FBI: Foreign Hackers Breached 2 State Election Databases

Cyber security. File photo dated 06/08/13 of a person using a laptop, as the chairman of the Home Affairs Select Committee has called for improved cyber security after it was revealed there have been 90 million suspi... Cyber security. File photo dated 06/08/13 of a person using a laptop, as the chairman of the Home Affairs Select Committee has called for improved cyber security after it was revealed there have been 90 million suspicious events on the National Crime Agency website since October 2013. Issue date: Saturday December 19, 2015. There were also 178 significant DDoS (distributed denial-of-service attacks) on the website over that period, which means an attempt to make a machine or network resource unavailable to its intended users. See PA story POLITICS Cyber. Photo credit should read: Dominic Lipinski/PA Wire URN:25075636 MORE LESS
Start your day with TPM.
Sign up for the Morning Memo newsletter

Voter registration bases in Arizona and Illinois were believed to have been breached in recent weeks by foreign hackers, prompting the FBI to issue a warning for all states to beef up their efforts to safeguard their voter registration systems, Yahoo News reported Monday.

The site obtained a copy of the restricted “flash” alert sent out by the FBI’s Cyber Division, dated Aug. 18, which warned of cyber criminals targeting state elections systems and asked officials to search for similar malicious activity. The alert did not name the states involved, but an anonymous source confirmed to Yahoo that the alert was related to attacks on databases in Arizona and Illinois.

Illinois officials were forced to shutter the state’s voter registration system for 10 days in late July after hackers were able to download the personal data of up to 200,000 voters, Ken Menzel, general counsel for the state’s Board of Elections, told Yahoo’s Michael Isikoff.

The Arizona attack was more limited in scope, according to the report. Malicious software was introduced into the registration system, but an anonymous state official told Yahoo no voter data was stolen.

The threat was deemed serious enough for Homeland Security Secretary Jeh Johnson to hold a conference call with state elections officials on Aug. 15, where he reportedly offered his department’s assistance in fortifying the systems and federal cyber security experts to search for vulnerabilities in states’ voting systems.

Although Johnson said on the call that he was not aware of “specific or credible cybersecurity threats,” the FBI alert went out three days later, according to the report.

In the alert, the FBI listed eight IP addresses as the sources of the Arizona and Illinois attacks, noting that one of the addresses was involved in both attacks. Rich Barger, a cyber security expert at the firm ThreatConnect, told Yahoo that one of the IP addresses has previously surfaced in Russian hacker forums and the method for intrusion resembled the methods used in other attacks suspect to have been carried out by state-sponsored Russian hackers.

Menzel, the Illinois elections official, told Yahoo that the FBI did not identify the suspected foreign hackers by country.

The news comes shortly after the FBI confirmed it was investigating cyber attacks at the Democratic National Committee and Democratic Congressional Campaign Committee, which experts have attributed to Russian government-linked hackers.

Latest Livewire

Notable Replies

  1. a red state and a blue state voters database hacked…

    is that offsetting penalties or false equivalency?

  2. Guess who??

  3. Thanks, Donnie!

  4. Check for 150,000 new registrations using a variation on the name Julian Assange.

  5. Avatar for yskov yskov says:

    Hey, what’s Karl Rove up to these days?

Continue the discussion at forums.talkingpointsmemo.com

47 more replies

Participants

Avatar for system1 Avatar for paulw Avatar for srfromgr Avatar for meri Avatar for clemmers Avatar for epicurus Avatar for commiedearest Avatar for kevinschmidt Avatar for inversion Avatar for sniffit Avatar for chelsea530 Avatar for yskov Avatar for sonsofares Avatar for lastroth Avatar for jcblues Avatar for beattycat Avatar for meta Avatar for antisachetdethe Avatar for pdq Avatar for marxistlennonist Avatar for tiowally Avatar for erratum Avatar for dannydorko Avatar for maximus

Continue Discussion
Masthead Masthead
Founder & Editor-in-Chief:
Executive Editor:
Managing Editor:
Deputy Editor:
Editor at Large:
General Counsel:
Publisher:
Head of Product:
Director of Technology:
Associate Publisher:
Front End Developer:
Senior Designer: