Hackers Crack Voting Machines Within Minutes At DEF CON In Vegas
Source: Huffington Post
07/29/2017 12:29 pm ET
Hackers Crack Voting Machines Within Minutes At DEF CON In Vegas
Confirming what we already knew our voting systems are awfully vulnerable.
By Andy Campbell
We already knew U.S. voting systems had security flaws ― the federal government put that nail in the coffin when it repeatedly confirmed that Russian hackers breached systems in at least 21 states during the election last year.
But on Friday, hackers stateside showed us just how easily some of the electronic voting machines can be cracked.
Those who attended DEF CON, a 25-year-old hacking convention held in Las Vegas, were given physical and remote access to voting machines procured from eBay and government auctions.
Within about 90 minutes, theyd exploited weak and outdated security measures to gain full access, The Register first reported. Some physically broke down the machines to reveal their vulnerabilities, while others gained remote access or showed that external ports found on some could be used to upload malicious software.
Read more: http://www.huffingtonpost.com/entry/hackers-crack-voting-machines-within-minutes-at-def-con-in-vegas_us_597ca139e4b02a4ebb75c134
flibbitygiblets
(7,220 posts)Got those fuckers on speed dial unfortunately
Frustratedlady
(16,254 posts)I'm not in such a hurry that I can't wait a day or two for the results. We've had nothing but trouble since we switched to machines, so why continue that route? So some manufacturer who donated a pile of money can make a pile of money with no-bid contracts? We gave it a chance and they blew it.
Sometimes progress isn't.
stevepal
(109 posts)The only reason we ever started using the voting machines was so that the owners of the companies making them, Repubs in general, cd game them and win elections so they cd achieve what they've now achieved: the complete hijacking of American democracy, or what used to be "American democracy."
Without the voting machines counting votes for well over a decade, the US would be an entirely different place politically and socially.
diva77
(7,640 posts)sucked up by private corporations. The machines get used once in a blue moon, and then get replaced every few years and there is no way to guarantee that our votes are being counted as cast...what a setup for the perfect crime on so many levels
TheFrenchRazor
(2,116 posts)WinstonSmith4740
(3,056 posts)It's totally doable. We don't need the results with-in two minutes of the polls closing. The methodology is already in place...ever see a "counting room" in Las Vegas? Those folks are never so much as a dime off. Their methods can be duplicated easily...UN oversight, as well as representatives of each party, as room supervisors. We need to stop wringing our hands and bemoaning the Republicans dirty tricks. Dirty tricks are all the Republican power structure has...they have almost no ideas, and the ones they do have are just plain ugly and hurt everyone but the wealthy. So we have to stop being surprised by their ability to go ever lower.
Because you're right. The problems started with the use of computers for voting, so let's eliminate that and see what happens.
Best_man23
(4,898 posts)by Bradley Barth, Senior Reporter SC Magazine
Within mere hours of opening, members of the hacker community were apparently not only compromising machines with known bugs, but also finding previously undiscovered issues.
Corroborating Blaze's account, the "DEFCON Voting Village" twitter account posted this tweet: 90 min after doors open: Complete remote control on the operating system level of the Winvote voting terminal (including election data). <Note: Bold was added by me for emphasis>
In addition to the Winvote, the Voting Village also featured the Edge, ES7S iVotonic, Diebold TSX, and Diebold Expresspoll 4000 machines. Dlin said that as of approximately 1:30 PST, three-and-a-half hours after the Village had officially opened, three or four machines had already been compromised.
Read More: https://www.scmagazine.com/election-tech-hacked-within-hours-at-def-con-voting-village/article/678454/
I'm calling my Senators on Monday and sending them this information. I'm also going to call my Supervisor of Elections and ask them what they are planning to do to strengthen cybersecurity of their voting machines and networks.
WinstonSmith4740
(3,056 posts)We all need to do this. Thanks for the idea.
JoeOtterbein
(7,700 posts)TheFrenchRazor
(2,116 posts)diva77
(7,640 posts)each vote counted is observed by more than one person; and actually, results come out pretty quickly.
benld74
(9,904 posts)A more rigorous procedure before being placed in casino floor than those voting machines.
That's been true since their inception
dembotoz
(16,802 posts)Leith
(7,809 posts)I was involved in that with my old job. Every gambling machine - even every piece of furniture - has the nonsense tested out of every bit of it: math, inner workings, outer dimensions, everything. Who tests them? The manufacturers, private testing corporations, governmental agencies, and finally on the casino floor. And they all talk to each other.
I also used to work as a computer programmer contracted to 2 different states. We never forgot that we were working for the state government and the people. Every word of code we wrote or updated belonged to the state we wrote it for. So... how does Diebold get away with claiming "proprietary software?!" The company owner is a big rethug donor.
Ben, we probably have friends and LinkedIn contacts in common.
bora13
(860 posts)could
hack
certainly no one in WH would order such a thing...
Amaryllis
(9,524 posts)And certainly no Russians would think of that.
