National: Congress falls flat on election security as midterms near | The Hill

Congress has failed to pass any legislation to secure U.S. voting systems in the two years since Russia interfered in the 2016 election, a troubling setback with the midterms less than six weeks away. Lawmakers have repeatedly demanded agencies step up their efforts to prevent election meddling but in the end struggled to act themselves, raising questions about whether the U.S. has done enough to protect future elections. A key GOP senator predicted to The Hill last week that a bipartisan election security bill, seen as Congress’s best chance of passing legislation on the issue, wouldn’t pass before the midterms. And on Friday, House lawmakers left town for the campaign trail, ending any chance of clearing the legislation ahead of November. Lawmakers have openly expressed frustration they were not able to act before the 2018 elections.

National: Election Security Remains Just as Vulnerable as in 2016 | Electronic Frontier Foundation

The ability to vote for local, state, and federal representatives is the cornerstone of democracy in America. With mid-term congressional elections looming in early November, many voices have raised concerns that the voting infrastructure used by states across the Union might be suspect, unreliable, or potentially vulnerable to attacks. As Congress considers measures critical to consumer rights and the functioning of technology (net neutrality, data privacy, biometric identification, and surveillance), ensuring the integrity of elections has emerged as a matter of crucial importance. On the one hand, the right to vote may not be guaranteed for many people across the country. Historically, access to the ballot has been hard fought, from the Revolution and the Civil War to the movement for civil rights that compelled the Voting Rights Act (VRA). But recent restrictions on voting rights that have proliferated since the Supreme Court struck down the VRA’s pre-clearance provisions in 2013. Coupled with procedural impediments to voting, unresolved problems continue to plague the security of the technology that many voting precincts use in elections. With mid-term elections in just two months, Secretaries of State should be pressed to do their jobs and increase security before voters cast their ballots.

National: Def Con researchers came to Washington to poke holes in voting machine security | The Washington Post

Not long ago, lawmakers might have been wary about showcasing the work of hackers who specialize in penetrating voting equipment. But on Thursday, organizers from the Def Con Voting Village — a collection of security researchers who hack election systems in hopes of making them more secure — received a warm welcome on Capitol Hill. The organizers were in town to unveil a new report identifying vulnerabilities in several widely used voting machines they tested during the Def Con hacking conference in Las Vegas over the summer, including a flaw in a vote tabulator that could allow a malicious actor to hack it remotely. They presented their findings in a meeting hosted by Rep. Jackie Speier (D-Calif.) and attended by staffers from the offices of Sen. Amy Klobuchar (D-Minn.), who is sponsoring an election security bill, and several other Democrats. The event highlights how the cybersecurity experts behind the Voting Village, which is only in its second year, are reaching beyond the niche and often apolitical community of Def Con in hopes of influencing the debate over how to secure the country’s election systems. The issue has received a wave of new attention since the 2016 election, when Russian hackers probed election administration systems in 21 states. 

National: Voting Machines Are Still Absurdly At Risk | WIRED

While Russian interference operations in the 2016 US presidential elections focused on misinformation and targeted hacking, officials have scrambled ever since to shore up the nation’s vulnerable election infrastructure. New research, though, shows they haven’t done nearly enough, particularly when it comes to voting machines. The report details vulnerabilities in seven models of voting machines and vote counters, found during the DefCon security conference’s Voting Village event. All of the models are in active use around the US, and the vulnerabilities—from weak password protections to elaborate avenues for remote access—number in the dozens. The findings also connect to larger efforts to safeguard US elections, including initiatives to expand oversight of voting machine vendors and efforts to fund state and local election security upgrades.

National: After election hacking presentation, Katko pushes bill to boost security | Auburn Citizen

Dr. J. Alex Halderman inserted a memory card infected with malicious software into an electronic voting machine. It wasn’t an actual case of election hacking, but Halderman’s demonstration served a purpose: To show two members of Congress, including U.S. Rep. John Katko, what can happen if hackers gain access to voting machines. Halderman, director of the University of Michigan’s Center for Computer Security and Society, invited Katko, R-Camillus, and U.S. Rep. Mike Quigley, an Illinois Democrat, to cast votes using the Diebold AccuVote TS voting machine. Halderman programmed a mock election: A presidential race between George Washington and Benedict Arnold. There were two votes cast for Washington and one for Arnold. But the receipt printed from the voting machine revealed the effect of the malicious software. The paper showed Arnold received two votes and Washington netted one.

