North Carolina: Elections Board Awaiting New Member To Break Tie On Voting Machines | Rusty Jacobs/WUNC
North Carolina's elections board is deadlocked over whether to require that voting machines produce a paper printout that lets voters read and confirm their ballot. The state's Board of Elections on Thursday decided to debate the issue again in three weeks. By then, it's likely a fifth member will be appointed to replace former chairman Bob Cordle who resigned this week. Cordle stepped down under fire Tuesday after telling an inappropriate joke at a conference for county elections officials on Monday. His resignation is significant because Cordle would have been a third vote on the five-member, bi-partisan board backing certification. Three companies are seeking certification of their equipment, including one system that doesn't use hand-marked paper ballots and emits a ticket with a bar code that is then scanned to tabulate voters' choices. Once a company's system is certified by the state, the vendor may contract with individual counties. Twenty-two counties use touch-screen equipment that is due to be de-certified December 1.Chile: Voter records for 80% of Chile’s population left exposed online | Catalin Cimpanu/ZDNet
The voter information of more than 14.3 million Chileans, which accounts to nearly 80% of the country's entire population, was left exposed and leaking on the internet inside an Elasticsearch database. ZDNet learned of the leaky server from a member of the Wizcase research team, who passed the server's IP to this reporter last week, in order to identify the nature and source of the leak. We found that the database contained names, home addresses, gender, age, and tax ID numbers (RUT, or Rol Único Tributario) for 14,308,151 individuals. ZDNet has confirmed the validity and accuracy of this information with several of the individuals whose data was contained in the leaky database. A spokesperson for Chile's Electoral Service -- Servicio Electoral de Chile (Servel) -- also confirmed the data's authenticity; however, they denied owning the leaky server.Switzerland: These are the arguments that sank e-voting in Switzerland – SWI swissinfo.ch
The idea of e-voting in Switzerland has been a bold dream, but the future of the entire project is now in doubt. Sceptics seem to have won the day, at least for the moment. So what issues do experts have with it? We talk to two of them. Let us first remember what has happened. The federal government put out a proposal to use an e-voting system but opponents, in this case computer scientists, were sceptical and critical. There followed an emotional debate among politicians, civil servants and the computer scientists, leading to an informed decision. It was decided that the danger of vote manipulation is too great, for it runs the risk of breaking Switzerland’s political backbone of direct democracy. Democracy also means, however, that no decision is ever cast in stone.Georgia: ‘The selling of an election’: dangerous level of private control revealed in 2018 Georgia midterms | Jordan Wilkie/The Guardian
Private companies had near-complete control over Georgia’s elections for the 2018 midterms and posed a serious security risk, according to testimony and documents revealed during a federal court case challenging the constitutionality of Georgia’s elections. The most maligned components of Georgia’s election systems – voting machines and online voter registration – were almost entirely managed by private companies, prompting concerns from election security experts. Voting machine company Elections Systems and Software (ES&S), which has close connections with the Georgia secretary of state’s office and Governor Brian Kemp’s staff, had three staff in Georgia building electronic ballots out of their homes through the 2018 midterms. This introduced significant security concerns about both foreign actors attacking the election system with malware or about a “political insider” potentially introducing their own coding that could alter the results of an election without detection, according to the plaintiffs. “It’s a shock to everyone that the vendor is actually building ballots for state elections,” said David Cross, lead attorney for one of the two groups suing the state. “That should not be happening. That should be at the state level, because the state does not have any means of ensuring the necessary security protocols of the vendor.”National: Activists to Congress: Secure Elections or Risk a Repeat of 2016 | Gabriella Novello/WhoWhatWhy
