State law enforcement officials served a search warrant Monday morning in the investigation of two men accused of hacking the Lee County supervisor of elections website. “There was an attempted hacking of the website, but this is an ongoing investigation,” said Vicki Collins, spokeswoman for the Lee County Supervisor of Elections. “The info they accessed was an old server with no (useful) information on it … Nobody is compromised.” Dan Sinclair is running for supervisor position against the incumbent Supervisor of Elections Sharon Harrington. He appeared in a video of the hacking posted to YouTube with David Levin, CEO of Vanguard Cybersecurity, walking through how Levin hacked into the Lee elections website a couple of weeks ago.Full Article: Lee elections website hacking involves elections supervisor candidate.
An unprecedented hack attack to which the Central Election Commission of Bulgaria and several ministries were exposed on local elections day last week will not affect voting results, officials say. On Sunday, as Bulgarians were casting ballots in local and municipal elections and in a national referendum on e-voting, the so-called “distributed denial-of-service” (DDoS) attack hit the commission’s website which provided updates on voter turnout. The incident began just hours into the election, with over 65 000 000 simultaneous sessions targeting the website. That would be equal to an attempt by 65 000 000 users to access the website at the same time, while Bulgaria’s population numbers just 7.2 million.Full Article: Huge Hack Attack on Bulgaria Election Authorities 'Not to Affect Vote Count' - Novinite.com - Sofia News Agency.
As voting day unfolded, there were various controversies in Bulgaria’s October 25 2015 municipal elections and national referendum on whether to introduce online voting. After many complaints, the Central Election Commission said that it had instrructed polling stations to issue voters with ballots for the referendum as well as for the local elections. Posts on social networks and media reports said that there were cases where voters were either not given ballot papers for the referendum or were asked whether or not they wanted one. Another major concern was a delay in announcing up-to-date figures on voter turnout, which according to the Central Election Commission was because of its website being brought down by the weight of traffic as municipal election commissions reported these figures.Full Article: Controversies in Bulgaria’s 2015 local elections, referendum | The Sofia Globe.
New Zealand: Wellington opts into online election despite Ashley Madison-style hack warnings | The Dominion Post
Wellington has been warned it faces an Ashley Madison-style election hack as it opts for online voting for 2016. In a split vote, councillors have agreed to join a trial of online voting for next year’s election – despite warnings from IT experts about potential security risks with e-voting. At Wednesday’s extraordinary full council meeting, software developer Nigel McNie said online voting opened up the process to “massive risk”. “Hacking is a risk. Consider the Ashley Madison hack, which I’m sure most of you have heard of.” He said “one small hole” in the adultery hookup site led to its hack, and eventual destruction. In July, it was revealed about 36 million members globally had their details leaked in the 9.7-gigabyte data dump on the dark web.Full Article: Wellington opts into online election despite Ashley Madison-style hack warnings | Stuff.co.nz.
Hackers in California attacked several of the Russian government’s websites over the weekend, Russian officials said on Monday, just as the country was trying to conduct elections. “Someone attempted to hack our website and alter the data there, making 50,000 requests per minute,” said Vladimir Churov, chairman of the Central Election Commission of Russia, according to a report in the state-funded Russia Today. Such an attack is known as a distributed denial of service, which is designed to crash a website.Full Article: California hackers attack Kremlin, Putin's website | Washington Examiner.
Fears of voter fraud and security breaches have led the Christchurch City Council to ditch plans to participate in an online voting trial. The council had provisionally registered its interest in being part of an online voting trial the Government is proposing to run at next year’s local body elections, but councillors on Thursday decided they wanted no part of it. Their decision followed a deputation from a group of IT experts who told them the security risks with online voting were too high and could open the election up to fraud. … Group spokesman Jonathan Hunt, who has more than 25 years experience in the IT field, said online voting brought inherent risks compared with postal voting, such as hacking and phishing, and the risks to democracy were too great to attempt it. Overseas experiences with online voting had generally been disastrous and many of the countries that had trialled it had subsequently abandoned it. “Secure online voting is a tantalising mirage,” said Hunt.Full Article: Security fears end plans for online voting trial in Christchurch | Stuff.co.nz.
A proposal for 10 local authorities to move to online voting at next year’s elections is seriously flawed, an IT expert says. Five councils have already signed up to the trial, with a further five, including Christchurch, Wellington and Hamilton, yet to decide. Local body elections are currently carried out via postal voting. Local Government New Zealand, which proposed the trial, said online voting would future-proof elections from the eventual demise of postal services. President Lawrence Yule said an increasing number of activities were carried out safely online and there was no reason why voting should not be as well. “If we took the worry about fraud or hacking to its logical extreme, then nobody would use online banking for instance, and people do by their millions. So I think it’s a matter of balancing up the risks and the benefits of this.” An IT expert, who has previously advised the Government on security problems with online voting, said the trial carried a lot of risk in return for very few benefits. Dave Lane said there was currently no way to guarantee an online voting system would be safe from a hacking attack. “It is possible, for a trivial amount of money … to engage sufficient computing resources internationally to completely knock over any online or electronic voting system we have, just for fun.”Full Article: Online voting proposal 'seriously flawed' | Radio New Zealand News.
A recent government decision to deny nine cantons the ability to offer e-voting for the upcoming federal elections has come under fire. Critics say it threatens the broader use of electronic voting in the future. In a press release last month, the government said an audit of the electronic voting system developed by American company Unisys revealed major security flaws in the protection of voting secrecy. The machine was proposed by a consortium of nine cantons to be used in the upcoming elections. The government’s decision means that despite significant progress in introducing e-voting to Switzerland in recent years, just four of 13 cantons that applied to offer e-voting during the October parliamentary elections have been authorised to do so. Critics of the decision say that a large majority of the 142,000 Swiss abroad registered to vote will now not be able to do so by electronic means. “The government’s decision is not only incomprehensible, but it is also likely to call into question the people’s confidence in the credibility of e-voting,” says Peter Grünenfelder, chancellor of Aargau and president of the consortium of nine cantons based in the Zurich region that were refused access to electronic voting. Grünenfelder believes that by rejecting the use of the American-developed technology, the government is hoping to support publicly developed e-voting systems, such as the one used by Geneva, rather than private ones. However, government spokesman André Simonazzi rejects this hypothesis and says the cantons have had 18 months to ensure the electronic voting system met the required security conditions. “In the area of protecting voting secrecy in particular, some serious deficiencies were noted,” Simonazzi said. “In the case of a cyber-attack, hackers would have been able to reveal the electors’ vote, which is not tolerable in a democracy.”Full Article: Hacking fears jeopardise e-voting rollout - SWI swissinfo.ch.
What if a foreign head of state had the power to handpick our next President? It sounds like the plot of a movie, but it actually might be in the realm of possibility.Most people take our elections for granted. The few who don’t often suspect that one party might be trying to steal votes from the other. But they don’t envision that the theft could be coming from outside US borders.What experts are telling us, though, is that our voting machines are so insecure that all elections, whether at the national, state, or local level, are vulnerable to being attacked by hackers in other countries. … Given that the security at some of our most protected institutions can be breached, and given that US elections pose an enticing target for our adversaries, what would prevent a foreign agent from hacking our ballot boxes? The answer: Not much. Experts indicate that the election systems in place today do not provide the adequate protection that would be able to stop a foreign hacker — a hacker anywhere, in fact — from rigging our races. Even worse, these attacks could go undetected.Full Article: Foreigners Could Hack US Elections, Experts Say - WhoWhatWhy.
Could hackers swing a U.S. election? With the 2016 presidential race already well underway, it’s time for us to take cyber threats to our electoral process much more seriously. Over the years, a number of security researchers, ‘ethical hackers’ and government agencies have warned about the risks, but little has been done to prevent these attacks. Hacking just a few electoral districts could allow an attacker to swing an election in a close race. The U.S. has had close elections multiple times in the past. In 1960, John F. Kennedy squeaked out a victory over Richard Nixon by just 0.1%. In the 2000 presidential election, the decision came down to just a few votes in Florida. In the end, the Supreme Court had to determine the winner.Full Article: Top Six Ways Hackers Could Disrupt an Election | Michael Gregg.