Florida: The Voting Security Issues Florida Is Facing This Election Season | WLRN

Two years ago, “spearphishing attacks” -emails targeted towards specific individuals with the intent to steal data for malicious purposes- flooded the inboxes of election officials in several Florida counties. This year, as Florida prepares for the general elections in November, issues around voting security have been front and center. In August, Sen. Bill Nelson claimed Russian hackers had gained access to valuable data on state voters. There has been no evidence found that Florida’s voting system was compromised in 2016, but the attempts to breach systems have led to the state receiving $19 million in federal money for election security.

North Dakota: Plaintiffs in Native American voter ID case seek Supreme Court appeal | INFORUM

Attorneys representing a group of Native Americans challenging North Dakota’s voter identification laws filed an emergency appeal to the U.S. Supreme Court Thursday, Sept. 27. This week, a federal appeals court halted part of a lower court ruling that said the state must accept IDs and supplemental documentation with a current mailing address. The appellate court said that could lead to voters casting a ballot in the wrong precinct if they use a post office box as a mailing address. The Native American Rights Fund, which represents the tribal members, said in a news release the ruling means “several thousand” qualified North Dakota voters “will be unable to vote in this year’s election simply because they do not have a residential address or because they lack the documentation and/or funds to obtain the required voter identification.”

Texas: Paper Ballots Could Ease Election-Hacking Fears, But Computers Will Always Be Part Of Counting Votes | Texas Standard

There’s a question that moves in parallel with the increased use of computerized voting machines – can your vote be hacked? It’s a question that was put to the test in the 2016 presidential election cycle, when Russia was found to be influencing voters in the election, but not the voting machines themselves. Some say the risk of vote-hacking could be reduced by using paper ballots in addition to electronic vote-counters. Hovav Shacham is a professor of computer science at the University of Texas at Austin. He has specialized in computer security and the voter security for over a decade. “I think the question we need to ask is not just how vulnerable the actual systems are, but how much confidence can voters have that their vote really is recorded and counted just as they cast it,” Shacham says.

Texas: Crystal Mason begins prison sentence in Texas for crime of voting | The Guardian

Crystal Mason, the woman who became the poster child for voter suppression when she was sentenced to five years for casting a ballot in Texas, has gone into federal prison at the start of her ordeal. Mason, 43, surrendered voluntarily on Thursday to authorities and was taken into federal prison in Fort Worth, Texas. She left her three children behind. In her final Facebook post before she went inside, she wrote: “This fight is not over, I’m glad God choose me for this journey. I’m walking in there no tears and head hung high …” Mason’s crime was to cast a ballot in the 2016 presidential election. An African American woman, she had been encouraged by her mother to do her civic duty and vote, in her case on behalf of Hillary Clinton. When she turned up to the polling station her name was not on the register, so she cast a provisional ballot that was never counted. She did not read the small print of the form that said that anyone who has been convicted of a felony – as she had, having previously been convicted of tax fraud – was prohibited from voting under Texas law.

Verified Voting in the News: State expands use of post-election audits | StateScoop

Wisconsin officials were praised Friday by election-security advocates for expanding the state’s use of post-election audits. The Wisconsin Elections Commission announced that it voted unanimously Tuesday to require audits in 5 percent of precincts throughout the state after every vote, beginning with the Nov. 6 general election. The decision is evidence that the clock has not run out yet on states seeking to improve their ballot-security procedures before Election Day, said representatives of Verified Voting, which advocates for paper-based voting systems and Public Citizen, a consumers’ rights group. Under Wisconsin’s new system, election officials will randomly select at least 183, or 5 percent, of the state’s 3,660 precincts to review voting equipment. The audit sample will include at least one precinct from each of the state’s 72 counties, but no more than two precincts from any single municipality. 

Afghanistan: Concern about voting system ahead of Afghanistan election | Al Jazeera

Campaigning has started in Afghanistan for next month’s parliamentary elections amid concerns that the much-delayed vote could be postponed again due to the uncertainty over new technology. The vote for the lower house of parliament has been scheduled for October 20 – delayed by more than three years – and is seen as a test for the presidential elections that will take place in April. New government measures hope to put an end to the previous issues they have faced. With election fraud now being a criminal offence, voting stations will be placed in public buildings and monitored. Additionally, a new advanced voting system will be used.

