Hackers may 'discredit' US electoral process

Experts warn that disruption to electoral process is more likely than widespread hack

Concerns that a mass cyberattack will hit the US during today's Presidential Election may be ill-founded, but a risk of disruption is still high according to security experts. 

The likelihood that a cyber attack would affect overall results is extremely low, but authorities should still be cautious of attacks attempting to "discredit the electoral process in critical states", according to security experts at the University of Michigan.

Advertisement - Article continues below

"Unless the election is extraordinarily close, it is unlikely that an attack will result in the wrong candidate getting elected," said Matt Bernhard and professor J Alex Halderman.

However, they warn the risk that the election could still be disrupted should still be taken very seriously.

The majority of voting in the US is done by electronic booths, which are disconnected from the internet and present a significant hurdle for any hackers. A coordinated attack on the voting system is near-impossible and therefore it is much more likely group would target specific close-run states.

The US Government has already started a 'cyber hygiene' campaign on voting systems in every state, with security officials ready to intervene if an area becomes compromised.

One cause for concern is the discrepancy of technology available between voting areas, with many states opting for touch screen booths, or direct-recording electronic voting machines (DREs).

"Vulnerabilities in DREs have been thoroughly documented over the past decade, and it is will established that they carry an elevated risk of hacking," said Bernhard. "Most DREs do not produce a physical record of each vote, so they provide little opportunity to detect or correct computer-based fraud."

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

Bernhard and Halderman have identified some key 'hack states' where there is a mix of poor security and a tight presidential race (highlighted in yellow).

"Nevada, Pennsylvania, Ohio, and Colorado top the list of states to watch out for tomorrow. Together they account for just under 10% of electoral votes," said Bernhard and Halderman.

States such as Texas, Kentucky and New Jersey are considered similarly at risk of hacking, but are firmly declared for one side.

"If a state uses insecure electronic voting machines in more than half of its districts... or sees a majority of precincts that indicate extreme difficulty finding poll works, we consider it at-risk."

Other attempts to disrupt the process, such as power surges, DDoS attacks or hacks on voter registration databases are all possibilities, according to the researchers.

"Fortunately, most precincts have fallback plans in the case of a complete failure of infrastructure, and in all likelihood an election result would still be generated in the case of a large-scale cyberattack," said Bernhard.

Featured Resources

Top 5 challenges of migrating applications to the cloud

Explore how VMware Cloud on AWS helps to address common cloud migration challenges

Download now

3 reasons why now is the time to rethink your network

Changing requirements call for new solutions

Download now

All-flash buyer’s guide

Tips for evaluating Solid-State Arrays

Download now

Enabling enterprise machine and deep learning with intelligent storage

The power of AI can only be realised through efficient and performant delivery of data

Download now
Advertisement

Recommended

Visit/business-strategy/public-sector/355134/the-it-pro-podcast-beating-trump-on-tech
public sector

The IT Pro Podcast: Beating Trump on tech

27 Mar 2020
Visit/security/355013/10-quick-tips-to-identifying-phishing-emails
Security

10 quick tips to identifying phishing emails

16 Mar 2020
Visit/business-strategy/mergers-and-acquisitions/354941/panda-security-to-be-acquired-by-watchguard
mergers and acquisitions

Panda Security to be acquired by WatchGuard

9 Mar 2020
Visit/business/business-operations/354880/fbi-takes-down-british-site-in-a-bizarre-case-of-mistaken
Business operations

FBI takes down British site in a bizarre case of mistaken identity

28 Feb 2020

Most Popular

Visit/security/privacy/355155/zoom-kills-facebook-integration-after-data-transfer-backlash
privacy

Zoom kills Facebook integration after data transfer backlash

30 Mar 2020
Visit/infrastructure/server-storage/355118/hpe-warns-of-critical-bug-that-destroys-ssds-after-40000-hours
Server & storage

HPE warns of 'critical' bug that destroys SSDs after 40,000 hours

26 Mar 2020
Visit/software/355113/companies-offering-free-software-to-fight-covid-19
Software

These are the companies offering free software during the coronavirus crisis

25 Mar 2020
Visit/security/cyber-crime/355171/fbi-warns-of-zoom-bombing-hackers-amidst-coronavirus-usage-spike
cyber crime

FBI warns of ‘Zoom-bombing’ hackers amid coronavirus usage spike

31 Mar 2020