Virginia: Legislation would allow deployed troops to email vote | The Virginian-Pilot

Virginia’s General Assembly – especially the Republican-controlled House of Delegates – has been slow to embrace the idea of electronic voting. But it appears a small window may be opening up for one class of citizens to vote by email: military service members who are deployed overseas. Under current law, they must follow the same procedure as anyone else who is absent on Election Day: Obtain an absentee ballot, fill it out and send it in by snail mail. That can be difficult, if not impossible, for service members in active combat zones.

National: Congress, FEC meet about security breakdowns | Center for Public Integrity

Federal Election Commission staff today traveled to Capitol Hill and briefed congressional officials investigating the beleaguered agency on how it intends to address recent computer security and staffing problems, officials from both government bodies confirmed. The FEC’s contingent was led by Alec Palmer, who doubles as the agency’s staff and information technology director. It wasn’t immediately clear how many congressional officials participated in the meetings, although a spokesman for Rep. Robert Brady, D-Pa., confirmed to the Center for Public Integrity that his office participated. Brady, along with Rep. John Mica, R-Fla., last week called for separate inquiries into the FEC’s recent woes, which include an October infiltrationinto its computer systems by Chinese hackers. Brady is the ranking member on the Committee on House Administration, which has FEC oversight powers.

National: Hacking attempt draws congressional investigation of FEC | Center for Public Integrity

Two congressional leaders — one Republican and one Democrat — are calling for investigations into Federal Election Commission computer security and operational breakdowns that the Center for Public Integrity detailed in a recent report. The report revealed that Chinese hackers crashed the FEC’s computer information technology systems in October just as the federal government shut down, and that the agency is suffering from chronic staffing shortages. A subsequent audit the FEC commissioned revealed a variety of other security issues. “The revelations that FEC IT systems were compromised raises serious concerns,” said Rep. John Mica, R-Fla., chairman of the House Government Operations Subcommittee which oversees federal IT matters. “I am working with my staff and the staff of the full House Oversight and Government Reform Committee to investigate the extent of the breaches, and I intend to conduct a full and thorough review of the vulnerabilities of FEC systems which should raise concerns for all federal elected officials.”

National: Federal Election Commission Faces Serious Security Failings, with Few Plans to Remedy | Infosecurity

Just weeks after the US Department of Energy was shown to have disregarded proper cybersecurity measures, the Federal Election Commission (FEC) is facing what an independent auditor calls “significant deficiencies” when it comes to its cybersecurity posture. The FEC in fact remained at “high risk for future network intrusions”. However, the electoral watchdog said that it has little interest in implementing even minimum IT security controls. The audit firm, Leon Snead & Co., said in the audit that the FEC’s IT security program does not meet government-wide best practice minimum requirements in many areas. That includes carrying out due diligence information as part of an organization-wide risk management program, using the risk management tools and techniques to implement and maintain modern safeguards and countermeasures, and ensuring the necessary resilience to support ongoing federal responsibilities, critical infrastructure applications and continuity of government in the event of an attack.

National: Federal Election Commission still in ‘significant’ danger of hacking | Center for Public Integrity

The Federal Election Commission’s computer and IT security continues to suffer from “significant deficiencies,” and the agency remains at “high risk,” according to a new audit of the agency’s operations. “FEC’s information and information systems have serious internal control vulnerabilities and have been penetrated at the highest levels of the agency, while FEC continues to remain at high risk for future network intrusions,” independent auditor Leon Snead & Company of Rockville, Md., writes. The audit, released today, comes less than two weeks after a Center for Public Integrity investigation that revealed Chinese hackers infiltrated the FEC’s IT systems during the initial days of October’s government shutdown — an incursion that the agency’s new leadership has vowed to swiftly address. The Chinese hacking attack is believed by FEC leaders and Department of Homeland Security officials to be the most serious act of sabotage in the agency’s 38-year history.