Iraq: Both Major Parties Cry Fraud in Iraqi Kurdish Election | VoA News

The two major political parties in Iraq’s autonomous Kurdistan region are crying fraud after Sunday’s parliamentary election, with one saying it will refuse to accept the results. Nearly 800 candidates were vying for 111 seats. Turnout is reported to have been modest even as Iraqi Kurds try to reassert their autonomy after a crackdown from Baghdad. The Patriotic Union of Kurdistan (PUK), one of the major political parties, tells VOA it will not accept the results of Sunday’s vote. PUK spokesman Saadi Ahmed Pira charges the party’s chief political rival, the Kurdistan Democratic Party (KDP), of election fraud in two provinces under KDP control. Pira did not give specifics but said the PUK is demanding an investigation.

Macedonia: Referendum approves name change, but turnout low | Associated Press

A referendum on changing Macedonia’s name as part of a deal that would pave the way for NATO membership won overwhelming support Sunday, but low voter turnout highlighted the hurdles that still remain for the Balkan country to join the alliance. Prime Minister Zoran Zaev had hoped for a strong show of support in the referendum on whether to accept a June deal with Greece changing the country’s name to North Macedonia. That would help him with the next step of winning parliamentary support for the required constitutional amendments.

Maldives: Election commission confirms Solih′s victory despite threats | Deutsche Welle

The Maldives’ election commission on Saturday officially endorsed thevictory of the opposition candidate Ibrahim Mohamed Solih in last week’s presidential polls amid concerns that Maldives outgoing President Abdulla Yameen is trying to hold on to power. Salah Rasheed, the election commission’s secretary general, said Solih’s Maldivian Democratic Party won the polls with 58.4 percent of the ballot. Although election monitors had warned of rigging by the incumbent, Yameen could secure only 41.6 percent. Solih was backed by four opposition parties, three of which supported Yameen in a controversial 2013 runoff that the country’s first democratically elected president, Mohamed Nasheed, lost narrowly. Solih is expected to be sworn in on November 17 when Yameen’s term comes to a close.

New Zealand: Councils warned electronic voting will not be secure | Stuff.co.nz

Plans to allow online voting in next year’s councils elections have run into a wall of opposition from technology experts, who say internet voting can’t be secure. Local Government New Zealand will issue a tender for an online system that would be used in nine council elections, including in Auckland, Hamilton and Wellington, alongside postal voting. The decision to shop for an online voting system comes amid growing international concern about election interference by foreign powers in the wake of the United States 2016 presidential election and Britain’s Brexit vote. …  James Valentine, chief technology officer of Wellington IT company Fronde, was among dozens of technologists who took to social media to oppose the local government plan, tweeting there were “lots of concerns” including security and ballot secrecy.

National: Defcon Voting Village report: bug in one system could “flip Electoral College” | Ars Technica

Today, six prominent information-security experts who took part in DEF CON’s Voting Village in Las Vegas last month issued a report on vulnerabilities they had discovered in voting equipment and related computer systems. One vulnerability they discovered—in a high-speed vote-tabulating system used to count votes for entire counties in 23 states—could allow an attacker to remotely hijack the system over a network and alter the vote count, changing results for large blocks of voters. “Hacking just one of these machines could enable an attacker to flip the Electoral College and determine the outcome of a presidential election,” the authors of the report warned.

Iraq: Voting begins to elect new parliament in Iraq’s Kurdistan | AFP

Iraqi Kurds voted on Sunday for a new parliament in their autonomous region, which is mired in an economic crisis a year after an independence referendum that infuriated Baghdad. Almost 3.1 million voters were eligible to cast ballots across three provinces in the northern region, where 673 candidates from 29 political movements contested seats in the 111-member parliament. Polling closed as scheduled at 1500 GMT and the results are expected within 72 hours. The vote passed off with only minor incidents such as gunmen trying to vote without the necessary papers. The electoral commission gave an official turnout of 58 percent of registered voters in Arbil, the regional capital and one of the three provinces which make up Iraqi Kurdistan.

National: DEF CON hackers’ dossier on US voting machine security is just as grim as feared | The Register

Hackers probing America’s electronic voting systems have painted an astonishing picture of the state of US election security, less than six weeks before the November midterms. The full 50-page report [PDF], released Thursday during a presentation in Washington DC, was put together by the organizers of the DEF CON hacking conference’s Voting Village. It recaps the findings of that village, during which attendees uncovered ways resourceful miscreants could compromise electoral computer systems and change vote tallies. In short, the dossier outlines shortcomings in the electronic voting systems many US districts will use later this year for the midterm elections. The report focuses on vulnerabilities exploitable by scumbags with physical access to the hardware. “The problems outlined in this report are not simply election administration flaws that need to be fixed for efficiency’s sake, but rather serious risks to our critical infrastructure and thus national security,” the report stated. “As our nation’s security is the responsibility of the federal government, Congress needs to codify basic security standards like those developed by local election officials.”