The 2020 election could be vulnerable to another attack by hostile foreign actors if Senate Majority Leader Mitch McConnell (R-KY) continues to block election security legislation. Election integrity activists are urging Congress to take action after a bombshell report by the Senate Intelligence Committee found widespread attacks by the Russian government in the 2016 election. … Marian Schneider, president of Verified Voting, told WhoWhatWhy that the report proves that there can no longer be a dispute as to whether Russia actually interfered in the 2016 election. Schneider said that voting systems, the pieces that tabulate the vote, and voter registration databases need to be made resilient moving forward. “That means you have to be able to monitor the systems, detect that something has gone wrong, and recover,” she said, adding that voter-marked paper ballots are “the only way to do that.” Schneider also called for “uniform federal standards coupled with federal funding,” in light of the 2016 attack on US democracy.National: A high-level Senate report confirms it: Our elections still aren’t safe | Michael McFaul/The Washington Post
In his congressional testimony last week, former special counsel Robert S. Mueller III once again confirmed the seriousness of Moscow’s attack on our democracy in the 2016 presidential election. Yet that wasn’t even the most important news for those of us who track Russian election interference. The Senate Intelligence Committee has just published the first section of its report on Russian efforts to influence the election. The bipartisan panel’s report has made headlines by showing that the Russians probably targeted elections systems in all 50 states in 2016. That calculated operation was designed not only to help Trump but also to undermine American democracy more generally. You’d think this report would give President Trump and Senate Majority Leader Mitch McConnell (R-Ky.) the perfect reason to support new legislation designed to enhance the security of our elections infrastructure in 2020. As the bipartisan report makes evident, enhancing cybersecurity for our election infrastructure is not a partisan issue — it’s an issue of national security. Department of Homeland Security representatives told the committee “there wasn’t a clear red state-blue state-purple state, more electoral votes, less electoral votes” pattern. So far, though, there is little sign that Trump and McConnell are paying attention.National: Mitch McConnell just made sure election security will be key Senate campaign issue | Joseph Marks/The Washington Post
Senate Majority Leader Mitch McConnell, R-Ky., smacked back at critics who have accused him of leaving the 2020 election vulnerable to Russian hackers, accusing them of "modern-day McCarthyism." McConnell offered an impassioned 25-minute defense of his election security record on the Senate floor as Democrats accuse him of consistently blocking their bills from coming up to a vote. "I'm not going to let Democrats and their water carriers in the media use Russia's attack on our democracy as a Trojan horse for partisan wish list items that would not actually make our elections any safer," McConnell said. "I'm not going to do that." His stance ensures that election security will play a major role in Senate campaigns that are ramping up now -- and Democrats are already seizing the moment to make McConnell look like the face of obstruction. Within minutes of the speech, Amy McGrath, a Kentucky Democrat and retired Marine lieutenant colonel who's seeking McConnell's seat, slammed the majority leader on Twitter. McGrath rattled off a list of election security provisions Democrats have sought to mandate, such as paper ballots and security audits for voting machines before asking: "Tell me again how that is partisan, @senatemajldr? Oh right, you can't."National: Our lax cybersecurity risks our elections and our data. We need solutions | Andrew Grotto/CNN
Our national discussions about cybersecurity and privacy follow a frustrating pattern: a headline-grabbing incident like the recent Capital One breach occurs, Congress wrings its hands and policymakers more or less move on. So it is no surprise cybersecurity hasn't been much of a focus as the race to the 2020 presidential election heats up. The issue is here to stay, and it should be debated by the candidates. Here are some concrete ideas that would significantly improve the safety and security of the nation — but require presidential leadership if they are to come to fruition. The candidates have been justifiably outraged over Senate Majority Leader Mitch McConnell's stonewalling on election security legislation that would direct resources and expertise to state and local governments to help modernize election systems and implement paper-based backups for electronic voting, among other improvements. As Special Counsel Robert Mueller warned in Congressional hearings last week, the Russians and other bad actors will undoubtedly attempt to threaten the integrity of the 2020 election. This is no time to stand pat -- Congress should pass -- and the President should sign -- legislation on election security before the 2020 election, not after.National: Democrats take another stab at preventing foreign election interference | Maggie Miller/The Hill