National: Massive Chinese Hacking Attack on FEC Computers Exposes Deep Agency Dysfunction | AllGov

Few Americans would argue that the “D” in Washington, DC, might well stand for “dysfunction”—but it’s especially true when it comes to one government agency in particular: the Federal Election Commission (FEC). The FEC has been something of a mess for quite some time, due to partisan infighting among its commissioners and lack of help from Congress or the White House. There are six commissioners and no more than three can be from the same party. But things took a turn for the truly ugly during the government shutdown in October, when Chinese hackers took advantage of federal employees being furloughed, leaving no one around at the FEC to mind its computer network. Indeed, every one of its 339 employees had been sent home. The cyber-attack—possibly the worst act of sabotage in its four-decade history—reportedly crippled the commission’s systems that inform the public about the billions of dollars raised and spent each election cycle by candidates, parties and political action committees.

Editorials: How Washington starves its election watchdog | Center for Public Integrity

Just after the federal government shut down Oct. 1, and one of the government’s more dysfunctional agencies stopped functioning altogether, Chinese hackers picked their moment to attack. They waylaid the Federal Election Commission’s networks. They crashed computer systems that publicly disclose how billions of dollars are raised and spent each election cycle by candidates, parties and political action committees. As minutes turned to hours, the FEC found itself largely defenseless against what may be the worst act of sabotage in its 38-year history. The government had furloughed all 339 agency employees, save for the presidentially appointed commissioners, and not even one staffer had been deemed “necessary to the prevention of imminent threats” to federal property, the minimum measure for keeping someone on the job.

Editorials: Digital voting is a game changer but we have to get it right | The Conversation

The UK may be taking its first, tentative steps towards introducing online voting with the establishment of a Commission on Digital Democracy. As so many of our routine tasks are going digital, the shift towards virtual polls seems like a natural progression. However, there are many technical issues that need to be ironed out and the stakes are very high. John Bercow, Speaker in the UK House of Commons, established the commission with a view to looking at how technology can be used to aid the democratic working of parliament, including online voting. This team would do well to take a look at what has, and has not, worked elsewhere around the world. Electronic voting can take a number of forms, including tallying votes by computer, using electronic equipment in polling stations and voting over the internet from the voter’s own computer or mobile device. Voting by phone is already used in entertainment shows, though multiple voting is possible and result-fixing has been known to happen. Internet voting is also carried out for professional societies, student unions and other forms of election. It works well when cost and desire to increase turnout are important factors and where the likelihood of an attack on the election is considered to be low. If we were to start using e-voting systems for electing political representatives, we’d need to be absolutely sure of their trustworthiness. Computer systems, including e-voting systems, can go wrong accidentally through software bugs, they can be hacked, and they can be subverted by corrupt insiders. Systems used in elections have been the subject of criticism for all these reasons, resulting in some cases from their withdrawal.

Australia: The tech behind Western Australia’s senate recount | iTnews.com.au

For more than 95 percent of Australians, the daunting task of voting below the line in a federal senate election is too much to ask, especially for a Saturday morning. So it will come as no surprise that during the upcoming WA senate recount, as with every senate tally since 2001, the Australian Electoral Commission (AEC) will call upon some electronic assistance to calculate the complex system of preferences and trickle-down the redistributions that decide the seating pattern in the nation’s upper house. While Greens communications spokesman Scott Ludlam waits to hear whether he has won back his seat, electoral officials will be feeding ballot data into a limited network of computers running its EasyCount tally system. “The system takes the entered information for each of the votes cast in a Senate election, performs the distribution of preferences, and indicates which candidates have been elected,” an AEC spokesman explained to iTnews.

Australia: Electoral chief cautious about online voting | Sydney Morning Herald

The replacement of paper-and-pencil voting with an electronic system could see Australians lose confidence in the poll results, the electoral chief has warned. Australian Electoral Commissioner Ed Killesteyn defended the system’s reliability following attacks from election hopeful Clive Palmer, who portrayed himself as a victim of ”rigged” results and the AEC as a military-infiltrated ”national disgrace”. Despite the conspiracy claims, Mr Palmer extended his lead over his Liberal National Party rival to 111 votes on Friday, with the final counting of outstanding votes in the Sunshine Coast seat of Fairfax expected on Saturday. The Palmer United Party founder and wealthy Queensland businessman reacted angrily to the discovery of 750 votes tallied against the wrong pre-poll location mid-way through the count. In an earlier mistake, officials noticed 1000 votes for Victorian independent Cathy McGowan had not been recorded correctly, pushing the seat of Indi further out of reach of former Coalition frontbencher Sophie Mirabella, who subsequently conceded defeat this week. Mr Killesteyn said computer-based voting would eliminate these kinds of ”human errors” but the benefits would have to be weighed against hacking and manipulation fears.

