Russia: Local election results in Far East cancelled after protests | Al Jazeera

Russia’s Far East region has cancelled the result of a runoff governorship vote in an unprecedented move after claims of vote-rigging in favour of a candidate backed by President Vladimir Putin triggered protests. A local electoral commission took the decision on Thursday after Russia’s election chief Ella Pamfilova on Wednesday recommended re-running the vote. The crisis erupted in the Far Eastern region of Primorsky Krai where an opposition candidate accused a ruling party representative endorsed by Putin of “stealing” his victory in the vote last Sunday.

National: How Vulnerable Are Electronic Voting Machines? | WBUR

A federal judge ruled this week that Georgia does not have to replace its electronic voting machines with machines that create paper records before the election in November. In her ruling, though, the judge noted she’s “gravely concerned” about Georgia’s slow pace in addressing electronic voting vulnerabilities. Here & Now’s Jeremy Hobson talks with Marian Schneider, president of Verified Voting, a nonpartisan nonprofit that advocates for accurate and verifiable elections, about those vulnerabilities and how secure electronic voting machines are.

On her opinion of the judge’s ruling in Georgia: “I do think that it’s a significant decision, but I think that the judge was concerned about the amount of time before the election, that there wasn’t enough time to smoothly implement paper ballots. “There’s only seven weeks between now and the election, and the early voting would start soon, too. So I think that was a greater concern for the court, but I think the judge made a lot of very significant findings about the vulnerabilities that are present in paperless computer systems that count our votes.”

National: The Plot to Subvert an Election: Unraveling the Russia Story So Far | The New York Times

On an October afternoon before the 2016 election, a huge banner was unfurled from the Manhattan Bridge in New York City: Vladimir V. Putin against a Russian-flag background, and the unlikely word “Peacemaker” below. It was a daredevil happy birthday to the Russian president, who was turning 64. In November, shortly after Donald J. Trump eked out a victory that Moscow had worked to assist, an even bigger banner appeared, this time on the Arlington Memorial Bridge in Washington: the face of President Barack Obama and “Goodbye Murderer” in big red letters. Police never identified who had hung the banners, but there were clues. The earliest promoters of the images on Twitter were American-sounding accounts, including @LeroyLovesUSA, later exposed as Russian fakes operated from St. Petersburg to influence American voters. The Kremlin, it appeared, had reached onto United States soil in New York and Washington. The banners may well have been intended as visual victory laps for the most effective foreign interference in an American election in history.

National: State Elections Agencies Focus on Voting Security Ahead of Midterms | StateTech

During the last election, Russian cyberattackers looking for vulnerabilities scanned 21 state election systems, including those in Illinois, over the 2016 campaigns. While the Department of Homeland Security says the scanning activity did not necessarily breach systems, some individual states have reported compromised data. This year, for instance, the Illinois State Board of Elections reported a 2016 breach of its voter registration system, detailing a SQL injection attack of unknown origin that exposed records in the state’s voter registration database. Since the attack, the Illinois board has worked with state IT experts as well as DHS cybersecurity professionals to keep the database of 18 million records and the servers on which it resides safe from attackers, says Matt Emmons, the agency’s IT director. And there are plenty of hackers out there.

National: DOD’s new cyber strategy stresses election security | FCW

The Defense Department’s newly released cyber strategy draws attention to election meddling, infrastructure protection and greater reliance on commercial technology to get ahead of the curve. A summary of the DOD’s cyber strategy released Sept. 18 boasted an assertive stance on election meddling and attribution, calling out cyber “challenges to [U.S.] democratic processes” as a means for Russia, China, North Korea and Iran to inflict damage without engaging in armed conflict. However, the Pentagon remained firm in its infrastructure protection role. DOD will partner with the private sector and other agencies on improved information sharing “to reduce the risk that malicious cyber activity targeting U.S. critical infrastructure could have catastrophic or cascading consequences,”  the document indicated.

National: Cleanup time for tech firms as midterm elections approach | AlphaStreet

Investigations carried out by federal agencies showed that hackers exploited seemingly minor flaws in the electronic voting system to manipulate the vote tally in the last presidential election. The findings might not surprise Americans as much as it would have done a few years ago, because now we know a bigger threat is hanging over the election process. Skeletons of the illegal online campaign launched by Russian agencies a couple of years ago to rig the presidential election are still tumbling out of the closets of technology companies like Facebook (FB) and Google (GOOG). With the midterm polls around the corner, the security agencies are busy plugging all the loopholes in the system to ensure a free and fair election. That the attackers managed to hack important government websites and breached huge volumes of voter data show the severity of the campaign, and that justifies the extra alert this time. Reports show that hackers, with possible Russia connections, are already doing the groundwork to interfere in the November election.

