-month trends · 22,000+ US cities. Normalized and verified — because raw data isn't enough.