Editorials: Electronic voting is the wrong answer to the right question | Chris Duckett/ZDNet

It’s nice to see that Australia’s new digital minister is looking to technology to solve the issues plaguing the nation, but moving towards a system of electronic voting is a needless and expensive solution to a problem in process. On ABC News Breakfast this morning, Malcolm Turnbull floated the idea of electronic voting machines to reduce the number of informal votes cast at last weekend’s election. “About 6 percent of Australians voted informally in the House of Representatives,” Turnbull said. “The overwhelming majority of them, what scrutineers have told me over the years is 90 percent plus, have voted informal either because they have just marked ‘1’ against a candidate who they favour and not filled in the other boxes, or they have filled in the other boxes incorrectly. “I think this is a very big issue, and one of the ways that can be dealt with is if we consider electronic voting.” Oh, dear. For a man who Prime Minister-Elect Abbott claimed “virtually invented the internet” in Australia, I would have expected a longer memory on the issue of electronic voting.

Zimbabwe: Zimbabwe election hit by hacking and DDoS attacks | The Inquirer

Human rightts organizations in Zimbabwe were hit by cyber attacks during and after the African country’s election last Thursday, leading to suspicions of government suppression of election monitoring. Techweek Europe reported the attacks on Tuesday, saying that some were obviously targeted while other disruptions might have been merely collateral damage. Following the election, hosting providers in the country were hit by two sophisticated distributed denial of service (DDoS) attacks over the weekend that took many websites that had been reporting voting results offline. Apparently the organisations hit included Fair Trade Africa, Privacy International and the Zimbabwe Human Rights Forum, which also told Techweek Europe that it suspected it had been targeted by a hacking attack earlier last week.

Iran: Gmail users targeted in pre-election hacking campaign | Reuters

Tens of thousands of Gmail accounts belonging to Iranian users have been targeted in an extensive hacking campaign in the weeks leading up to the country’s closely watched presidential elections on Friday, Google Inc said on Wednesday. The U.S. Internet company, which described the attacks as broad “email-based phishing” attempts seeking to trick unsuspecting Gmail users into giving up their user names and passwords, said they originated in Iran and appeared to be “politically motivated in connection with the Iranian presidential election on Friday.”

California: Path toward online voting stymied by fear of hacking | California Forward

While we can do just about everything on the Internet these days, like buy groceries, pay bills, and most importantly, waste hours watching cat videos, we can’t yet cast a ballot online. But the idea of e-Voting, as it’s called, isn’t so far-fetched. Eight years ago the small Baltic country of Estonia became the first country in the world to allow voters to cast ballots over the Internet, and it has actually worked rather well. After the successful launch of online voter registration last year, which allowed roughly 600,000 Californians to register online in the final 45 days before the 2012 election, electronic voting would seem like the logical next step. Furthermore, it’s reasonable to believe that California, home to Silicon Valley and birthplace of the Internet revolution, would lead the charge toward cyberspace voting. Don’t rush out and buy an iPad just yet; it’s unlikely that you’ll be voting for president, governor, or mayor on one anytime soon. In fact, voting security experts like Pamela Smith, president of Verified Voting Foundation, a nonpartisan nonprofit dedicated to safeguarding elections in the digital age, hope to slow any expansion to Internet voting, for now anyway. Smith warns that online voting is a “dangerous idea” as there is currently no way to guarantee the security, integrity, and privacy of ballots cast over the Internet.

Ecuador: Once a hacker Kevin Mitnick Now Helps Secure Ecuador Presidential Elections | ParityNews.com

Kevin Mitnick, who was one of the most wanted computer hacker in the US at one time, is now heading a security consultancy firm – Mitnick Security Consulting, and is entrusted with the task of securing Sunday’s presidential elections in Ecuador. Sunday may very well see Rafael Correa win the presidential elections in Ecuador provided nothing goes wrong and Mitnick does the job perfectly which has been assigned to him. Mitnick tweeted, “18 years ago I was busted for hacking. I do the same thing today but with full authorization. How cool is that?” Mitnick has been assigned to protect the Net Lock computer system that has been assigned the task of tabulating Ecuador’s elections.

