National: Facebook funds Harvard group trying to fight election hacking | The Hill

Facebook said on Wednesday that it will give funding to a nonprofit at Harvard that is trying to curb cyberattacks aimed political groups and election systems. The social media giant’s money will go to Defending Digital Democracy, a group led by former campaign chairs for Hillary Clinton and Mitt Romney, based at Harvard’s Kennedy School of Government. Though Facebook is providing the initial funding for the center, it said that it hopes other participants will help the organization transition into a group with several members who share information and analysis in “critical areas of the democratic process.”
At Black Hat, an IT security conference, Facebook Chief Security Officer Alex Stamos said the project was born out of the company realizing that no one was taking responsibility for issues of election hacking. “A huge amount of harm falls outside what we considered to be our problem,” Stamos said. “The real problems is that those issues is generally not anybody else’s problem either.”

National: Voting Machine Hacking Village at DEF CON | Gizmodo

… DEF CON is getting more deeply involved with election security than ever before—this year, the event will host its first Voting Machine Hacking Village. DEF CON villages are offshoots of the main event, where attendees get to tinker with technology. At the vote-hacking village, they’ll be invited to tamper with voting hardware and software. In addition to the hackers, the village is expecting visitors from Congress, the National Institute of Standards and Technology, the Department of Homeland Security, and voting machine vendors. Moss hopes to discover just how easy it is to compromise a voting system. Although states test components of their systems, Moss couldn’t find any examples of a state testing their complete voting apparatus. Most manufacturers, he explained, test voting machines for their ability to withstand humidity rather than hackers. This is worrisome, particularly at a time when Americans are suddenly obsessed with qualifying the security of their electoral systems.

National: Kobach says states will be sent new letter on voter information request | The Kansas City Star

Kris Kobach said states will be sent a new letter describing how to submit voter information following a federal court ruling this week that favored Kobach and President Donald Trump’s election integrity commission. Kobach told The Star that he expected those instructions to be issued Tuesday. The commission, which Kobach helps lead, had asked states to hold off from submitting the data until a judge ruled on a request for a temporary restraining order filed by the Electronic Privacy Information Center. “There are more than 30 states that already indicated they intended to provide this publicly available information to the commission,” Kobach said. “So I anticipate that that will start happening soon.”

National: Eager to punish Russia for meddling in 2016 election, House decisively passes sanctions bill curbing Trump’s power | Associated Press

Eager to punish Russia for meddling in the 2016 election, the House on Tuesday overwhelmingly backed a new package of sanctions against Moscow that prohibits President Donald Trump from waiving the penalties without first getting permission from Congress. Lawmakers passed the legislation, 419-3, clearing the far-reaching measure for action by the Senate. If senators move quickly, the bill could be ready for Trump’s signature before Congress exits Washington for its regular August recess. The Senate, like the House, is expected to pass the legislation by a veto-proof margin. The bill also slaps Iran and North Korea with sanctions. The 184-page measure serves as a rebuke of the Kremlin’s military aggression in Ukraine and Syria, where Russian President Vladimir Putin has backed President Bashar Assad. It aims to hit Putin and the oligarchs close to him by targeting Russian corruption, human rights abusers, and crucial sectors of the Russian economy, including weapons sales and energy exports.

National: DOJ inspector general testimony may shed light on 2016 election inquiry | Politico

With special prosecutor Robert Mueller’s criminal inquiry into Russian meddling in the 2016 election now well underway and at least four congressional probes ongoing, it may seem like every aspect of the controversy is already being closely scrutinized. But there’s also a less-noticed investigation by the Justice Department’s Office of Inspector General, which has been exploring several issues key to the Russia saga since before President Donald Trump’s inauguration. Inspector General Michael Horowitz has offered few public indications of the status of his probe, which some lawmakers said he initially told them was expected to be complete by early next year. On Wednesday, he’s likely to make his first public statements at a hearing in front of the Senate Judiciary Committee about the status of his inquiry – and whether he’ll acquiesce to any of the many requests from Republicans and Democrats to expand his review to include the firing of former FBI director James Comey or other developments.

National: Five things to watch for at ‘hacker summer camp’ | The Hill

The largest cybersecurity event of the year kicks off this week, as the Black Hat, Def Con and BSides conferences launch back-to-back-to-back in Las Vegas. … In a subversive move, attendees at Def Con will be able to attend its first Voting Machine Village. The Village offers a side conference on voting machine insecurity and a playground of real voting machines for hackers to toy with.