House Democrats introduced legislation Tuesday that would require campaigns to report any foreign contacts to federal authorities, the latest push for election security following last week's warnings from former special counsel Robert Mueller. The measure -- sponsored by Democratic Reps. Elissa Slotkin (Mich.), Lauren Underwood (Ill.), and Jason Crow (Colo.) -- would mandate federal campaigns to inform the FBI and Federal Election Commission about any foreign contacts who attempt to donate funds or assist a candidate. Campaigns would also be required to implement a “compliance system” to monitor communication with those foreign contacts. “Guarding our country against another attack on our political system should not be a partisan issue — it is a national security issue and it’s an American issue,” Slotkin said in a statement. The bill will be referred to the House Administration Committee.National: Russia Is Going to Up Its Game for the 2020 Elections | Matt Laslo/WIRED
One week after Robert Mueller’s testimony shined a spotlight, once again, on election interference, Senate Majority Leader Mitch McConnell is feeling the heat. The leader turned heads on the Senate floor Monday as he rose to decry critics who have dubbed him “a Russian asset” and “Moscow Mitch” for stonewalling congressional measures to improve election security. And with momentum building in the House to formally start impeachment proceedings against President Trump, the pressure is unlikely to let up anytime soon. Focusing on election interference from 2016 is backwards thinking, though, at least according to Virginia Senator Mark Warner. With 2020 just around the corner, he tells WIRED—in an exclusive interview—that the upcoming election is where both parties need to direct their attention right now. As the top-ranking Democrat on the Senate Intelligence Committee, Warner has long been a vocal proponent of new legislation to strengthen election protections, such as the Honest Ad Act, which would compel Silicon Valley firms to disclose when political ads are paid for by a foreign nation. He’s also behind a bill that would require campaigns to alert federal officials if they’re approached by a foreign operative offering information or other assistance. Both bills have bipartisan support—Senator Susan Collins became the first Republican to cosponsor the Foreign Influence Reporting in Elections Act earlier this week.Editorials: What “Moscow Mitch” wants: An election overrun by trolls and plunged into chaos | Bob Cesca/Salon
n the interest of big-picturing the past week or so, we learned from the Republican-controlled Senate Intelligence Committee that Russian hackers successfully infiltrated election systems in all 50 states during the 2016 election cycle. We also learned that the accused felon who was installed as commander in chief as a likely consequence of that cyber-attack spent all weekend blurting racist gibberish on Twitter while cable-news talking heads wonder how it will play among the Midwestern diner crowd. Meanwhile, the Republican Senate majority leader refuses to pass any legislation safeguarding future elections. It’s like finding out you have cancer, only to discover your surgeon is a shaky-handed drunken clown with a malfunctioning weed-whacker, and no one seems to notice. The truth about what really happened in 2016 has been a slow drip, to put it mildly. Since Nov. 8, 2016, the extent of Russian infiltration of the American democratic process has been routinely and frustratingly underestimated and lowballed, with details gradually expanding from nothing to a few states to 39 states and now, with the 2020 election 15 months away, we’ve reached a full 50 states and, according to the Senate report, “an unprecedented level of activity against state election infrastructure.”Arkansas: Some vote upgrades unsure – 21 counties lack new machines; some say cash too short | Michael R. Wickline/Arkansas Democrat & Gazette
Officials in the secretary of state's office said Wednesday that they would like to install new voting equipment by the March 3 primary election in the 21 counties that don't have it. But the office's elections director, Leslie Bellamy, told officials from these counties that they won't have new equipment for next year's election cycle if Republican Secretary of State John Thurston decides to rebid the purchase, as had been suggested. In 2015, Thurston's predecessor, Republican Secretary of State Mark Martin, decided to purchase a statewide integrated voting system, including new voting equipment, through Nebraska-based Election Systems & Software rather than California-based Unisyn Voting Solutions or Texas-based Hart Inter-Civic. Officials from some counties disagreed on whether Thurston should seek new bids. Officials from other counties said their counties are so cash-strapped that they won't be able to match state funds for new equipment.Georgia: Election officials deny evidence destruction | Kate Brumback/Associated Press