Canada: Airdrie council OK’s online voting system | Calgary Herald

Airdrie city council has approved an online voting system for the upcoming election in October. After the city’s success using an online census in 2010, manager of legislative services for Airdrie, Sharon Polyck, introduced the proposal for online voting last month in hopes the system would provide Airdronians with an alternative voting option. “It provides that convenience to residents and I think with the way things are going here with technology it’s important to our residents,” she said. Edmonton, Strathcona County and St. Albert were all part of the same pilot program as Airdrie, although Airdrie officials decided not to participate in the testing phase. Edmonton’s city council on Wednesday voted against using the online voting system this fall due to concerns such as hacking and voter fraud. But security was not as big an issue for Airdrie officials.

National: E-Voting Snafu Pushes Back Oscar Nomination Deadline | Wired.com

This year, Oscar voters are getting a deadline extension, giving members an extra day to vote on the nominees for this year’s Academy Awards after technical issues plagued the first attempt by The Academy of Motion Picture Arts and Sciences to allow online voting. The Academy announced in early 2012 that it would be making e-voting available to members, and as is often then case in the move from analog to digital, the transition to the new voting platform hasn’t been without hiccups. In a recent Hollywood Reporter analysis, many Academy voters complained of issues with logging in to the voting site — something an Academy representative attributed to voters “forgetting or misusing passwords”  – difficulty navigating the site once they were logged in, and even the potential for hackers to infiltrate the website and influence the vote.

Maryland: The perils of online voter registration | Washington Post

The Post’s Aaron Davis reports on a group of technology experts who warned Maryland elections officials last month that the state’s online voter registration system is vulnerable to mischief. Among other things, they warned that wrongdoers with as little as a voter’s full name and birth date could change his or her address or party affiliation. Maryland officials responded that they believed such hacking would be highly unlikely, but the warnings should give some pause to D.C. Council member Tommy Wells (D-Ward 6), who wants to allow D.C. residents to register to vote or change their registration data online. (Currently, you can go to the Board of Elections Web site and create a pre-filled form, but you still have to print it out, put it in a stamped envelope and drop it in the mail.)

National: Does Your Vote Count? | CBS Miami

Ion Sancho is a man on a mission.  Just weeks from the presidential election, one of the most veteran election supervisors in the state of Florida, thinks there’s plenty for him and his colleagues to lose sleep over. What keeps him awake at night?  Whether you can trust the machine you will be voting on. “We still have not secured the process to ensure that that machine has read that ballot correctly and it is 100 percent accurate. Because it is wrong to assume that the machines are always right. They’re not, ” Sancho tells CBS4  Chief Investigator Michele Gillen. “I think the citizens should be screaming from the rooftops,” he punctuates with the candor and directness he is known for. For many voters Sancho’s words hold weight. He was the first elections supervisor in America to dare a “look under the hood” of a voting machine, to see if the machines were recording votes properly and if they could be hacked. ” I sanctioned the first investigation of a voting system without the vendor’s authorization,” Sancho recalls.

National: Electronic voting’s the real threat to elections | USAToday.com

Imagine how easy voting would be if Americans could cast ballots the same way they buy songs from iTunes or punch in a PIN code to check out at the grocery store: You could click on a candidate from a home computer or use a touch screen device at the local polling place. It’s not entirely a fantasy. In many states, some voters can already do both. The process is seductively simple, but it’s also shockingly vulnerable to problems from software failure to malicious hacking. While state lawmakers burn enormous energy in a partisan fight over in-person vote fraud, which is virtually nonexistent, they’re largely ignoring far likelier ways votes can be lost, stolen or changed. How? Sometimes, technology or the humans running it simply fail.