National: District court refuses to block federal government voter information collection | Los Angeles Times

A federal court in Washington on Monday cleared the way for President Trump’s election commission to ask states to turn over personal voter information as part of its investigation into Trump’s claims about voter fraud in the 2016 presidential election. The U.S. District Court ruled against the Electronic Privacy Information Center, a public-interest research group that had sought a temporary restraining order to block the Presidential Advisory Commission on Election Integrity. The court rejected arguments that the commission’s request for certain voter data violated Americans’ privacy and that the commission did not follow constitutional proceedings. … The commission has been hit with a flurry of lawsuits since its vice chairman, Kansas Secretary of State Kris Kobach, sent a letter to state officials nationwide June 28 requesting voter information, including dates of birth, partial Social Security numbers and information about which elections voters participated in since 2006.

National: Beyond Russia: 5 Ways to Interfere in U.S. Elections—Without Breaking the Law | The Atlantic

Russia’s apparent interference in the U.S. presidential election is a big story, but it’s part of an even bigger one: the ease with which foreign actors can insert themselves into the democratic process these days, and the difficulty of determining how to minimize that meddling. Witness the disagreement in recent weeks among leaders of the U.S. Federal Election Commission. Democratic Commissioner Ellen Weintraub has urged the regulatory agency to plug the types of “legal or procedural holes” that enabled Russia to pose “an unprecedented threat to the very foundations of our American political community,” while her Republican colleagues have resisted her proposed fixes.

National: Trump intel chief: No agencies dispute Russian election meddling | The Hill

Director of National Intelligence Dan Coats said Friday that U.S. intelligence agencies uniformly believe the Kremlin meddled in the 2016 presidential campaign, despite President Trump’s earlier claim there was a misunderstanding between the agencies. “There is no dissent, and I have stated that publicly and I have stated that to the president,” Coats told NBC News’s Lester Holt at the Aspen Security Forum. Trump had previously claimed that only “three or four” U.S. intelligence agencies came to the conclusion that Russian meddled in the presidential race, however Coats said agencies, such as the Coast Guard and the Drug Enforcement Agency, do not focus on the subject of election meddling.

National: Bipartisan group agrees on Russia sanctions for meddling in election | The Guardian

Congressional Democrats announced on Saturday that a bipartisan group of House and Senate negotiators have reached an agreement on a sweeping package of sanctions to punish Russia for meddling in the presidential election and its military aggression in Ukraine and Syria. Steny Hoyer of Maryland, the number two House Democrat, said lawmakers had settled lingering issues with the bill, which also includes stiff economic penalties against Iran and North Korea. The sanctions targeting Russia, however, have drawn the most attention due to Donald Trump’s persistent push for warmer relations with Vladimir Putin and ongoing investigations into Russia’s interference in the 2016 campaign.

National: Trump’s Voter-Fraud Commission Has Its First Meeting | The Atlantic

Getting served with seven different lawsuits is probably a bad way to start any job. But that’s exactly what the members of President Trump’s  Presidential Advisory Commission on Election Integrity faced Wednesday, when the commission met in person for the first time. The latest of these lawsuits comes from the NAACP Legal Defense Fund, alleging among other things that with Trump’s creation of the commission by executive order in May, he “appointed a commission stacked with biased members to undertake an investigation into unfounded allegations of voter fraud.” The lawsuit also states that “the work of the Commission as described by its co-chairs are grounded on the false premise that Black and Latino voters are more likely to perpetrate voter fraud.” The LDF lawsuit finds in the new commission a veritable rogues gallery of voter suppression. The first defendant named is Trump himself, who has touted controversial—and false—claims of millions of fraudulent votes in the 2016 election. But much of the plaintiffs’ ire is directed towards vice chair Kris Kobach, the Kansas Secretary of State and the de facto leader of the commission. In his position in Kansas, Kobach has launched a one-of-a-kind effort to track down illegal noncitizen voters, an aggressive campaign that has challenged hundreds of votes and brought to court dozens of campaigns but has only secured one such conviction so far.

National: Trump’s voter commission now facing at least 7 federal suits | The Washington Post

The NAACP Legal Defense Fund on Tuesday filed a lawsuit in federal court alleging that President Donald Trump’s voting commission “was formed with the intent to discriminate against voters of color in violation of the Constitution.” “Statements by President Trump, his spokespersons and surrogates … as well as the work of the Commission as described by its co-chairs, are grounded on the false premise that Black and Latino voters are more likely to perpetrate voter fraud,” the suit alleges. As evidence, the suit points to Trump’s repeated unsubstantiated claims that millions of illegal immigrants voted in the 2016 election. Those claims were subsequently repeated by Vice President Mike Pence and Kansas Secretary of State Kris Kobach, now the chair and vice-chair of the Presidential Advisory Commission on Election Integrity, which Trump set up to investigate his unfounded claims.

National: Kelly: States ‘nuts’ if they don’t ask feds for election protection help | Politico

Homeland Security Secretary John Kelly said Wednesday that states that aren’t asking Washington for help in protecting their election systems from hackers are “nuts.” But while Kelly said he supported the Obama administration’s decision to designate U.S. election systems “critical infrastructure,” given threats from Russia and other entities, he also acknowledged that elections remain the domain of the states. “All of the input I get from all of the states are ‘We don’t want you involved in our election process,’” he said. “I think they’re nuts if they don’t [seek help. But] If they don’t want the help, they don’t have to ask.” Kelly spoke during the opening session of this year’s Aspen Security Forum; he’s one of several officials in President Donald Trump’s administration slated to speak at the gathering, which runs through Saturday.

National: This anti-voter-fraud program gets it wrong over 99 percent of the time. The GOP wants to take it nationwide. | The Washington Post

At the inaugural meeting of President Trump’s election integrity commission on Wednesday, commission Vice-Chairman Kris Kobach of Kansas praised a data collection program run by his state as a model for a national effort to root out voter fraud. States participating in the program, known as the Interstate Crosscheck System, send their voter registration files to Kansas. Kansas election authorities compare these files to those from other states. Each participating state receives back a list of their voter registrations that match the first name, last name and date of birth of a voter in another state. States may act upon the findings as they wish, although Crosscheck provides some guidelines for purging voter registrations from the rolls. In theory, the program is supposed to detect possible cases of people voting in multiple locations. But academics and states that use the program have found that its results are overrun with false positives, creating a high risk of disenfranchising legal voters. A statistical analysis of the program published earlier this year by researchers at Stanford, Harvard, University of Pennsylvania and Microsoft, for instance, found that Crosscheck “would eliminate about 200 registrations used to cast legitimate votes for every one registration used to cast a double vote.” Kobach’s championing of Crosscheck is one reason many voting rights advocates are concerned that President Trump’s voter fraud commission may be a vehicle for recommending mass voter purges.

National: The One Kernel of Truth at Trump’s Voter Fraud Summit | WIRED

The first meeting of the Trump administration’s new advisory committee on election integrity consisted mainly of voter-fraud fear-mongering. … Hans von Spakovsky, a committee member and senior legal fellow at the right-learning Heritage Foundation, pointed to his organization’s database of 1,071 documented cases of voter fraud over the last several decades, neglecting to mention that figure constitutes just .0008 percent of the people who voted in the 2016 election alone. Together, they painted a picture of a pervasive and insidious threat to free and fair elections, despite the mountains of research showing that actual voter fraud is scarce. But amid all the conjecture came one nugget of actual truth, offered by Judge Alan King of Jefferson County, Alabama. Not only did Judge King, one of the committee’s few Democrats, state that he’d never seen a single instance of voter fraud in all his years as head of elections in Jefferson County, he was also the lone member of the committee to use his opening remarks to raise the critically important issue of outdated voting technology. Unlike phantom zombie voters, that issue poses a real, and well-documented, threat to people’s voting rights.

