News By Tag
News By Location
Cybersecurity Experts Warn About More Election Hackings
Another "Perfect Storm" For Coming Elections, Older Hacker Predicts
Meanwhile, an older hacker now turned law professor, who publicly predicated and warned about hacking even before the 2016 elections, still sees the same combination of factors as creating a "perfect storm" for more digital interference in the 2018 and 2020 elections.
More specifically, the easy availability of hacking tools, the exacerbated vulnerabilities crated by the Electoral College, voting machines which leave behind no paper trail and which are also often connected to the Internet, all combine to create a perfect storm our elections are heading into, says public interest law professor John Banzhaf.
In August 2016, the FBI reported that the election systems of two states were successfully hacked, and in its warning to other states suggested just how easy it would be for hackers to steal an election.
But one of the scariest revelations is that both election system intrusions - one to extract data, and the other to possibly plant malware - did not require much sophistication or secret hacker know how, says Banzhaf.
On the contrary, notes Banzhaf, the intruders used COTS (common off the shelf) hacking tools widely available and easily obtained by anyone searching the Internet for "SQL Injection" - all common hacking tools from VPS hosting accounts in the Netherlands, Russia, and Bulgaria.
There is a "perfect storm" - an unusual combination of circumstances creating drastically heightened risk - heading towards our coming elections, perhaps even the presidential election, warned Banzhaf at the time, while noting now that these same risk factors remain today.
One of the elements of this heightened risk is the vulnerability of many voting machines to easy manipulation by readily available and easily obtained programs, says Banzhaf.
Our vulnerability is not limited to a group of master hackers or a foreign country with vast resources. As the FBI report explained, the necessary software already exists, and can be utilized by a small group of determined people, and with only a fair amount of skill.
The second element of the perfect storm into which our 2020 presidential election may be heading is that we use the Electoral College rather than have a direct election for the president.
Banzhaf started hacking in the late 1950s when he was at M.I.T. His technique for determining the chance that any particular voter or small group of voters could change the outcome of a presidential election – now called "The Banzhaf Index" – has been widely adopted and utilized.
That's important, he explains, because, under our Electoral College system, any rigging/fraud/
He reminds us of how the 2000 presidential election was decided by fewer than 1000 votes out of almost 6 million cast in Florida.
A third element of the perfect storm facing the 2020 presidential election, and well as many earlier state and local ones, is the increased use of electronic voting machines, especially where they leave no paper trail.
While some electronic voting machines do generate paper records so that some type of audit trail is available if hacking is suspected, too many do not. This can create what Wired's Brian Barrett terms a "technological train wreck" because, if some one tampered with the machine's software, there would be no way to prove it by comparing real votes with machine tallies.
Still another factor making the storm an even greater threat is that more and more of the computers and data processing devices used in the election process are connected to the Internet.
The hacking of the Pentagon, the apparent hacking of the Democratic Party by the Russians, and the hacking of many large corporations such as Sony by North Korea, shows that even the most sophisticated data processing systems - with strong firewalls and intrusion detection software - can be hacked if any portion is connected to the Internet.
After all, if the Pentagon, Sony, the White House, SWIFT (the international banking exchange system), the State Department, Aramco oil company, and many other large and seemingly impregnable computer systems can be hacked, what guarantee is there that the systems in Chicago or any other large city or county aren't at least as vulnerable.
If these mighty fortresses of system security can be breached, it seems clear that many state and local systems - which do not have cyber experts watching over them, insuring that all their software is up to date, constantly checking for malware and intrusions, etc. - are at least as vulnerable.
Actually, say some experts, even computer systems which are not connected to the Internet may be vulnerable to hacking. One way is through the use of voting cards – cards which look and act somewhat like credit cards which permit citizens to vote on voting machines into which the cards are inserted.
Simple alterations of the data recorded on such cards can permit a single voter to cast hundreds of votes on one visit to the voting machine.