Election officials are vulnerable to phishing attacks, report warns

Less than 20% of election administrators have implemented advanced anti-phishing cyber security controls

Several county and local election officials are using email systems that could leave them vulnerable to phishing attacks, according to an Area 1 Security report.

Area 1 Security, in partnership with Americans for Cybersecurity, analyzed state and local election administrators’ susceptibility to phishing attacks. According to the report, 53.24% of election administrators use only simple or nonstandard technologies to protect themselves from phishing attacks, while only 18.61% have implemented advanced anti-phishing cybersecurity controls.

Advertisement - Article continues below

A troubling 5.42% of election administrators use personal email addresses or personal email technology for election-related matters too. 

According to Area 1 Security, several election administrators independently manage their custom email infrastructure as well.

In an interview with The Wall Street Journal, Area 1 Security CEO Oren Falkowitz explained: “When you run your own service and you don’t partner with someone to professionally manage it, it means you have to be perfect every single day. That’s really hard."

Area 1 Security says it found officials in six small jurisdictions in Michigan, Missouri, Maine and New Hampshire using Exim too. In May, the National Security Agency warned that threat actors linked to the Russian military intelligence agency - the same actors who interfered with previous elections - have targeted the version of Exim these officials are using.

Advertisement
Advertisement - Article continues below

Government agencies nationwide have faced ransomware attacks, many of which began with malicious email messages, security experts told The Wall Street Journal

Advertisement - Article continues below

At an online conference held by the National Association of Secretaries of State, a top Department of Homeland Security election security official stated malicious software targeting computer systems used by election officials remains an issue.

“We’ll see that ransomware will come and take down the county network, which has an impact on the election network, even though it wasn’t being targeted,” explained Matt Masterson, senior adviser on election security for the Department of Homeland Security. “It may have an impact on, particularly, a local office’s ability to run elections.”

For hackers looking to undermine the upcoming election, underprepared election administrators are an easy target. Election administrators claim security testing and monitoring of election networks is better now than it was in 2016, though. More counties are using paper-ballot voting machines as a backup. 

Featured Resources

Staying ahead of the game in the world of data

Create successful marketing campaigns by understanding your customers better

Download now

Remote working 2020: Advantages and challenges

Discover how to overcome remote working challenges

Download now

Keep your data available with snapshot technology

Synology’s solution to your data protection problem

Download now

After the lockdown - reinventing the way your business works

Your guide to ensuring business continuity, no matter the crisis

Download now
Advertisement

Recommended

Russia hacked Liam Fox's personal email to steal trade documents
phishing

Russia hacked Liam Fox's personal email to steal trade documents

4 Aug 2020
British teenager charged over Twitter hack
hacking

British teenager charged over Twitter hack

3 Aug 2020
Mid-year report says vulnerabilities up 22% in 2020
hacking

Mid-year report says vulnerabilities up 22% in 2020

30 Jul 2020
BlackRock banking Trojan targets Android apps
trojans

BlackRock banking Trojan targets Android apps

27 Jul 2020

Most Popular

How to find RAM speed, size and type
Laptops

How to find RAM speed, size and type

3 Aug 2020
How to use Chromecast without Wi-Fi
Mobile

How to use Chromecast without Wi-Fi

4 Aug 2020
UN report points to a 350% rise in phishing websites at start of 2020
phishing

UN report points to a 350% rise in phishing websites at start of 2020

7 Aug 2020