Left Menu
Development News Edition

US: Ransomware feared as possible saboteur for November election

“We're seeing state and local entities targeted with ransomware on a near daily basis,” said Geoff Hale, a top election security official with Homeland Security's Cybersecurity and Infrastructure Security Agency. Steps taken to improve security of voter registration systems after the 2016 election could help governments fend off election-related ransomware attacks.

PTI | Washington DC | Updated: 02-08-2020 23:11 IST | Created: 02-08-2020 23:07 IST
US: Ransomware feared as possible saboteur for November election
Representative Image Image Credit: Wikimedia

Federal authorities say one of the gravest threats to the November election is a well-timed ransomware attack that could paralyze voting operations. The threat isn't just from foreign governments, but any fortune-seeking criminal. Ransomware attacks targeting state and local governments have been on the rise, with cybercriminals seeking quick money by seizing data and holding it hostage until they get paid. The fear is that such attacks could affect voting systems directly or even indirectly, by infecting broader government networks that include electoral databases.

Even if a ransomware attack fails to disrupt elections, it could nonetheless rattle confidence in the vote. On the spectrum of threats from the fantastical to the more probable, experts and officials say ransomware is a particularly realistic possibility because the attacks are already so pervasive and lucrative. The FBI and Department of Homeland Security have issued advisories to local governments, including recommendations for preventing attacks.

"From the standpoint of confidence in the system, I think it is much easier to disrupt a network and prevent it from operating than it is to change votes," Adam Hickey, a Justice Department deputy assistant attorney general, said in an interview. The scenario is relatively simple: Plant malware on multiple networks that affect voter registration databases and activate it just before an election. Or target vote-reporting and tabulation systems.

"With the 2020 election, election infrastructure has a target on its back," Colorado Secretary of State Jena Griswold said. "We know that election infrastructure was attempted to be undermined in 2016, and we know the techniques are shifting." The number of attacks has escalated in recent years, with targets including Texas' transportation agency and city computers in New Orleans. A December report by cybersecurity firm Emsisoft tracked attacks against at least 966 entities that interrupted 911 services, rendered medical records inaccessible, and hindered police background checks. "We're seeing state and local entities targeted with ransomware on a near daily basis," said Geoff Hale, a top election security official with Homeland Security's Cybersecurity and Infrastructure Security Agency.

Steps taken to improve security of voter registration systems after the 2016 election could help governments fend off election-related ransomware attacks. They've also acted to ensure they can recover quickly in the event of an attack. Colorado, for example, stores redundant versions of its voter registration data at two separate secure locations so officials can easily shift operations. Backups are regular so the system can be quickly rebuilt if needed.

Even so, ransomware is an added concern for local election officials already confronting staffing and budget constraints while preparing for a shift from in-person voting to absentee balloting because of the pandemic. In West Virginia, state officials are more concerned about the cyber threat confronting its 55 county election offices than a direct attack on the statewide voter registration system. One click from a county employee falling victim to a spearphishing attack could grant a hacker access to the county network and eventually to election systems.

"I'm more worried that those people who are working extra hours and working more days, the temporary staff that may be brought in to help process the paperwork, that all this may create a certain malaise or fatigue when they are using tools like email," said David Tackett, chief information officer for the secretary of state. In states that rely heavily on in-person voting and use electronic systems to check in voters, a well-timed attack, particularly during early voting, could prevent officials from immediately verifying a voter's eligibility, making paper backups critical.

For states conducting elections entirely by mail, including Colorado, an attack near Election Day may have little effect on voting because ballots are sent early to all voters, with few votes cast in-person. But it could disrupt vote-tallying, forcing officials to process ballots by hand. In many states, local officials will face an influx of new ballot requests. That means they'll need constant access to voter data as they handle these requests. An attack could cause major disruptions.

Hickey said he was unaware of ransomware attacks directly targeting election infrastructure. But local election offices are often connected to larger county networks and not properly insulated or protected. A criminal targeting a county or state "may not even know what parts of the network they got into," Hickey said. But as the malware creeps along and spreads, "what gets bricked is the entire network — and that includes but is not limited to election infrastructure." Even if election infrastructure isn't directly targeted, there would likely be immediate assumptions it was, said Ron Bushar of the FireEye cybersecurity company.

A February advisory issued by the FBI and obtained by The Associated Press recommends local governments separate election-related systems from county and state systems to ensure they aren't affected in an unrelated attack. That's how Louisiana's election network survived multiple ransomware attacks: one occurred six days before the November election through an IT services company shared by the seven impacted counties. The second hit the state network a day after voting.


TRENDING

OPINION / BLOG / INTERVIEW

3D printing and the future of manufacturing post COVID-19

The on-demand, customizable, and localized manufacturing of product components facilitated by 3D printing has the potential to redefine manufacturing but there are certain technical, mechanical, and legal limitations that, unless ...

How UK’s 'best prepared' healthcare system failed to gauge COVID-19

The UK is proud of their public health system and its unlike any other country as around 90 percent of British public supports the founding principles of National Health Service. But without accurate data being available to stakeholders in ...

Poor on IHR capacity progress in 2019, WHO says Cambodia tops COVID-19 response

Despite being in proximity to Hubei, the original epicenter of COVID-19 pandemic, Cambodia has reported just 226 confirmed cases and zero deaths. After seeing the data, WHO appreciated Cambodias healthcare information system but experts dou...

Loopholes in Healthcare Information System may have failed Singapore COVID-19 model

In the initial days of the COVID-19 outbreak, Singapore was in the limelight for its effective healthcare system and pandemic response plan. However, Singapore has now joined the list of the worst-hit nations and the situation is even worse...

Videos

Latest News

Golf-Koepka makes solid start in bid for PGA Championship three-peat

Brooks Koepka may have fallen just short in his bid for a U.S. Open three-peat last year but on Thursday the man who appears built for majors took another step towards a similar bold bid at the PGA Championship. Following his four-under-par...

Hostage taker surrenders outside French bank, all six captives unharmed

A gunman who took six people hostage in a bank in northern France on Thursday surrendered to elite police after a six-hour operation to free his captives.The hostage-taker, a 34-year-old with a history of mental illness, emerged slowly from...

Mexico business lobby blasts state's ban on junk food for children

Mexican businesses on Thursday lashed out at the congress of one southern state after it voted to ban the sale, distribution and advertising of junk food and sugary drinks to children in an attempt to improve health. Led by the ruling Natio...

Trump signs executive order to boost U.S. drug manufacturing

President Donald Trump on Thursday signed an executive order aimed at boosting U.S. production of medicines and medical equipment, lowering drug prices and protecting the United States against shortfalls in a future pandemic. Trump said the...

Give Feedback