National: Could white hat hackers boost security of voting machines? | Fifth Domain

Government officials and cybersecurity experts are arguing that companies need to embrace vulnerability disclosure programs to guard against hacking amid pushback from the largest voting machine company in the United States, which has portrayed efforts to test their systems as a tactic of foreign spy-craft. Vulnerability disclosure programs that invite hackers to test computer systems are a show of strength, participants in a Sept. 18 event at the Atlantic Council argued. “Not having a vulnerability disclosure program amounts to cybersecurity negligence,” said Marten Mickos, the head of Hacker One. It’s a myth that companies can test their systems on their own, said Chris Nims, chief information security officer at Oath, a cybersecurity company. Even large companies who perform penetration testing on their own products cannot catch all vulnerabilities, he argued. “The reality is that is simply not true.”

National: Wyden: Senators need protection from ongoing Russian hacking campaign | Politico

Russian hackers behind the 2016 Democratic National Committee hack appear to be targeting the personal email of senators and their staffers, according to Sen. Ron Wyden. In a letter today to Senate leaders, the Oregon Democrat urged support for legislation that would allow the Sergeant at Arms to protect those email systems. The letter from Wyden follows reports in January that the Russian hacking group Fancy Bear — which the U.S. intelligence community identified as one group that penetrated the DNC in the lead-up to the 2016 election — was going after Senate offices.

Arizona: Judge won’t order immediate address updates of Arizona’s voter registration list | Arizona Daily Star

A federal judge has refused to order Secretary of State Michele Reagan to immediately update voter registration addresses of 384,000 Arizonans who moved since the last election. But the ruling leaves the door open to further court action to ensure that Reagan — or whoever succeeds her — finally brings the state into compliance with federal voting laws. Judge James Teilborg acknowledged Wednesday the system operated by the Motor Vehicle Division for address changes for driver’s licenses requires people to affirmatively “opt-in” to also having their voter information updated. And the judge did not dispute the National Voter Registration Act requires these forms to make registration changes automatic unless people opt out.

Florida: State rejects tens of thousands of mail ballots | Miami Herald

A study of Florida’s past two presidential elections finds that mail ballots were 10 times more likely to be rejected than votes cast at early voting sites or on election day. The study also found that mail ballots cast by youngest voters, blacks and Hispanics were much more likely to be rejected than mail ballots cast by white voters, and that those voters are less likely to cure problems with their ballots when notified by election supervisors than other voters. The study also shows that rejection rates vary widely across the state. The report was produced by Daniel Smith, chairman of the political science department at the University of Florida, on behalf of the ACLU of Florida, whose director, Howard Simon, cited the state’s “uncertain history in election administration” in a conference call with reporters.

Georgia: Georgia district ordered to redo primary after voting errors | CNN

A judge said he will order a Georgia Legislature district to redo a primary election between two Republicans because errors in voter data called the results into question. The announcement came in response to a lawsuit filed by state Rep. Dan Gasaway that challenged the legitimacy of the election he lost by 67 votes to businessman Chris Erwin in May. Following his loss, Gasaway personally examined voter rolls and determined that “cross-contamination” in his district’s voter information had led to at least 67 people voting in the wrong district, according to his lawsuit.

Kansas: Johnson County Primary Voting Saga Continues As ACLU Sues County Election Commissioner | KCUR

The ACLU of Kansas is now suing Johnson County Election Commissioner Ronnie Metsker to gain access to lists of 900 voters who filed provisional ballots and about 150 voters whose advance ballots were not counted in the August primary.  It’s the latest in an ongoing saga over the controversial Johnson County primary, which involved a serious delay in vote counting and a technical glitch in the county’s new, $10.5 million voting machines. The lawsuit is filed on behalf of Davis Hammet, president of Loud Light, a nonprofit working to increase voter turnout. He’s suing after being denied access to the lists, but more than that, he said, he’s concerned there are bigger issues in the county. 

Wisconsin: Adams County clerk resigns following investigation into unauthorized computer access | WKOW

A meeting to hear charges against Cindy Phillippi was scheduled for Wednesday morning. But the hearing was canceled after Phillippi, through her attorney, submitted a 5-page resignation agreement to the Adams County Board during a closed door session Tuesday night. The resignation is effective Wednesday. The agreement does not include an admission of liability. Phillippi will be on paid leave through the end of the year. Board Chair John West said she will continue to provide consultation during the transition period.

