FBI Evidence Shows Two State Election Systems Penetrated by Hackers -- Security Today

FBI Evidence Shows Two State Election Systems Penetrated by Hackers

Aug 29, 2016

The FBI has uncovered evidence that foreign hackers have gained access to two states’ election systems in the past few weeks, prompting the bureau to warn election officials across the country to take new steps to enhance the security of their computer systems.

The alert comes just days after Homeland Security Secretary Jeh Johnson convened with state election officials and offered them his department’s help to make state voting systems more secure against cyber threats. During the conference call, Johnson said there were not “specific or credible threats” to the election.

Only three days later, the FBI Cyber Division issued a disturbing warning, “Targeting Activity Against State Board of Election Systems.” The disturbing warning disclosed that the bureau was investigating cyberintrusions against two state election websites during the summer, including one that resulted in the “exfiltration,” or theft, of voter registration data, according to Yahoo! News who obtained a copy of the alert.

While the bulletin does not release the names of the states in question, it has been widely reported that sources close to the investigation believe the registration databases that were left vulnerable belong to Arizona and Illinois.

Yahoo! News reported that in the Illinois case, officials shut down the state’s voter registration system for 10 days in July after hacker managed to download personal data on up to 200,000 state voters.

The Arizona attack wasn’t as expansive, but it did involve malicious software that was introduced to its voter registration system. There was not successful download of personal data, a state official said.

The FBI bulletin implied that the hackers were attempting to target more than just Arizona and Illinois.

“The FBI is requesting that states contact their Board of Elections and determine if any similar activity to their logs, both inbound and outbound, has been detected,” the alert reads. “Attempts should not be made to touch or ping the IP addresses directly.”

Featured

91 Percent of Security Leaders Believe AI Set to Outpace Security Teams

Bugcrowd recently released its “Inside the Mind of a CISO” report, which surveyed hundreds of security leaders around the globe to uncover their perception on AI threats, their top priorities and evolving roles, and common myths directed towards the CISO. Among the findings, 1 in 3 respondents (33%) believed that at least half of companies are willing to sacrifice their customers’ long-term privacy or security to save money. Read Now
- Artificial Intelligence
- Cybersecurity
Milestone Announces Merger With Arcules

Global video technology company Milestone Systems is pleased to announce that effective July 1, 2024, it will merge with the cloud-based video surveillance solutions provider, Arcules. Read Now
- Video Surveillance
Organizations Struggle with Outdated Security Approaches, While Online Threats Increase

Cloudflare Inc, recently published its State of Application Security 2024 Report. Findings from this year's report reveal that security teams are struggling to keep pace with the risks posed by organizations’ dependency on modern applications—the technology that underpins all of today’s most used sites. The report underscores that the volume of threats stemming from issues in the software supply chain, increasing number of distributed denial of service (DDoS) attacks and malicious bots, often exceed the resources of dedicated application security teams. Read Now
- Cybersecurity
Cloud Resources Have Become Biggest Targets for Cyberattacks According to New Research

Thales recently announced the release of the 2024 Thales Cloud Security Study, its annual assessment on the latest cloud security threats, trends and emerging risks based on a survey of nearly 3000 IT and security professionals across 18 countries in 37 industries. As the use of the cloud continues to be strategically vital to many organizations, cloud resources have become the biggest targets for cyber-attacks, with SaaS applications (31%), Cloud Storage (30%) and Cloud Management Infrastructure (26%) cited as the leading categories of attack. As a result, protecting cloud environments has risen as the top security priority ahead of all other security disciplines. Read Now
- Cybersecurity

Webinars

BriefCam

AI-Driven Video Analytics: The Foundation for Your Security Tech Stack
Hanwha Vision (formerly Hanwha Techwin), Eagle Eye Networks Inc, Omnilert, Salient Systems, AtlasIED, LiveView Technologies, IPVideo Corporation, ASSA ABLOY Opening Solutions, Axis Communications, Inc., Safety Technology International Inc.

Enhancing Campus Safety and Student Success: Practical Solutions for Threat Mitigation and Performance Improvement
Hanwha Vision (formerly Hanwha Techwin)

AI at the Edge: Are You Ready?

Whitepapers

Winsted Corporation

All-Star Lineup
Axis Communications, Inc.

Meeting Responsibilities for School Campus Staff
Axis Communications, Inc.

The 2024 School Violence Protection Program

New Products

HD2055 Modular Barricade

Delta Scientific’s electric HD2055 modular shallow foundation barricade is tested to ASTM M50/P1 with negative penetration from the vehicle upon impact. With a shallow foundation of only 24 inches, the HD2055 can be installed without worrying about buried power lines and other below grade obstructions. The modular make-up of the barrier also allows you to cover wider roadways by adding additional modules to the system. The HD2055 boasts an Emergency Fast Operation of 1.5 seconds giving the guard ample time to deploy under a high threat situation. 3
Camden CV-7600 High Security Card Readers

Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3
PE80 Series by SARGENT / ED4000/PED5000 Series by Corbin Russwin

ASSA ABLOY, a global leader in access solutions, has announced the launch of two next generation exit devices from long-standing leaders in the premium exit device market: the PE80 Series by SARGENT and the PED4000/PED5000 Series by Corbin Russwin. These new exit devices boast industry-first features that are specifically designed to provide enhanced safety, security and convenience, setting new standards for exit solutions. The SARGENT PE80 and Corbin Russwin PED4000/PED5000 Series exit devices are engineered to meet the ever-evolving needs of modern buildings. Featuring the high strength, security and durability that ASSA ABLOY is known for, the new exit devices deliver several innovative, industry-first features in addition to elegant design finishes for every opening. 3

FBI Evidence Shows Two State Election Systems Penetrated by Hackers

Traka ASSA ABLOY Wins 2024 Red Dot Award for Touch Pro Series of Electronic Key Management Cabinets

TMA Releases Comprehensive Operator Training for its ANSI/TMA-AVS-01 Standard

Secure Storage Drives Give Sensitive Data at the Edge New Protection

The Monitoring Association Unveils Innovations to the ASAP Service to Revolutionize 911 Emergency Response

Centrios Ships Products to SECLOCK for New England Launch

DOOR to Acquire HelloTech, Officially Launching DOOR Services

Elite Interactive Solutions Salute for Police Dispatch Procedures