National: Decade-Old E-Voting ‘Wars’ Continue into Presidential Election | Wall Street Journal

A decade after Dana Debeauvoir helped change Travis County, Texas to an all-electronic voting system she still expects to be falsely accused of fixing the coming election, just as she had in the last two presidential races. The clerk, who has administered voting for 25 years in the county that includes Austin, says the public has remained mistrustful of the ballot system, where voters pick candidates directly from a computer screen, without marking a piece of paper. “There have been so many hard feelings,” says Debeauvoir. “You get people saying ‘I know you have been flipping votes.’” In the wake of the hanging chad controversy surrounding the 2000 presidential elections, the federal government encouraged election administrators across the country to switch to electronic systems and mandated upgrades to many election procedures. As they prepare for the presidential elections, those officials now find themselves at the center of a continuing debate over whether paperless direct-record electronic (DRE) balloting can be trusted – what Debeauvoir calls the “DRE wars.”

Florida: Brevard County FL Clerk’s campaign aide seeks recount, suspects hacking | floridatoday.com

Sean Campbell, the chief deputy to Clerk of Courts Mitch Needelman, said he has suspicions about the results of the primary election last week that ousted his boss and want the Supervisor of Elections Office to check into it. Former Clerk Scott Ellis won that election, getting 61 percent of the vote to Needelman’s 39 percent. Campbell said he fears that the vote-counting system may have been hacked, either from within the Supervisor of Elections Office or from the outside, and the results reported were not the actual vote totals. He wants election officials to hand-count ballots from three randomly selected precincts to double-check the accuracy of the reported totals. “I’m not accusing anybody,” Campbell said. “I’m just concerned. If the results are what they are, well, OK.”

Canada: Credibility of democracy put at risk by online voting | Vancouver Sun

Chief electoral officer Keith Archer has announced the formation of a panel of experts to investigate whether British Columbia should adopt Internet voting. Let’s hope the panel focuses on the big picture before getting bogged down with technical details. Our democracy is built on the assurance of a secret ballot and the principle that one person gets only one vote. Under the current voting system, a voter casts his or her vote in the view of polling officials who ensure the voter is alone while marking the ballot — free of coercion. By contrast, any system that allows voters to fill out their ballot outside the supervision of officials cannot be truly secret. There are no safeguards to prevent someone looking over your shoulder while you vote on a smartphone. There’s no App for that. When you mark your paper ballot and place it in the ballot box, a magical thing happens; the ballot mixes with other ballots and you cease to have a copy. No one involved in the election process can connect you to your vote and you can’t prove how you voted.

Washington: Yakima woman mystified to find herself as a candidate on ballot | Yakima Herald-Republic

Sarah Glasscock of Yakima opened her primary ballot envelope Sunday intending to familiarize herself with the candidates and the issues. One named leaped off the page: Her own. Glasscock saw her name on the ballot as a candidate for a Republican precinct committee post in Precinct 110, an area along West Yakima Avenue. Problem is, Glasscock didn’t file a candidacy declaration and she’s not a Republican. Should she gain the most votes among the three candidates, she could resign. That’s not the problem. The problem is how her name appeared in the first place.  The intrigue includes her declaration arriving as a fax from a New Jersey phone number that belongs to a marketing office for the Japanese manufacturing firm Miki Sangyo. According to its website, the diversified firm has interests in specialty chemicals, pharmaceuticals, semiconductors, specialty paper and opticals.

National: State systems for overseas voters vulnerable | USAToday.com

States trying to make it easier for troops overseas to vote have set up voting systems that are vulnerable to hacking when they allow voters to return ballots online, via e-mail, or Internet fax, says a state-by-state report to be released today. The report, Counting Votes 2012, by the Verified Voting Foundation and Common Cause Education Fund, says all states should require overseas ballots to be mailed because even faxed ballots can’t be independently audited. “They’re trying to do a calculus and make it easy for the voter, and they may not realize the great risk they’re putting those votes at,” says Pam Smith of the Verified Voting Foundation, a group that advocates accuracy and verifiability of election returns. The report also rates states on their ability to accurately count votes, and it warns that progress away from paperless voting — which leaves nothing to recount in a dispute — has been halted by the lagging economy.