RussBLib
(9,007 posts)Congresscritters either seem to believe our machines are unhackable or they know better and they are protecting special interests.
Gee, I wonder which one it could be?
Amaryllis
(9,524 posts)ignorant of just how vulnerable our election infrastructure is and has been for years.
tomp
(9,512 posts)TheFrenchRazor
(2,116 posts)turbinetree
(24,695 posts)See how your state does it
https://www.eac.gov/assets/1/1/State%20Requirements%20and%20the%20Federal%20Voting%20System%20Testing%20and%20Certification%20Program.pdf
I really think we need what they are doing in Oregon on a national level
broadcaster90210
(333 posts)nt
LittleGirl
(8,287 posts)I believe that #45 is not my President because of this. I do not believe that the GOP has full control of Congress, WH or SC.
Our election was stolen from us. I don't care what any politician says, I used to work IT so I know what the hell I'm talking about.
I want paper ballots hand counted. Every. Single. Election.
SHRED
(28,136 posts)Doesn't appear that way.
judesedit
(4,438 posts)I believe it was. And we were shown on national television by Howard Dean how in less than 5 minutes the votes could be flipped on Diebold and Sequoia machines. Owned by rethugs btw. Blackboxvoting and bradblog have been trying to get people to listen for years. It's about freaking time someone paid attention. But look what it took. We have a fucking lunatic in the White House with his fucking robot followers who eat out of his tiny hands. Now to stop them. You tell me
Bush should have been ousted immediately and definitely should NEVER have gotten a 2nd term.
Thank you hackers. America is grateful you've exposed it again....Now help us fix it. Where were you while all of this was happening? Seems to me it could have been stopped.
TheFrenchRazor
(2,116 posts)BadgerMom
(2,771 posts)I'm calling on Monday, too. Anymore, whenever I go to "recent calls" Kamala Harris and Dianne Feinstein are always among the last 5 calls or so.
yallerdawg
(16,104 posts)I've never used a machine to vote in my life! Always paper ballots. And I've been voting since Jimmy Carter!
45 states have paper ballots, and while they count ballots election night, it takes weeks to certify the election, while they sample ballot counts by hand against the more reliable and exact tallying machines.
If the goal is to discredit our elections, to make US question them - I guess it worked - and it rolls on!
If, if, if, but, but, but - "Our election was hacked!" is the new "Grassy knoll and magic bullet!"
diva77
(7,640 posts)contain easily hackable software.
check out what happened in Racine County, WI 2016 election:
The goal is not to discredit elections and drive people away from voting. The goal it to ensure that our votes are counted as cast -- and there needs to be transparency to achieve this -- you cannot observe what is taking place inside a computer, therefore you cannot guarantee that your vote is counted as cast. The software and hardware are owned by private corporations that do not make the code available for inspection. And the machines are vulnerable to outside hacking as well.
To ensure transparent elections, you have to be able to observe what's going on. That's why the Germans rejected computerized voting & tabulating machines.
yallerdawg
(16,104 posts)Which are so reliable when tested against hand counts there is no justification for the time and money.
And these are sampled everywhere in the USA in the process of certifying the state election numbers.
But 6 months later - we've still got THIS VIDEO!
diva77
(7,640 posts)yallerdawg
(16,104 posts)and this goal includes making us question the validity of our own elections, then the 'usual suspects' - including Donald Trump, Jill Stein, and the 'international hackers - have all managed to achieve their goal.
If we all went to paper ballots and hand count tallies, 'someone' would be asking for polling worker birth certificates!
Squinch
(50,949 posts)What reason is there for the rest of the states not to go to a plan like Oregon's, which works great by the way?
Bernardo de La Paz
(49,001 posts)If need be, they can even be all hand counted.
politicat
(9,808 posts)You need to doubt 50 years of academic testing, everything from the Iowa Test of Basic Skills through the SAT to the GRE and bar exams, CPA exams, actuary exams. Academia has been using -- and securing -- optical scanners since Scantron.
Scanners are airgapped -- they don't have network connections -- and they're secured when not in use. Sure, a scanner can be hacked, the same way a Roomba or an electronic sewing machine can be hacked -- if the hacker is in the same room with it, with a screwdriver. Assuming that hundreds of the county clerks and recorders have all been turned in exactly the same way is multiverse possible, but highly unlikely.
Humans are far less accurate than machines. We make errors between 1 in 10,000 and 1 in 100,000 times. And we make more mistakes when we're tired and under pressure. Machine accuracy (optical scanner) starts at 1 in 100 million.
Certification takes weeks, during which time we count those ballots multiple times, running spot checks for accuracy. There's a reason this takes so long. Get rid of the touch screens, IoT versions, and non-tracking systems - absolutely. They're expensive, failure prone, not secure and they don't do what they promised. But paper ballots and scanners are not the problem here.