Malaysia: Cabinet decides to lower voting age from 21 to 18 | The Straits Times

The Malaysian Cabinet has decided to lower the voting age from 21 to 18. The decision was made at its weekly meeting on Wednesday (Sept 19), and work on amending the Federal Constitution will begin soon, said Youth and Sports Minister Syed Saddiq Syed Abdul Rahman. “One of the things to be done is to work closely with the youth wings of opposition parties as a two-thirds majority is needed for laws to be amended,” he told reporters. “By the next general election, 18-year-olds can cast their votes, that is for certain,” he added.

Maldives: Opposition party raises alarm over fair conduct of presidential poll | Times of India

The Maldives’ opposition party Wednesday raised concerns over conduct of the presidential elections on Sunday in a free and fair manner by the country’s poll body, which it alleged has deployed activists of the ruling dispensation for the poll duty. President Abdulla Yameen, of the ruling Progressive Party of Maldives (PPM), is seeking a second five-year term in the Indian Ocean archipelago, a popular high-end tourist destination. Yemeen had imposed a state of emergency in February after the Supreme Court quashed the conviction of nine opposition leaders, including the country’s first democratically elected president Mohamed Nasheed. Nasheed, the main opposition Maldivian Democratic Party (MDP) leader, is currently in exile in Sri Lanka. He has been barred from contesting the Sunday’s polls.

New Zealand: Plans for online voting at local govt elections ‘dangerous’ | Radio New Zealand

An Australian IT expert says New Zealand would be crazy to adopt online voting for local government elections and would be opening itself up to widespread electoral fraud. Nine councils including Auckland, Wellington, Hamilton and Tauranga want to use it at next year’s elections, despite there being few examples overseas of where it is being used successfully or safely. Online voting was first used at government elections in Estonia in 2005. Its take up by the rest of the world since then has been limited at best, in large part due to vulnerabilities in its systems that allowed hackers to cast fake votes and rig elections. Australian IT expert Vanessa Teague alerted authorities to faults in the 2015 New South Wales state elections, where a quarter of a million voted online. There were plenty of hackers worldwide happy to take money from a vested interest looking to manipulate an election in their favour, she said.

Russia: Election in Russia’s Far East to be re-run after fraud scandal | Reuters

A regional election in Russia’s Far East will be re-run, the local election commission said on Thursday, dealing a rare blow to the Kremlin after allegations the vote had been rigged in its candidate’s favor. The ruling, in Russia’s Primorsky Region which includes the Pacific port of Vladivostok, 6,400 km (4,000 miles) east of Moscow, came a day after Russia’s top election official recommended that the election be re-run. Ella Pamfilova, head of the Central Election Commission, had not accused the Kremlin-backed candidate, Andrei Tarasenko, of orchestrating the vote-rigging, but had said that a raft of irregularities had been identified, including ballot stuffing and vote buying. 

Sweden: IT sector advises Swedish government on elections and voting system | Computer Weekly

Swedish IT sector is helping the government make election systems more secure and reduce external influence. The security measures assembled and implemented around the 2018 election in Sweden were devised in consultation with leading actors within Sweden’s private IT sector. The primary role of the IT suppliers was to advise government panels, which included the national security service (Säpo), the National Police Board (Rikspolisstyrelsen), the National Civil Contingencies Agency and the National Election Authority. Säpo was at the head of a government-commissioned election taskforce that organised an IT-based protective shield around the voting process and implemented measures to minimise hostile external inference.

National: The Cyberthreats That Most Worry Election Officials | Wall Street Journal

As Election Day gets closer, one issue looms large for voters and election officials alike: cybersecurity. Hoping to quell fears about foreign hackers and repel potential threats, many states and counties are beefing up their plans to deal with cyberattacks. They’re shoring up systems to protect their voter databases and hiring security experts to assess the strength of their defenses. They’re coordinating with social-media organizations to stamp out deliberately fraudulent messages that could mislead voters about how to cast a ballot. And they’re banding together to share information and simulating how to respond to potential emergencies. One simulation-based exercise, held by the Department of Homeland Security in mid-August, gathered officials from 44 states, the District of Columbia and multiple federal agencies, the DHS says. “There absolutely is more emphasis on contingency planning” since 2016, says J. Alex Halderman, a professor of computer science at the University of Michigan. 

