Blog

Are Voting Machines Secure?

Cybersecurity and the Democratic Process

With the DNC leak making headlines worldwide, serious concern about foreign powers interfering with the American democratic process is becoming part of the national discussion. Now, security experts believe that voting machines may become the next target thanks to a number of factors that make them uniquely susceptible to attack.

Voting Machine Security

Why Hack Voting Machines?

The incentive to hack voting machines on a large scale should be evident. The ability to influence US policy in a clandestine manner is something that just about every nation on the planet would want—both allies and rivals alike. Although there are many ways to accomplish this, such as good old fashion espionage, voting machines are particularly susceptible due to a confluence of factors:

  • Each US state is in charge of its own elections. This means that there is no standardized system of security to make sure the machines remain untampered with.
  • Much voting technology is new. Online voting wasn’t a part of policy until Barack Obama famously called on tech leaders to begin making it a reality. That only happened in early 2016 at a keynote speech of his at the South By Southwest music festival, and as a result many of the voting methodologies being used have not had the time to be rigorously tested.
  • Voting machines have been the subject of scandal before. Anyone who remembers the 2004 elections can recall the national scandal that broke out as a result of Diebold’s voting machine security standards. The source code used in these machines was deemed far below the minimum security standards that would be applied in other contexts, and the company CEO was an outspoken supporter of his preferred candidate, George W. Bush.

How Can We Keep the Vote Secure?

Paper leaves a trail that is far more difficult to tamper with than a digital one, and many security experts believe that our security infrastructure is still not ready for online voting. However, making the vote more accessible is a top priority among constituents across the aisle and this means that measures will have to be taken sooner rather than later.

One possible remedy would be the establishment of oversight teams that probe the security of polling booths in every state. These teams could increase the defenses of any booths that do not meet a Federal standard. Alternately, they could simply move these booths offline and compel them to use a paper-based alternative.

The issue with this approach is that voters who find themselves stuck in districts forced to use the paper alternative are likely to cry voter fraud, as the efficiency and speed of voting will surely take a hit. The appropriate response needs to instill the trust of the American people to work; doing so will be a challenging and nuanced proposition.

InfiNet Solutions is the trusted choice when it comes to staying ahead of the latest information technology tips, tricks, and news. Contact us at (402) 895--5777 or send us an email at [email protected] for more information.

Are Voting Machines Secure? Read More »

Ransomware Takes Aim on Small Business

Ransomware has gotten much more intelligent in the last year, and it now represents one of the most damaging and widespread cybersecurity threats that businesses face on a daily basis. According to SophosLabs, ransomware is now so sophisticated it can target specific countries and locations and use appropriate vernacular languages, logos, local information and payment methodologies — making the ransomware delivery email or other mechanism a believable, effective method of social engineering.

ransomware

Once the social engineering is successful — usually as soon as the end user trusts their email or attachment enough to open it — the infection takes place, and the ransomware Trojan begins encrypting files behind the scenes in preparation for its typically exorbitant ransom demand.

When It Comes to Ransomware, the Numbers Don’t Lie

Just in the last year, 24 million ransomware attacks have taken place in the U.S. alone, but thousands go unreported — so the numbers are likely much higher. Approximately 390,000 malicious programs are registered daily by the AV-TEST Institute.

More than 500 known malware evasion behaviors are in existence, and around 97 percent of malware is unique — making signature-based security measures virtually useless.

Hackers Are Leveraging JavaScript and Its Extensive User Base

Lately, ransomware hackers have begun using JavaScript injections to propagate malware across the web. Since JavaScript is a language that most websites are intimately familiar with as part of their programming interface, it makes a particularly vicious attack mechanism against weakened defenses. As it is nearly impossible to enjoy any functionality while browsing the internet without JavaScript these days, most websites and browsers are sitting ducks as potential ransomware targets — and hackers, of course, exploit this weakness as often as possible.

Sticking to Browsing Legitimate, “Safe” Websites Is No Longer Enough to Protect You Against Ransomware

Don’t make the mistake of thinking that sticking to well-known, authentic websites will protect you against ransomware; the hackers have already evolved beyond that. Basically, a JavaScript-enabled ransomware attack will target a high-traffic, popular business’ website and redirect users to malicious sites without the victim’s knowledge. Once the user unknowingly visits the hacker’s site, the infection process begins.

The Latest JavaScript Ransomware Strain Is Known as “RAA,” and It Is Multi-Faceted and Ruthless

In these latest ransomware infections, JavaScript (a well-known and common programming language that’s behind the scenes in most website environments) isn’t the vehicle for download of the ransomware — it IS the ransomware, and it is ruthless in more ways than one.

RAA ransomware delivery begins with an email attachment that impersonates a legitimate Word.doc file called “invoice.txt.” Once a victim opens the attachment, the Trojan launches a series of scrambling and locking of user documents and files, all the while downloading and saving additional malicious files onto the computer.

Unfortunately, the worst part about RAA isn’t its efficiency in encrypting files and data. RAA saves the best for last, and waits until the unsuspecting victim starts logging into bank and credit card accounts to access money to pay the ransom in return for the files. It is at this point when the password-stealing Trojan comes to life, recording sensitive financial data and passwords, while the user is preoccupied with securing the ransom funds.

What Can a Business Do to Defend Against Ransomware?

To protect your business against the constantly developing threat of ransomware, you need to be proactive. Follow these four best practices to help mitigate the damage of a ransomware attack:

  1. Testing: Work with a trusted IT security professional to implement an incident response plan, and test it regularly to be sure that it stays relevant and effective.
  2. Training: Be sure employees are fully aware of the gravity of a ransomware threat. Train them in effective ways to avoid becoming a social engineering victim, as well as in best practices for password security and BYOD/BYON (bring your own device/network).
  3. Technology: Utilize multiple backup methods, including one in the cloud, one on site, and one offsite for ultimate protection.
  4. Timeliness: Have your IT managed services professional regularly and frequently update and patch software to decrease vulnerabilities.

In the face of the growing threat of ransomware to local Charlotte area businesses, Sterling Technology Solutions has extensively studied ransomware’s recent advancements and developed unique, effective solutions to help protect your valuable business assets.

InfiNet Solutions is your local Charlotte, NC cybersecurity and managed IT services expert. We specialize in protecting area North Carolina businesses from the ever-evolving threat of ransomware and other cyberattacks. If you’d like to discuss your business’s protection against the latest cybersecurity threats, contact us at (402) 895--5777 or send us an email at [email protected] for more information.

Ransomware Takes Aim on Small Business Read More »

Call Now Button