National: Election Hacking: The Plan to Stop Vladimir Putin’s Plot | Time Magazine

Riverside County District Attorney Michael Hestrin was at his desk on June 7, 2016, when the calls started coming in. It was the day of the California presidential primary, and upset voters wanted the county’s top prosecutor to know that they had been prevented from casting their ballots. “There were people calling our office and filing complaints that they had tried to vote and that their registration had been changed unbeknownst to them,” says Hestrin. Soon there were more than 20 reports of trouble, and Hestrin, a 19-year veteran of the office and a graduate of Stanford Law School, dispatched investigators to county polling places to see what was going on. At first what they found was reassuring. Everyone who had been blocked from voting had been offered a provisional ballot, and most had cast their votes that way. But as the investigators dug deeper, things looked less innocuous. In the days after the vote, more people started coming forward to say they’d also had problems with their voter registration on primary day. In at least half a dozen cases, Hestrin and his investigators concluded, the changes had been made by hackers who had used private information, like Social Security or driver’s-license numbers, to access the central voter-registration database for the entire state of California. There the trail went cold.

National: Read the Previously Undisclosed Plan to Counter Russian Hacking on Election Day | Time.com

President Obama’s White House quietly produced a plan in October to counter a possible Election Day cyber attack that included extraordinary measures like sending armed federal law enforcement agents to polling places, mobilizing components of the military and launching counter-propaganda efforts. The 15-page plan, a copy of which was obtained by TIME, stipulates that “in almost all potential cases of malicious cyber activity impacting election infrastructure, state, local, tribal, and territorial governments” would have primary jurisdiction to respond. But in the case of a “signifcant incident” the White House had several “enhanced procedures” it was prepared to take. The plan allowed for the deployment of “armed federal law enforcement agents” to polling places if hackers managed to halt voting. It also foresaw the deployment of “Active and Reserve” military forces and members of the National Guard “upon a request from a federal agency and the direction of the Secretary of Defense or the President.”

National: Kris Kobach: ‘We may never know’ who won 2016 popular vote | USA Today

On the day of the first meeting of the Presidential Advisory Commission on Election Integrity, its vice chairman suggested Wednesday “we may never know” if Hillary Clinton won the popular vote in the 2016 election. During an interview with MSNBC, Kansas Secretary of State Kris Kobach was asked if he believed that Hillary Clinton won the popular vote. Kobach’s reply: “You know, we may never know the answer to that question.” Later in the interview, he repeated himself and emphasized that the commission would not be able to tell which way an ineligible vote was cast. “It’s impossible to know exactly, if you take out all the ineligible votes, what the final tally would be in that election,” he said. “You could obviously, based on the data, you could make some very educated guesses.” When asked if the votes that won Trump the election are also in doubt, Kobach replied, “Absolutely.”

National: Trump’s election integrity panel won’t probe Russian infiltration of state election systems | Portland Press Herald

President Trump’s controversial Election Integrity Commission won’t be probing Russian infiltration of state election systems after all. At the commission’s inaugural meeting Wednesday in Washington – which the president briefly attended to push his evidence-free theory that the 2016 election was tainted widespread voter fraud – Maine Secretary of State Matthew Dunlap raised the subject, but agreed with his colleagues to instead rely on any information a Senate probe into Russian interference in the election might provide. “The Senate Intelligence Committee will keep us apprised on what they find and we can work it into our report,” Dunlap told the Press Herald shortly after the meeting concluded. “We don’t have to do our separate investigations. I don’t think we are equipped to do that.” The substantive part of the meeting focused on what actions the commission should take now that most states have rejected its request for voter registration information, with commissioners brainstorming on what data the federal government already had in its possession and how it might be used to explore voter fraud concerns.

National: Trump stokes voter fraud fears as commission convenes | Politico

President Donald Trump put the power of the presidency behind one of his favorite theories on Wednesday, convening a panel to investigate voter fraud even though experts have largely dismissed his evidence-free claim that “millions” of illegal votes last year cost him the popular vote. Vice President Mike Pence, who leads the Presidential Advisory Commission on Election Integrity created by executive order in May, said at the group’s first meeting that its findings were not predetermined. But Trump himself has repeatedly declared, without evidence, that mass voter fraud took place during the 2016 election. And by Wednesday afternoon, the fraud theories became even more muddled when Kansas Secretary of State Kris Kobach, Trump’s hand-picked vice chair of the commission, indicated he had no way of knowing who actually won the 2016 election.

