Election Security In the News: Current Issue
In This Issue
- See the latest election attacks in the Interactive Election Incident Map
- CyberDefenses's Perspective: Not the time to slack.
- Looking ahead to election security in 2020. Learn more.
- The Midterm Elections put security to the test. This is what we learned.
- Is the Federal government responsible for election security? Read one opinion.
- Educating voters is a key part of election security. Here's what they should know.
- Election orgs were flooded with free security product offers. Did it help or hinder?
- What's next in election attacks between now and 2020?
- CyberDefenses Blog: Expanding Your Election Security Knowledge.
- Find out which events should be on your calendar.
Interactive Election Incident Map
In this interactive map, we capture information about the latest election cybersecurity incidents as they occur. Stay informed of the most recent attack locations and methods so you're armed with knowledge that can help you protect your data and systems.
The Midterms Are Over, But There's No Time to Slack
By Brian Engle, CISO and Director of Advisory Services
While the 2018 Midterm Elections provided interesting political headlines, there were no reports of major security issues. This is good news, but it would be a serious mistake to let complacency settle in as we look ahead to 2020.
Those who have been in the security business for any length of time know that a lack of reported security incidents is not an indicator of impenetrable defenses. In the majority of security breaches, it can be months or longer before an attack is detected according to the 2018 Verizon Data Breach Investigation Report. This fact doesn't cast doubt on the Midterm results, but the possibility of precursor activity to the 2020 elections should remain on our radar.
What we do know is that many of the concerns about potential vulnerabilities and weaknesses that filled the headlines before the Midterm Elections are still unresolved. We continue to face questions about election disinformation campaigns and the meaning behind the sale of voter records in hacker communities. We also face worries over outdated voting systems and how vulnerable digital voting records can be to tampering. In short, there is still much work to be done.
Security is a continual process, not a "one and done" project. Cyber attacks will continue to evolve, the motivation for attacks will continue to increase as the value and power of data rises, and advances in technology will continue to evolve and amplify risks. Security is an ongoing commitment.
Election security must stay steps ahead of attackers. What's more, security strategies should include transparency, ensure confidence, and reduce speculation while providing accuracy and integrity for elections that are seeing increased voter turn out. If we want to be ready for 2020, this is not the time to slow down our efforts. It's time to step up our security and advance our capabilities so that we're inspiring confidence in our election process as we pave the way to 2020.
It's Time to Start Thinking About Election Security in 2020 - Lawfare
The threat that foreign hackers, domestic hacktivists or corrupt insiders will try to illegitimately change vote counts during the 2020 presidential election is real. But there is an even greater threat that foreign governments, activists and unscrupulous politicians will conduct campaigns to cast doubt over whether the final outcome was correctly counted. The United States has two years to get ready.
Election Security Tested - Next Gov
Federal agencies raced to secure vulnerable systems in time for the 2018 midterms, but the job’s not done. We’ve learned a lot about election security in the two years following the 2016 presidential election, and most of it is not confidence-instilling. U.S. voting systems, like any other electronic systems, have vulnerabilities.
Election Security Requires Federal Action: Think of It as an Infrastructure Opportunity - The Hill
The way election systems information moves from place to place is key among the myriad attack vectors currently pointed at our nation’s democratic process. This must change.
A Voter's Guide to Election Security - Pew Trusts
The average voter shouldn’t be too concerned about foreign interference in elections, said Maurice Turner, a senior technologist at the nonprofit Center for Democracy and Technology in Washington, D.C. But, he said, that doesn’t mean she should be passive about secure elections. By understanding the system, its flaws and what needs changing, voters can call for accountability from election officials and state policymakers.
Tech Companies Offered Free Products to Help Secure Elections. Now What? - Cyberscoop
Over the past few months, about a dozen technology companies have announced programs offering state and local election offices or political organizations free services to help them fend off looming threats, including email protection, extra security for cloud applications, basic antivirus coverage, multi-factor authentication tools and several other types of products. But those steps seem to be very disjointed. There is no coordination to make sure officials and campaign members understand their options.
The Cybersecurity 202: Foreign Adversaries 'Will Continue to Push Misinformation' After Election Day, Official Says - The Washington Post
Election Day is over, but government officials are still watching out for potential interference in the political process after detecting online disinformation that was meant to undermine the midterms. Foreign adversaries will “continue to push misinformation” even after the election results are fully reported, a Department of Homeland Security official told reporters in a series of briefings on election security that lasted well into the night.
Expanding Your Election Security Knowledge
Author: Brian Engle, CISO
Election security is more than understanding the technology, which on its own can be complex and at times confusing; it also includes understanding how to do things securely at every step of the election process. The first step to building your security knowledge is understanding the strength of your security efforts as well as where there may be weaknesses.
Jan 10 - 11, 2019
Feb 2 - 4, 2019
During the NASS Conference