TheFrenchRazor
(2,116 posts)diva77
(7,640 posts)he clearly includes optical scanners in his testimony...
https://www.c-span.org/video/?c4674512/j-alex-halderman-voting-structure-vulnerable-sabotage-even-attacks-can-change-votes
J. Alex Halderman: Our voting structure is vulnerable to sabotage, even to attacks that can change votes Computer science professor whose research focuses on computer security and privacy has (with colleagues) studied voting machines and tested and verified that they can be hacked by foreign actors.
and check out Amaryllis's post on DU
https://www.democraticunderground.com/10029295571
TheFrenchRazor
(2,116 posts)possibly be opposed to that?
diva77
(7,640 posts)The machines do NOT meet the burden of proof that they cannot be hacked.
L. Coyote
(51,129 posts)Because there is no way to show that hackable voting machines counted the votes accurately.
diva77
(7,640 posts)hacks...media needs to expose the hypocrisy of the people certifying "voting" machines
TheFrenchRazor
(2,116 posts)ElementaryPenguin
(7,800 posts)Blue Idaho
(5,049 posts)Who cares if it takes a few days for the count to come in? We could guaranty accuracy and get rid of all the breathless prognostion from the news hounds on election night.
L. Coyote
(51,129 posts)TheBlackAdder
(28,189 posts)Squinch
(50,949 posts)that was hacked to make Trump(R) president.
Why are we arguing this? The machines CAN be hacked, Oregon has come up with a very functional system of paper ballots, one that incidentally increases voting rights. Why in the hell is there resistance to this from Democrats? What do we have to lose by fighting to go from a system that can be hacked to one that can't?
TheFrenchRazor
(2,116 posts)diva77
(7,640 posts)the votes are tabulated in one central location -- it's much better to have tabulation done at precinct level to avoid easy manipulation of results on mass scale
the ballots have to follow a chain of custody via US mail -- therefore, cannot guarantee an unbroken chain
the ballots are tabulated with optical scanners -- easily hackable
It would be far better to hand count paper ballots at the precinct level with public oversight and post results at precinct level.
Hugin
(33,135 posts)One can only conclude that TPTB don't want hack proof voting.
jimlup
(7,968 posts)but damn it! I think there likely was Russian interference at a local voting precinct level. I've been arguing for awhile now that all it would take to get the result of 11/9 was to hack some machines in Wisconsin, PA and MI. Knowing Detroit because I live in the suburbs, to say that Detroit's vote wasn't hacked or botched or both is extremely naive.
I am openly wondering if Computer scientists have looked at the results of 11/9 to see if there are statistical anomalies that would indicate the hack. Comparisons between widely separate precincts with very similar demographics would be interesting for example. All you need is to flip one vote per precinct in these 3 states ...
TheFrenchRazor
(2,116 posts)showed every "anomaly" in the book; bottom line is that it is hard to prove anything that way, however it should be enough to convince people that we need a more secure system.
jimlup
(7,968 posts)as a scientist I like to look at data. Do you know a reference that would help me?
TheFrenchRazor
(2,116 posts)i've been here since the beginning and i remember this guy, claimed to be some kind of statistician i think, and he either did or posted many, many statistical analyses of 2000 era elections. don't know whatever happened to him or whether his studies were debunked or anything. they sounded convincing to me.
diva77
(7,640 posts)one is a study of the 2014 election; the other for 2016 primaries
E2014: A Basic Forensic Analysis
Jonathan D. Simon
http://electiondefensealliance.org/files/E2014--A%20Basic%20(Chilling)%20Forensic%20Analysis.pdf
(am having trouble getting link to work via click, so be sure to copy link above and paste in browser)
An Electoral System in Crisis
lulu Friesdat & Anselmo Sampietro
in collaboration with Fritz Scheuren
July 18, 2016
https://static1.squarespace.com/static/571db55ee707ebff30822be1/t/578d64fe6b8f5bebe7f37292/1468884229114/An+Electoral+System+in+Crisis+-+Friesdat-Sampietro-Scheuren+_20160718A+FINAL.pdf
dlk
(11,561 posts)Dark n Stormy Knight
(9,760 posts)been enough to cause a massive uprising, but I guess everyone was too busy wathcing the Apprentice and cheering on the thuggish vulgarian yelling, "You're fired!!!"
FakeNoose
(32,634 posts)But Russians hacking individual states through the internet is relatively new - only for the last couple of elections.
The GOP has known these things and done nothing, because it benefits them.
Democrats are guilty of being lazy and looking the other way while this happened. We must be vigilant all the time because they will never stop trying to cheat. The GOP can't win unless the cheat.
Dark n Stormy Knight
(9,760 posts)And she agreed, by the way.
I know the Ruskie hacking is newish, but it seems if we'd dealt with the earlier known hacking, we'd have been in a better position to derail the new hacking. Not to mention, we'd have dealt with the earlier problems, regardless of what came later.
Nitram
(22,794 posts)and present danger by failing to take strong action on the issue of the vulnerability voting machines. We want a paper trail with every vote in this country!