National: Shrugging off controversy, Trump’s voter-fraud panel seeks more personal data | The Boston Globe

Shrugging off complaints about whether it is even necessary, President Trump’s commission on voter fraud doubled down when it met for the first time on Wednesday and asked its staff to look into assembling vast new caches of information on individuals. The commission indicated it wants to collect information already held by the federal government and tasked the staff with getting the Department of Homeland Security to turn over data on people applying for citizenship, since they must check off a box indicating whether they have registered to vote. The panel also discussed seeking information on people who have attempted to get out of jury duty by claiming to be noncitizens. The reason: Jury lists come from voter rolls, so noncitizens shouldn’t be on the list to begin with. Most experts say voter fraud is extremely rare in the United States, and the commission has already come under heavy criticism for trying to scoop up personal data on voters in every state.

National: Despite criticism, 30 states intend to give voter information to Trump fraud commission | The Sacramento Bee

Despite criticism from most states about the Trump administration’s request for voters’ personal information, half have said they will deliver some or all of that data to the White House election commission. And that number could grow, President Donald Trump said on Wednesday, with more than 30 states turning over some information, including names, addresses and birth dates, to the group being run by Kansas Secretary of State Kris Kobach. “If any state does not want to share this information, one has to wonder what they’re worried about,” Trump said, questioning the motives of states that have not complied with requests for information. “ What are they worried about? There’s something. There always is.” Trump created the elections commission after claiming — without evidence — that millions of people had voted illegally and deprived him of a popular-vote victory. He has argued specifically that fraud denied him a win in three states: California, New Hampshire and Virginia. Independent groups and election officials said there was no evidence of either charge, but Kobach said Wednesday that the public would never know the true results of the election.

National: Activists urge voters to stay registered after fraud commission’s data request | Politico

Liberal activists are urging people to stay registered to vote after President Donald Trump’s new election integrity commission’s request for voter data spooked some Americans and caused them to cancel their registrations. Colorado got a burst of publicity after more than 3,700 residents canceled voter registrations, according to media reports. And while that’s a tiny percentage of total voters in the state, activists said it’s the wrong response to the federal government’s request for state voter information. “We don’t want people to be afraid of registering — not to do so is to play into the hands of the voter suppressors,” said Nathan Woodliff-Stanley, executive director of the American Civil Liberties Union in Colorado. “To the thousands of people who have deregistered: go reregister and bring two others.”

National: What could Trump’s fraud commission do with voter data? | PBS NewsHour

The Presidential Advisory Commission on Election Integrity met for the first time Wednesday, as President Donald Trump again pushed his unfounded claim that widespread voter fraud took place in the 2016 election. The voter fraud commission’s first formal meeting came three weeks after Kansas Secretary of State Kris Kobach — one of the panel’s vice chairmen, along with Vice President Mike Pence — penned a letter to all 50 states requesting that they turn over key voter information. So far, at least 24 states have said they’ll comply with the request, though there is no evidence of Mr. Trump’s claims that “millions” of people voted illegally last year and cost him the popular vote. Seventeen states and the District of Columbia have refused to comply with the request, which sparked a flurry of lawsuits from groups like the American Civil Liberties Union. At the meeting Wednesday, Trump suggested that the states that haven’t complied have something to hide. “What are they worried about? There’s something. There always is,” Trump said. As more states and advocacy groups wade into the debate, here is a closer look at the commission, how voter records are collected and stored across the country, and how the White House could potentially use the data to its advantage.

National: Trump Election Commission, Already Under Fire, Holds First Meeting | The New York Times

Since 2000, no fewer than three blue-ribbon commissions have been convened after contentious elections to examine what went wrong during the vote and how future elections might be improved. The one that assembles on Wednesday, in a rococo 19th-century office building just steps from the White House, bears no resemblance to any of them. For one thing, the Presidential Advisory Commission on Election Integrity, headed by Vice President Mike Pence, begins public life saddled with at least seven lawsuits challenging its conduct, its transparency and even its reason for being. Two more complaints have been filed with federal agencies against two of the commission’s 12 members. For another, a broad range of experts and ordinary citizens already has written off its legitimacy. They charge that it is less an inquiry into voting fraud and faith in honest elections — its stated purposes — than an effort to bolster President Trump’s baseless claim that illegally cast ballots robbed him of a popular vote victory in November. And they say such an inflated conclusion could give Republicans in Congress ammunition to enact federal legislation curbing the ability of minorities, the poor and other Democratic-leaning groups to register and cast ballots.