Editorials: Bruce Schneier movie-plot threat contest: Winning entry imagines online voting gone wrong. | Slate
Imagine this: It’s the morning of Election Day, 2020. Americans across the country cast secure, encrypted votes from their smartphones and laptops, electronically choosing their president for the first time in history. Turnout reaches record highs. Live results online show that it’s a close race between the two leading candidates. But by early afternoon, an independent candidate—a sketchy figure with ties to multiple terrorist organizations and no public support whatsoever—mysteriously takes the lead. At 4 p.m., he officially wins the election. The American people rise up in protest: Clearly, hacking, bribery, or other nefarious activity has taken place. However, because the voting software is designed with end-to-end encryption to ensure anonymity, no audit or recount is possible. America’s next president is a terrorist. This is the hypothetical scenario that won Bruce Schneier’s annual online “movie-plot threat” contest by popular vote this past weekend.Full Article: Bruce Schneier movie-plot threat contest: Winning entry imagines online voting gone wrong..
National: Weak Internet Security Leaves U.S. Elections Agency Vulnerable to Hackers, Reports Find | Wall Street Journal
Weak Internet-security measures at the Federal Election Commission could impair the agency’s ability to carry out one of its primary missions: making information about who is funding U.S. elections available to the public. The FEC hasn’t implemented improvements that were recommended after a series of attacks on its website—including at least one successful hack—leaving it vulnerable to future breaches, according to three previously unreported internal reports. It took the agency weeks to get its campaign-finance disclosure system fully back up to speed after an attack by hackers in China disrupted its operation during the October 2013 government shutdown, when all of the agency’s 335 employees had been furloughed.Full Article: Weak Internet Security Leaves U.S. Elections Agency Vulnerable to Hackers, Reports Find - WSJ.
Editorials: As Utah’s GOP looks to an Internet presidential primary in 2016, be cautious, inclusive in adopting online voting | Richard Davis/Deseret News
The world of politics is changing dramatically. A few years ago, the notion of voting online was a dream. Now, it is becoming a reality. Universities are holding student elections online. Corporations are now using online voting to conduct shareholder meetings. In a few nations such as Canada, Estonia and Switzerland, online voting conducted by governments in official elections is becoming routine. Online voting is not common in the United States. The Reform Party selected its presidential candidate through online voting in 1996. The Democratic Party in Arizona held an online primary election in 2000. Some states have experimented with online voting for military personnel overseas. Those are rare exceptions. Why is online voting still a distant prospect? Security! Experiments of online voting systems have found them susceptible to hacking, which has made governments cautious about using them to determine electoral outcomes.Full Article: Richard Davis: As Utah's GOP looks to an Internet presidential primary in 2016, be cautious, inclusive in adopting online voting | Deseret News.
People can shop, date and bank online. How feasible would it be to allow internet voting at the general election? Imagine democracy had just been invented. Would the UK government decide to set up 50,000 polling stations on Thursday 7 May? Or would the vote be taking place online instead? Until the 1870s those people allowed to vote did so openly with no privacy. The 1872 Ballot Act changed this with the invention of the “modern” polling station – the church hall with its wooden booths, a pencil on string and piles of ballot papers handed out by earnest election workers. Since then the way we vote has hardly changed. Today people shop, find a partner and bank online. Surely voting online is possible? The government says not. In January, Sam Gyimah, the constitution minister, told the House of Commons: “I feel [that] moving to electronic voting would be a huge task for any government. We can’t be under any illusion that this would be easy to achieve.” Remote voting was “incredibly rare” around the world and would require a “very robust and secure” system, Gyimah said.Full Article: Election 2015: How feasible would it be to introduce online voting? - BBC News.