National: Hackers warn about election security ahead of midterms | CNN

The vulnerabilities in America’s voting systems are “staggering,” a group representing hackers warned lawmakers on Capitol Hill on Thursday — just over a month before the midterm elections. The findings are based on a project at the Voting Village at the Def Con hacking conference held in Las Vegas last month, where hackers were invited to attempt to break into voting machines and other equipment used in elections across the country. The hacking group claims they were able to break into some voting machines in two minutes and that they had the ability to wirelessly reprogram an electronic card used by millions of Americans to activate a voting terminal to cast their ballot. “This vulnerability could be exploited to take over the voting machine on which they vote and cast as many votes as the voter wanted,” the group claims in the report.

National: Questions on Pompeo’s certainty about secure midterms | Politico

Secretary of State Mike Pompeo on Wednesday said there was “no question” the U.S. midterm elections would be safe from foreign interference, a level of certitude that is … shall we say, not widely shared? “That’s a dangerous level of confidence for someone in that position to have,” Alex Halderman, a University of Michigan computer science professor at the forefront of the election security debate, told MC. Halderman said that perhaps intelligence sources might not see any indications of foreign planning to further disrupt elections, but “frankly, you don’t know what you don’t know.” Democratic Rep. Mike Quigley said this about Pompeo: “I wish I could be so confident.” Robert Johnston, credited with discovering the DNC hack while working at CrowdStrike and now CEO of Adlumin, told MC there are already signs Russia has interfered in the 2018 races. Some of the suspect incidents have surfaced in California’s congressional races and the U.S. Senate.

California: Los Angeles County Supervisors Approve Investigation For Voter Registration ‘Errors’ | KHTS

The board unanimously approved a motion by Supervisor Kathryn Barger calling for an investigation into voter registration errors as a result of the new “motor voter” program managed by the California Department of Motor Vehicles. Created by the Motor Voter Act of 2015 and implemented in April 2018, the program automatically registers any eligible voters who apply for a driver’s license or identification card and transmits this data to the county where that person lives unless the individual specifically declines to participate. The state reported that 23,000 instances of voter registration errors occurred between mid-April and early August. The “motor voter” program has experienced other implementation issues as well, with 77,000 voter records allegedly being misreported in May by the DMV, according to officials.

Mississippi: Hackers attempt cyber attacks on state voting system | WMC

How safe is the ballot you will be casting during the November 6 election? Secretary of State Delbert Hosemann maintains that your ballot will be safe from hackers, but he reveals that there are thousands of attempts each month to try to penetrate the Statewide Election Management System. In the past few weeks, the agency that oversees elections reports that hackers have attempted to get into the systems of circuit clerks and election commissioners. “They are sending out emails to my circuit clerks and my election commissioners telling them to open this invoice from a former employee who’s no longer employed here,” said Hosemann. “So I will tell you that’s the level of attempts we have going on.”

Missouri: Testimony ends in voter ID lawsuit | New Tribune

Closing arguments will be Monday in the lawsuit challenging Missouri’s current voter ID law, after the state presented its final witness Wednesday. Cole County Senior Judge Richard Callahan is being asked to rule on the plaintiffs’ claim that Missouri’s new voter ID law conflicts with existing constitutional language that says people who are properly registered to vote “are entitled” to vote at all elections. The new law went into effect July 1, 2017, after voters in November 2016 added language to the state Constitution saying lawmakers could pass a law specifying the kinds of identification a voter would need to show at the polls before casting a vote.

Virginia: House panel backs GOP redistricting bill on party-line vote | Richmond Times-Dispatch

An attempt to find a bipartisan compromise on political redistricting culminated Thursday in a pair of party-line votes by a House of Delegates committee. It endorsed a new Republican plan, while killing a bill proposed by Democrats in a battle for control of the closely divided chamber before elections next year. The House Privileges and Elections Committee voted 12-10 to endorse a bill that Del. Chris Jones, R-Suffolk, introduced a day earlier, with a promise of some Democratic support. Jones said it was an effort to break an impasse in finding a legislative solution after a federal court found that 11 House districts were racially gerrymandered. Del. Kelly Convirs-Fowler, D-Virginia Beach, one of six Democrats whom Jones said he had approached for support, voted against the bill. She also voted against a move by the Republican-controlled panel to kill the Democratic redistricting plan that Del. Lamont Bagby, D-Henrico, had introduced on Aug. 30.