National: Judge denies injunction against Trump fraud panel | Politico

A federal judge has turned down an effort to force President Donald Trump’s controversial voter fraud commission to open its first official meeting to in-person, public attendance and to force disclosure of more records about the group’s work. U.S. District Court Judge Colleen Kollar-Kotelly said there wasn’t enough indication that the panel planned to defy a federal sunshine law, particularly after the commission published thousands of pages of information online and announced plans to make more data public in a timely fashion. Kollar-Kotelly’s ruling said there was no sign that the commission’s procedures were impeding public debate about its actions, particularly a hotly-debated request that states turn over public voter registration data for study by the panel.

National: Trump’s voter commission hasn’t even met — and it’s already off to a rough start | The Washington Post

A commission set to convene Wednesday to advise President Trump on “election integrity” includes the publisher of “Alien Invasion II,” a report on undocumented immigrants who mysteriously showed up on the voter rolls in Virginia. Another member is known for scanning obituaries in his West Virginia county to make sure dead people are promptly deleted from voter lists. Another championed some of the strictest voter identification laws in the country during her days in the Indiana legislature. And yet another warned nearly a decade ago of the “possibility for voter fraud on a scale never seen before in this country.” During his tenure as Ohio secretary of state, the Social Security numbers of 1.2 million state voters were accidentally posted on the agency’s website.

National: Trump Election Commission: A White House Team Will Handle Voter Data | BuzzFeed

Since President Trump’s Election Integrity Commission was last in court, the commission has announced plans to dramatically alter how it plans to collect state voter information in an attempt to avoid a potential legal ruling that could require it to conduct a privacy assessment before collecting the data. The plan, more or less, is to have a few people on the White House staff conduct all of the work of the commission in order to help maintain a legal argument that the “sole function” of the commission is to advise the president. The commission is chaired by Vice President Mike Pence. On Monday, Charles Christopher Herndon, the director of White House Information Technology, laid out how limited that would be in a declaration submitted in the case brought by the Electronic Privacy Information Center. “The Executive Committee for Information Technology will have no role in this data collection process. The U.S. Digital Service (which is within the Office of Management and Budget) will also have no role, nor will any federal agency,” Herndon wrote. “The only people who will assist are a limited number of my technical staff from the White House Office of Administration.”

National: Former Clinton and Romney campaign chiefs join forces to fight election hacking | The Washington Post

The former managers of Hillary Clinton and Mitt Romney’s presidential campaigns are leading a new initiative called “Defending Digital Democracy” in the hopes of preventing a repeat of Russia’s 2016 election interference. Robby Mook, Clinton’s 2016 campaign chief, and Matt Rhoades, who managed the 2012 run of GOP nominee Romney, are heading up the project at the Harvard Kennedy School’s Belfer Center for Science and International Affairs in one of the first major efforts outside government to grapple with 21st century hacking and propaganda operations — and ways to deter them. “The Russian influence campaign was one of the most significant national security events in the last decade, and it’s a near-certainty that all the other bad guys saw that and will try to do something similar in the United States in 2018 and 2020,” said Eric Rosenbach, co-director of the Belfer Center, which launches the initiative Tuesday.

National: 15 States Use Easily Hackable Voting Machines | HuffPost

In 2006, Princeton computer science professor Edward Felten received an anonymous message offering him a Diebold AccuVote TS, one of the most widely used touch-screen voting machines at the time. Manufacturers like Diebold touted the touch-screens, known as direct-recording electronic (DRE) machines, as secure and more convenient than their paper-based predecessors. Computer experts were skeptical, since any computer can be vulnerable to viruses and malware, but it was hard to get ahold of a touch-screen voting machine to test it. The manufacturers were so secretive about how the technology worked that they often required election officials to sign non-disclosure agreements preventing them from bringing in outside experts who could assess the machines. Felten was intrigued enough that he sent his 25-year-old computer science graduate student, Alex Halderman, on a mission to retrieve the AccuVote TS from a trenchcoat-clad man in an alleyway near New York’s Times Square. Felten’s team then spent the summer working in secrecy in an unmarked room in the basement of a building to reverse-engineer the machine. In September 2006, they published a research paper and an accompanying video detailing how they could spread malicious code to the AccuVote TS to change the record of the votes to produce whatever outcome the code writers desired. And the code could spread from one machine to another like a virus.