Mayor Len Brown wants the Government to rethink its ban on Auckland taking part in the online voting trial at the 2016 local body elections. Auckland has been excluded at this stage because, with 1,050,000 electors, the bureaucrats are worried about their ability “to mitigate any risk”. Auckland Council sees online voting as part of its campaign to lift voter turnout to “at least” the 2013 national average of around 40 per cent at next year’s poll. In 2013, only 34 per cent of enrolled Auckland voters bothered. … In the aftermath of the 2013 low turnout, Local Government Minister Chris Tremain announced plans to fast-track trials of online voting. Last December, the Cabinet agreed to a limited number of local authorities trialling it in 2016. But not Auckland. Their fears about risk seem well placed.Full Article: Brian Rudman: Online voting is not the answer - National - NZ Herald News.
The Supreme Court of India has directed the Government of India to enable e-voting facility for the Indians living abroad. This historical decision will let the NRIs to vote online making things better for the Electorate. Earlier, NRIs used to fly back home to cast their vote during elections but now they can vote for their favourite candidate with a click of a mouse. The Election Commission had earlier recommended e-ballot voting for Indian passport holders abroad. The Government had given voting rights to the NRIs in 2010, but as per the rule – the voter has to be present in their constituency on the day of voting. But with this things might change for better. The Central Government had told the Supreme Court that the EC’s recommendation to extend voting rights to NRIs through postal ballots have been accepted in letter and spirit. Taking note of the submissions, a bench comprising Chief Justice HL Dattu and AK Sikri asked the Government to inform it about “further steps taken to implement the suggestions.”Full Article: E-voting for NRIs - Estonian experience and Concerns.
Australians won’t have the chance to vote electronically any time soon, after a parliamentary committee put the idea on ice. Beloved of netizens for at least 20 years, ‘net voting – as distinct from other ways in which IT&T change our electoral processes – was pitched to the committee on the basis that people “would rather be online than in line” (as the committee’s chair Tony Smith writes in the introduction). However, there’s no chance that with only two years remaining before the next federal election, a suitable system could be selected and rolled out, the Joint Parliamentary Committee on Electoral Matters says in the report posted here. Not only would the logistics be catastrophic, the report states: there’s no way to verify that someone voting over the Internet doesn’t have someone else standing over them, and the lack of privacy “opens up a market” for votes to be bought. The report notes that “technological convenience must be balanced against electoral integrity”. The report also makes the inevitable nod towards the risk of hacking.Full Article: E-vote won't happen for next Oz election • The Register.
Computer hackers have attacked the website of Poland’s electoral commission, which is still unable to publish full returns from local elections because of an unrelated computer glitch, officials said Wednesday. The State Electoral Commission said while the website hacking incident didn’t add further difficulties to the vote counting process, it ordered its officials to change their passwords. The problems have undermined the credibility of Sunday’s vote, which has been seen as a test of strength for new Prime Minister Ewa Kopacz before next year’s general election.Full Article: Polish election commission website hacked.
Here’s a view of the super storm Sandy disruption you may not have heard about — a new step in Garden State voting some think was a big failure. After Sandy, Lieutenant Gov. Kim Guadagno in her dual role as secretary of state told county clerks she issued an emergency order granting any registered voter displaced by Sandy to ability to cast votes via email or fax. Journalist Steve Friess writes the Constitutional Rights Clinic at Rutgers Law School-Newark spent the past 18 months following a public document trail to show how that went. The team was led by law professor Penny Venetis. “There was mass confusion among county officials and voters alike,”‘ the 83-page report, called “The Perfect Storm: Voting in New Jersey in the Wake of Superstorm Sandy,” said.Full Article: Report says emergency voting after Sandy not a success as claimed.
On the eve of Brazil’s presidential election, the Superior Electoral Court has dismissed reports that the country’s electronic voting system is vulnerable to hacking. The court’s president, Jose Dias Toffoli, has acknowledged that hackers make frequent attempts to break into the electronic ballots. But the system was “safe and fraud-proof”, Mr Toffoli said. More than 142 million Brazilians will go to the polls on Sunday. … O Globo newspaper has reported that the voting machines were the target of 200,000 cyber attacks per second two weeks ago.Full Article: BBC News - Brazil court dismisses hacker threat at presidential vote.