Lawyers for Georgia election officials are rejecting as frivolous allegations that their clients destroyed evidence in a case challenging the state's outdated election system. Election integrity advocates and individual Georgia voters sued election officials, saying the voting machines the state has used since 2002 are unsecure and vulnerable to hacking. In a court filing Thursday, they said the state began destroying evidence within days of the suit's filing in 2017 and has continued to do so as the case moved forward. Responding in a court filing Tuesday, lawyers for state election officials called those allegations "a desperate attempt to distract the Court and the public from the complete lack of evidence of an actual compromise of Georgia's election system." The state's election system came under national scrutiny last year during the closely watched gubernatorial election in which Republican Brian Kemp, who was the state's top election official at the time, narrowly beat Democrat Stacey Abrams. State officials on Monday announced that they have selected a new voting system and expect it to be in place in time for the presidential primary election on March 24. But the state still plans to use the outdated machines for special and municipal elections in the interim.Indiana: Paper trails for electronic voting machines coming to Indiana | David Williams/WISHTV
Millions of dollars are going in to making sure the votes of Hoosiers are safe and verifiable. Soon, it will be much easier for you to verify your vote at the polls. “In 60 of our counties, if you vote on an electronic direct-record machine, you can’t actually see the tape. You can’t actually know how your vote is recorded,” Secretary of State Connie Lawson explained Wednesday. Inside a black box is a paper audit trail that’s added to existing electronic voting machines. So how does it work? “This machine allows me to verify my vote. If I hit verify, you can see this tape moves up,” Lawson explained. “I can see on paper exactly how this machine recorded my vote. It gives the voter more confidence that this is done properly.” That little paper isn’t a receipt, so voters can’t take it home. But, that means election officials can audit the results and confirm the vote was counted.Editorials: Mississippi’s electronic election systems need to be protected | Lena Mitchell/djournal.com
Mississippians will be voting in less than a week in primary elections to choose leadership for governor, lieutenant governor and other statewide offices, as well as state senators and representatives who will make decisions about our state laws. We will be choosing who will represent the parties in elections for county officials from district supervisors, circuit clerks, chancery clerks, tax collectors, tax assessors and so forth, to county prosecutors and surveyors. All of the mechanisms we use to make these important decisions that affect our daily lives have come into question with repeatedly validated reports that our election systems are vulnerable to tampering by foreign influences. The report released last week by the U.S. Senate Intelligence Committee confirmed what all U.S. intelligence agencies reported in 2016 – that Russia has accessed U.S. election systems and will continue to exploit those systems’ vulnerabilities. The report said that Russian operatives have hacked election systems in all 50 states, stealing identifying information on voters in 16 states.North Carolina: State Elections Board’s Sudden Vacancy Could Affect Debate Over Certification Of New Voting Machines | Rusty Jacobs/WUNC
The sudden resignation of State Board of Elections Chairman Bob Cordle presents an opportunity for people who oppose the certification of new voting systems in future North Carolina elections. The board is scheduled to meet Thursday and had been expected to move towards certifying three new systems. Once certified by the state board, the vendors for those systems may seek contracts with individual counties. The board's two Republicans, Ken Raymond and David Black, and Cordle, a Democrat, favored certification. But Cordle stepped down Tuesday, just a day after telling an inappropriate joke during remarks at the start of a conference for state and county elections officials. Gov. Roy Cooper must now choose a replacement from a list of nominees submitted by the state Democratic Party. He could end up selecting someone who would join the board's other two Democrats, Jeff Carmon III and Stella Anderson, in opposing certification. That would tip the five-member board towards not certifying. At a public meeting on Sunday, convened to allow the voting systems vendors to present their equipment to the state elections board members, advocacy groups and concerned citizens had urged the board to put off certification and continue using the hand-marked ballot and tabulator system employed by most counties across the state. They cited potential vulnerabilities in newer voting technologies.Texas: Election officials train to spot vulnerabilities ahead of 2020 | Wes Rapaport/KXAN