National: Election Equipment Vendors Play a Key, and Underexamined, Role in U.S. Democracy | Take Care

Every vote in the United States — for city council, state representative, or president — is cast using materials and equipment manufactured by third party vendors. There are vendors large and small, but the American election equipment industry is dominated by three vendors: ES&S, Hart, and Dominion. These vendors manufacture the machines that approximately 92% of eligible voters use on election day — and they wield extraordinary power with significant implications for our democracy. Because of this, it’s critical that elected officials and advocates pay attention to the role vendors play in the security and transparency of American election systems. Perhaps most concerning are vendor efforts to keep secret the technology upon which American elections rely while at the same time feteing state and local election officials with expensive trips and meals. Vendors have actively and increasingly pushed back on efforts to study and analyze the equipment that forms the basic foundation of our democratic processes.

National: Symantec takes on election hacking by fighting copycat websites | CNET

Symantec is offering a free tool for US campaigns and election officials to fight fraudulent websites, the company announced Tuesday. The feature could help take away an important weapon in the election hacking arsenal: the spoof website. Lookalike websites could imitate official government sites and report false information about candidates or voting. What’s more, they’ve already been used to imitate a login page to trick campaign workers to enter their valuable usernames and passwords.  That approach, called phishing, was key to letting hackers gain access to the emails and internal documents of important Democratic Party organizations and key figures in Hillary Clinton’s 2016 presidential campaign, according to an indictment of the Russian hackers alleged to have stolen and leaked emails from the groups.

National: Is There Voter Suppression In 2018? Here’s What It Could Look Like In The Midterms | Bustlea

Voter suppression is a serious issue that takes many forms — but it’s a lot more subtle than you might think. When it comes to voter suppression in the midterms, you might not even know it’s happening, but you can bet that a bunch of (strategically placed) red tape will end up blocking some people from voting this year. Basically, any action taken with the goal of preventing or dissuading you from voting is voter suppression. You often hear about voter suppression in the context of policies that have made it harder for certain groups of people, or for people who live in certain areas, to cast their ballots. These barriers are bureaucratic for the most part. Voting rights advocates point to voter ID requirements, decreased early voting opportunities, polling station closures, voter roll purges, and gerrymandering as means of voter suppression. Voting rights groups like the American Civil Liberties Union are challenging most of these obstacles in court, but there’s still the possibility you could run into difficulties at the polls. Don’t panic, though. There are a few simple steps you can take to make sure you (and the people you know) don’t encounter any barriers to voting this year. Let’s walk through some of the hurdles that could prevent you from voting, and then we’ll talk about what you can do about them.

Georgia: This Judge Just Cast More Doubt on Elections Security Right Before Midterms | InsideSources

Right before midterms, a United States District Court judge found that Georgia’s electronic voting machines are extremely vulnerable to hacking and foreign meddling — including from Russia — but ruled against changing the state’s elections systems to avoid voter confusion and chaos. But by simply highlighting the vulnerability of Georgia’s electronic voting machines, the judge may have already undermined voter confidence just weeks before the midterms. The new ruling from Judge Amy Totenberg in Curling v. Kemp found that Georgia’s electronic voting machines are so easily hacked that it is irresponsible for a locality or state to use them without a paper audit trail. Georgia’s machines do not have paper audit trails. Totenberg admonished the state of Georgia for not properly addressing election security issues in time for the 2018 midterm elections, reminding them that “2020 elections are around the corner” and that “if a new balloting system is to be launched in Georgia in an effective manner, it should address democracy’s critical need for transparent, fair, accurate, and verifiable election processes that guarantee each citizen’s fundamental right to cast an accountable vote.”

Georgia: Judge: Georgia has stalled in face of voting system risks | Associated Press

As Georgia’s top elections official runs for governor, a federal judge said the state has stalled too long in the face of “a mounting tide of evidence of the inadequacy and security risks” of its voting system. Secretary of State Brian Kemp, a Republican, is in the midst of a closely watched race against Democrat Stacey Abrams, a former state House minority leader who’s trying to become the country’s first black, female governor. He has repeatedly insisted that Georgia’s current voting system is secure. Voting integrity advocates sued last year, arguing that the touchscreen voting machines Georgia has used since 2002 are vulnerable to hacking and provide no way to confirm that votes have been recorded correctly because there’s no paper trail. They sought an immediate change to paper ballots for the midterm elections while the case is pending. U.S. District Judge Amy Totenberg declined to grant that request Monday, saying that although voting integrity advocates have demonstrated “the threat of real harms to their constitutional interests,” she worried about the “massive scrambling” required for a last-minute change to paper ballots. Early voting starts Oct. 15 for the Nov. 6 midterm elections.

