Cybersecurity's Role in Combating Midterm Election Disinformation
A multilayered attack technique that took center stage in 2020 and has only grown more endemic.
Stay informed on election security with the latest updates on cyber threats, data protection, and integrity in the democratic process.
Search across headline titles and summaries.
Background for this topic.
Election is a legally governed process for choosing public officials or deciding a question through voting, with rules for registration, ballot creation, voting, counting, and certification. Its cybersecurity scope includes the digital systems supporting those stages—not only voting devices, but voter-registration databases, election-management systems, poll-worker accounts, result-reporting networks, and public information services.
Security priorities are preserving vote and result integrity, keeping essential services available, and protecting voter and worker information from unnecessary exposure. Material risks include unauthorized changes to ballot definitions or tallies, compromise of privileged accounts, disruption of reporting systems, and exploitation of software or network vulnerabilities. Defenses include least-privilege access, multifactor authentication, network separation, tested backups, vulnerability management, and paper records or other independent evidence that supports verification. Election security also requires documented procedures for detecting, containing, and correcting incidents without undermining lawful certification.
A multilayered attack technique that took center stage in 2020 and has only grown more endemic.
Also: Iranian election hackers are back, the TSA gets regulatory on train cybersecurity, and more In brief Google has released a new open source software tool to help businesses better understand the risks to their software supply chains by aggregating security metadata into a queryable, standardized database.…