Wisconsin: Studies find that photo ID is tied to lower turnout in Wisconsin | Wisconsin Gazette

With all of her necessary documentation, University of Wisconsin-Madison student Brooke Evans arrived at her polling place on Nov. 8, 2016, for the presidential election. For her, voting that day meant not only casting a ballot for the first female presidential candidate with a real shot of winning, but having a voice in a society in which homeless people such as herself were marginalized. The law requires Wisconsin residents to present certain forms of photo identification to vote but does not require that the ID have the voter’s current address. Such voters must provide proof of their current address — and that is where Evans ran into trouble. She eventually was able to cast a ballot using a campus address she herself had advocated for to help homeless students. Not only did Evans, as a college student, face increased obstacles under the voter ID law, her homelessness was another barrier — one that almost prevented her from exercising a fundamental right of citizenship. “I was just really surprised at the hassle I was given,” Evans said.

Afghanistan: Election campaigning kicks off amid violence, fraud claims | AFP

Campaigning for Afghanistan’s long-delayed parliamentary elections kicks off Friday (Sep 28), as a crescendo of deadly violence and claims of widespread fraud fuel debate over whether the vote will go ahead. More than 2,500 candidates will contest the Oct 20 poll, which is seen as a test run for next year’s presidential vote and a key milestone ahead of a UN meeting in Geneva where Afghanistan is under pressure to show progress on “democratic processes”. But preparations for the ballot, which is more than three years late, have been in turmoil for months, despite UN-led efforts to keep Afghan organisers on track.

Canada: Elections Canada preps for spring vote as MPs set deadline for new law | iPolitics

Canada’s Chief Electoral Officer has revealed that the federal elections agency intends to be ready for an election by next April, five months before the fixed election date for 2019. Chief Electoral Officer Stéphane Perrault outlined the timetable as he informed a Commons committee this week that a sweeping bill to overhaul the Canada Elections Act and upgrade cybersecurity would have to clear Parliament by December to give his office time to prepare. “For the next election, given the environment, I very much look forward to having this legislation passed,” Perrault told the Commons Standing Committee on Procedure and House Affairs, which began reviewing Bill C-76 last May.

Congo: Leader Vows Elections to Proceed on Schedule in December | Bloomberg

Democratic Republic of Congo President Joseph Kabila vowed delayed elections to select his successor will take place as planned this year. Presidential and parliamentary votes have been delayed since 2016, after the electoral commission failed to organize them on time. The central African nation, which is the world’s largest cobalt producer, hasn’t had a peaceful transition of power since it gained independence from Belgium in 1960. “I reaffirm the irreversible character of holding the elections planned for the end of this year,” Kabila told the United Nations General Assembly on Tuesday. “Everything will be implemented in order to guarantee the peaceful and credible character of these polls.”

Iraq: After failed independence bid, disillusioned Iraqi Kurds vote for parliament | MEO

A year after a failed bid for independence, Iraq’s Kurds will be voting again on Sunday, this time in a parliamentary election that could disrupt the delicate balance of power in their semi-autonomous region. With opposition parties weak, the Kurdistan Democratic Party (KDP) and Patriotic Union of Kurdistan (PUK) are likely to extend their almost three decades of sharing power. But splits within the PUK present the possibility that Masoud Barzani’s KDP will take a dominant position in Kurdish politics, both in the regional capital Erbil and in the difficult formation of a federal government in Baghdad. The contentious referendum on independence in 2017, led by Barzani, promised to set Iraq’s Kurds on a path to a homeland.

Latvia: How do you Russia-proof an election? Educate your voters, says Latvian official | CBC

Countering attempts by Russia and other actors to meddle in the democracies of other countries requires more than just stronger cyber defences and better election monitoring, Latvia’s deputy minister of defence said Thursday. It also demands stronger societies and better-informed citizens able to withstand an onslaught of disinformation, rumours and outright fabrications, said Janis Garisons in an interview Thursday with CBC News. Latvia, which has faced cyber attacks on its infrastructure and frequent disinformation campaigns for years, has learned a lot about how to protect itself, said Garisons. “Without general resilience in the long term, I think it will be very difficult to resist,” he said.