Hundreds of election administrators, county clerks, and voter registrars converged on a hotel ballroom in Austin for training with the Texas Secretary of State’s office. The theme of the week is election security and integrity. The nearly 800 election officials came from across the state to share best practices to prevent tampering with Texas elections. “I am getting a lot of information crammed into my brain in three days,” Archer County election administrator and voter registrar Christie Mooney said. Mooney is a one-person operation in Texoma, keeping track of approximately 6,270 voters in the county, and administering elections. “Every election official needs to learn the new laws that came out of the legislative session that just happened,” she explained.India: Why Voter Verifiable Paper Audit Trails aren’t enough to build confidence in electronic voting machines | Atanu Biswas/Hindustan Times
Two months after the declaration of Lok Sabha election results, conspiracy theories about possible tampering of Electronic Voting Machines (EVMs) are still doing the rounds. That important opposition leaders have demanded a return to paper ballots and even openly supported EVM-rigging theories has lend credence to the latter – although some of their behavior can be attributed to just being bad losers. Still, doubts about EVMs have been planted, despite the fact that none of the Voter Verifiable Paper Audit Trail (VVPAT) machines showed a mismatch with the EVM count. The Supreme Court ordered the Election Commission of India (ECI) that five VVPATs per assembly constituency (AC) should be matched with the EVM count of votes. Statistically speaking this is adequate to remove doubts about possible tampering of EVMs. In an earlier article in HT dated April 27, 2018, this author had argued that tallying just 11, 29, 58 and 534 VVPATs per parliamentary constituency (PC) would allow us to find a rigged EVM with 95% probability for scenarios where 25%, 10%, 5% and 0.5% of the EVMs were tampered in a given PC. Are EVM rigging fears an example of conspiracy theories defeating statistical methods? Ironical as it may sound; an eighteenth century concept in statistics known as Bayes’ theorem can helpUnited Kingdom: Former Cambridge Analytica director, Brittany Kaiser, dumps more evidence of Brexit’s democratic trainwreck | Natasha Lomas/TechCrunch
A UK parliamentary committee has published new evidence fleshing out how membership data was passed from UKIP, a pro-Brexit political party, to Leave.EU, a Brexit supporting campaign active in the 2016 EU referendum — via the disgraced and now defunct data company, Cambridge Analytica. In evidence sessions last year, during the DCMS committee’s enquiry into online disinformation, it was told by both the former CEO of Cambridge Analytica, and the main financial backer of the Leave.EU campaign, the businessman Arron Banks, that Cambridge Analytica did no work for the Leave.EU campaign. Documents published today by the committee clearly contradict that narrative — revealing internal correspondence about the use of a UKIP dataset to create voter profiles to carry out “national microtargeting” for Leave.EU. They also show CA staff raising concerns about the legality of the plan to model UKIP data to enable Leave.EU to identify and target receptive voters with pro-Brexit messaging. The UK’s 2016 in-out EU referendum saw the voting public narrowing voting to leave — by 52:48.National: Why is Mitch McConnell blocking election security bills? Good question. | Amber Phillips/The Washington Post
As President Trump’s own FBI director warns that Russians are planning to try to undermine American democracy in the next presidential election, Republican lawmakers led by Senate Majority Leader Mitch McConnell (Ky.) are blocking bills aimed at blocking foreign hackers from states’ voting systems. Why? Republicans have policy objections to the legislation, but it seems clear that politics is at the forefront of McConnell’s decision-making. Specifically, the politics of pleasing Trump. Trump is so sensitive to findings that Russians tried to help him win in 2016 that a Cabinet secretary was warned against briefing him on it. He’s repeatedly sided with Russian President Vladimir Putin over his own intelligence community about whether Russians interfered. He’s said he might accept foreign help in his 2020 reelection. And last month, he made light of it all when he mock-scolded Putin in front of cameras. “Don’t meddle in the election,” he said, waving a finger and wearing a smile. That puts McConnell in a tough spot: Pass legislation, which election security experts say is needed, and risk sparking the president’s ire, or block the legislation — and risk increased Russia election interference and public ridicule.National: ‘Moscow Mitch’ Tag Enrages McConnell and Squeezes G.O.P. on Election Security | Carl Hulse/The New York Times
