Threats Targeting Election Systems

FireEye has just released a new report which explores the threats targeted at election systems, in particular, by state-sponsored cyber espionage actors.

Given the current articles about electronic voting machines (EVMs) malfunctioning during the Uttar Pradesh bypolls this week, this report will be a good source to understand about the types of vulnerabilities faced by Indian EVMs and what are the security practices to be followed to ensure security of these machines.

The report follows the voting process, from registering to vote tabulation to provide an overview of cyber threat attack methods, covering electronic voter registration, DDoS against state elections websites, attacks against voting machines and attacks against election management systems.  Additionally, it examines other ways in which state and local infrastructure may be targeted to interfere with or cause a loss of confidence in the election process. 

Highlights from the report include:

• FireEye researchers have identified threat vectors affecting voter registration, polling place identification, ballot submission and vote counting
• Actors utilizing information operations campaigns may target or mimic state and local officials’ social media accounts directly to sow fear and mistrust
• Aggressive campaigns to disrupt the electoral process may leverage tools such as ransomware and DDoS attacks to destabilize state and local IT networks and mimic cyber crime activity

Please see attached the full report. We can also set up interviews with FireEye experts if of interest.