Kansas: ACLU sues for Johnson County voters’ names whose ballots were rejected | The Kansas City Star

The American Civil Liberties Union is suing to get the names of Johnson County voters who cast provisional ballots in the August primary. The ACLU also wants a list of voters in the county who cast advance mail ballots that were rejected because their signature didn’t match their voter record. The lawsuit comes after a tumultuous Republican primary election for gov rnor that exposed sometimes-subjective vote counting. Some Kansas counties counted ballots that would have been tossed out in others in a race between Secretary of State Kris Kobach and Gov. Jeff Colyer that was decided by fewer than 350 votes. “We aren’t asking to see who they voted for or any private information,” said Lauren Bonds, the ACLU of Kansas’ legal director, in a statement. “That information should be afforded the utmost privacy. However, people should know whether their vote counted or if people faced any unnecessary barriers to voting. The public interest here is just transparency.”

Kentucky: Why is the Kentucky State Board of Elections in chaos? | Lexington Herald Leader

It’s 49 days until Election Day and the Kentucky State Board of Elections is mired in chaos. At issue is a power struggle between the staff of the State Board of Elections and Secretary of State Alison Lundergan Grimes over control of Kentucky’s election system. Grimes, a Democrat, argues that her role as chairwoman of the board of elections requires her staff to have access to Kentucky’s voter registration database and oversight of the day-to-day operations of the State Board of Elections. Jared Dearing, executive director of the State Board of Elections, filed a complaint last month with the board, the executive branch ethics commission and the state personnel board, alleging Grimes had overstepped her authority by eliminating the independence of the board’s staff, asking her staffers to access the voter database, and creating a hostile work environment.

New Jersey: New mail-in ballot law could cause confusion at the polls | NJTV

County workers are stuffing envelopes with mail-in ballots, and they’re stuffing a lot of envelopes. Thanks to a new state law, every voter who got a mail-in ballot in 2016 will automatically get one this year, unless they opt out in writing. So where Monmouth County expected to send out up to 20,000 mail-in ballots, it will now have to send out more than 30,000. “That part of the law, that new change, has been difficult to implement in such a short time period because vote by mail ballots start going out Sept. 22. It’s not like we have until November to implement a law that was enacted in August. We basically had a month,” said Monmouth County Clerk Christine Giordano Hanlon. Gov. Phil Murphy signed the law in August, arguing that expanding mail-in voting, or what used to be known as an absentee ballot, would expand voter participation. County clerks, however, say they had just weeks to comply with the law, without additional resources to do so.

North Carolina: Florence complicates the election process. Will it keep people from voting? | News & Observer

Turnout may be tempered in the upcoming election after Hurricane Florence impaired North Carolina’s infrastructure, displaced thousands of voters and distracted from political issues as candidates jockey for favor. The deadly storm arrived just as door-knocking, campaign advertisements and fundraising started to ramp up. At stake this year are a state Supreme Court seat, congressional seats, six proposed constitutional amendments and control of North Carolina’s legislature, along with municipal races. Republicans control the legislature, and Democrats hope to gain influence by winning four House seats or six Senate seats to break the GOP supermajority. But Florence has thrown a wrench into the Republican and Democratic machines. It dumped record amounts of rain from the coast to the Piedmont, causing flooding that’s displaced countless residents and complicated the election preparation process.

Virginia: House GOP releases redistricting proposal it says is ‘race blind’; Democrats reject it as ’empty rhetoric’ | Richmond Times-Dispatch

Republican leaders in the Virginia House of Delegates unveiled their own redistricting plan Tuesday, saying their proposed map is “race blind” and would fix racial gerrymandering without giving either party a significant political advantage. The General Assembly has six weeks left to pass a new House electoral map after a federal court ruled over the summer that lawmakers unconstitutionally prioritized race during the 2011 redistricting process by drawing too many African-American voters into majority-minority districts. The 2011 map passed with bipartisan support. It remains to be seen whether the GOP-controlled legislature will pass a map before the Oct. 30 deadline set by the court. But the introduction of the Republican plan puts another option on the table ahead of a House elections committee meeting next week. The bill’s patron is Del. Rob Bell, R-Albemarle.

Wisconsin: Elections Commission hires new staff aimed at increasing elections security | WISC

With less than two months until the November election, the Wisconsin Elections Commission has hired several new staff members to help with election security. The federal government awarded the commission nearly $7 million in grants for election security. “We’re using a significant amount of that money on hiring new people, as well as for system enhancements for security,” said Reid Magney, public information officer for the Wisconsin Elections Commission. The elections commission will hold a meeting on Aug. 25 to ask clerks and members of the public how they should spend the rest of the grant money.