Editorials: Hacking the vote | Rick Holmes/MetroWest Daily News

Many questions hang over the 2012 election. What will the unemployment rate be, and will it hurt Barack Obama’s prospects? How will Mitt Romney hold up in one-on-one debates? How will both candidates bridge the enthusiasm gaps in their parties’ bases? Who’ll control Congress? Will Scott Brown or Elizabeth Warren carry the day in Massachusetts? Here’s one Democrats are asking: Will new state actions requiring photo IDs for voters, purging voter rolls and restricting voter registration drives hurt their candidates? And here’s one almost no one wants to think about: Will the private companies who build and handle voting machines steal the election?

New Jersey: Mayor, son, arrested on charges they nuked recall website | Ars Technica

The mayor of a small New Jersey hamlet has been arrested, along with his son, on federal charges that they shut down a website advocating the mayor’s recall after breaking into the online accounts of political foes. According to federal officials, Felix Roque, the 55-year-old mayor of West New York, New Jersey, and his son, Joseph Roque, 22, were arrested early Thursday morning by FBI agents. In February, the pair planned and executed the silencing ofwww.recallroque.com by gaining unauthorized access to the GoDaddy account used to control the domain name. An FBI special agent filed documents with these allegations in a New Jersey federal court. The father-and-son team also obtained e-mails and messages sent among opponents after gaining unauthorized access to e-mail and Facebook accounts. “I have always treated you with respect and courtesy, but I have copies of everything sent to the website and communications with names,” Mayor Roque wrote in an e-mail to one of the opponents, whose identity had remained unknown to the Roques until they gained illegal access to the accounts. “Remember, I am in the Army with many friends.”

Wisconsin: Donations to Scott Walker Flagged as Potential Fraud | ProPublica

When MaryAnn Nellis tried to pay for groceries on April 14, her credit card was declined. Later, she said, she found out why: Her credit card company, Capital One, had flagged an earlier purchase as potentially fraudulent. The problem? A $5 donation to Friends of Scott Walker, the Wisconsin governor’s campaign committee, Nellis said. Nellis told a Capital One representative she had not made the donation to Walker, who is fighting an effort to recall him as governor in a closely watched, expensive election set for June 5. “Over my dead body,” said Nellis, a potter and retired teacher in upstate New York who describes herself as “adamantly angry and upset” at Republicans such as Walker. Nellis disputed the charge and she was issued a new card. Though the amount of money was small, ProPublica decided Nellis’ complaint was worth following up. There have been other reports recently about insecure campaign-donation websites and the potential for fraud. Earlier this month, The Washington Times reported that Restore Our Future, the super PAC supporting Republican Mitt Romney, was using a collection system that made online donors’ credit card informationaccessible to even amateur snoopers.

National: Internet voting still faces hurdles in US | The Economic Times

Shop online. Bank online. Why not vote online? Pressure is building to make Internet voting widely available in the United States and elsewhere, even though technical experts say casting ballots online is far from secure. In the 2012 US elections, more than two dozen states will accept some form of electronic or faxed ballots, mostly from military or overseas voters, according to the Verified Voting Foundation. But there is a growing expectation that online voting will expand further. “The number one question I’m asked is when we will get to vote on the Internet,” Matt Masterson, Ohio’s deputy election administrator, told a Washington forum this month. “When you are doing everything else on the Internet and your comfort level is high, people expect to do that… You can adopt a child online, you can buy a house online without ever seeing it.” But computer security specialists say any system can be hacked or manipulated, and that unlike shopping and banking, the problem cannot be fixed by giving the customer a refund.

Canada: Halifax Mayor Kelly concerned by NDP e-voting problems – will use same Spanish company in municipal election | CBC

The Halifax Regional Municipality will take a close look at the e-voting problems experienced at the federal NDP leadership convention because it is planning to use the same Spanish company in the October municipal election. Mayor Peter Kelly said ensuring the integrity of the vote in the Halifax region is of the utmost importance. “We take the voting aspect very, very seriously and I think to be fair to all parties we have to make sure there is a thorough review and investigation of this situation,”he said Sunday. “Then if there is a threat of this in the upcoming election, then we need to take that very seriously and determine the best way forward.” Scytl Secure Electronic Voting, from Spain, won the contract after underbidding Intelivote Systems Inc. of Dartmouth by more than $300,000. Intelivote provided online and telephone voting for the previous two municipal elections.