Senator Mitch McConnell is usually impervious to criticism, even celebrating the nasty nicknames critics bestow on him. But Mr. McConnell, the Senate majority leader, is incensed by the name “Moscow Mitch,” and even more miffed that he has been called a “Russian asset” by critics who accuse him of single-handedly blocking stronger election security measures after Russia’s interference in 2016. Democrats had been making the case for months, but it was supercharged last week by the testimony of Robert S. Mueller III, the former special counsel, who told the House Intelligence Committee that the Russians were back at it “as we sit here.” Mr. McConnell cites several reasons for his opposition — a longstanding resistance to federal control over state elections, newly enacted security improvements that were shown to have worked in the 2018 voting and his suspicion that Democrats are trying to gain partisan advantage with a host of proposals. Republican colleagues say that Mr. McConnell, a longtime foe of tougher campaign finance restrictions and disclosure requirements, is leery of even entering into legislative negotiation that could touch on fund-raising and campaign spending.National: Election Security Needs Increased Federal Investment | Lucas Ropek/Government Technology
Foreign interference is still an ongoing threat to state and local election security and can only be guarded against through increased federal assistance, warns a recently published report.
Defending Elections, published by the Brennan Center for Justice, claims that state and local governments are on the “front line” of a “cyberwar” with foreign actors and hackers.
Ever since the 2016 Russian intrusion into the U.S. presidential election, concern over voting system integrity has been a top priority for officials at all levels of government as well as the American public. With recent news that Russia’s efforts were far more extensive than initially believed, it isn’t hard to see why states are looking to bolster their cybersecurity.
For years, one of the biggest programs to increase election security has been the Help America Vote Act (HAVA), a George W. Bush-era federal law which last year provided $380 million in federal grant funding to assist with election security for state and local governments.
States spent only around 8 percent of this funding during the 2018 elections, but are on track to spend the vast majority of it during 2020, according to The Washington Post.
HAVA, which has been providing assistance since 2002, still does not do enough to satisfy the actual security needs of most states, according to the new report.
Many state and local governments have “substantial election security needs that likely will not be met absent additional federal support,” according to the report. It further concludes that these governments are “ill equipped to defend themselves against the sophisticated, well-resourced intelligence agencies of foreign governments.”
Those foreign governments may include Russia, China and Iran, according to Trump officials, who feel that a whole host of countries may attempt to inject their influence into the 2020 presidential election.
The Brennan report looks at the needs of a representative sample of states, including Alabama, Arizona, Oklahoma, Illinois, Louisiana and Pennsylvania; detailing the federal allocations they received last year, and the areas that will still need further investment.
Arizona, for example, received over $7 million in funds from the federal grant in 2018, the bulk of which went toward investing in cybersecurity, including an IT infrastructure security assessment and increased inter-agency information sharing. The funds were also used to help replace the state’s voter registration database.
However, the state ultimately needs further investment to replace its legacy voting systems, which many experts consider to be a liability due to their use of outdated software that may not receive consistent security patches.
Other states, like Oklahoma, spent millions in federal funding to upgrade their voter registration databases and security, as well as on new election system equipment and cybersecurity training. However, more funding is needed to ensure post-election audits, as well as upgrades to voting equipment and the state’s voter registration virtual private network.
For many states, like Pennsylvania, further investment is needed in basic cybersecurity assessments and trainings, which give elections staff the skills necessary to identify vulnerabilities and avoid spear-phishing campaigns.