Two US State Election Systems Hacked to Steal Voter Databases — FBI Warns



Nordnet Baritof
Nordnet Baritof
  • Technical Writer
  • Entrepreneur
  • Founder and CEO
  • Developer
  • Blogger and IT Analyst
2016-08-30 11:49:34

| Share
| Share
| Share
Two US State Election Systems Hacked to Steal Voter Databases — FBI Warns

A group of unknown hackers or an individual hacker may have breached voter registration databases for election systems in at least two US states, according to the FBI, who found evidence during an investigation this month.


Read Also : 


Although any intrusion in the state voting system has not been reported, the FBI is currently investigating the cyberattacks on the official websites for voter registration system in both Illinois and Arizona, said Yahoo News.

The FBI's Cyber Division released a "Flash Alert" to election offices and officials across the United States, asking them to watch out for any potential intrusions and take better security precautions.

"In late June 2016, an unknown actor scanned a state's Board of Election website for vulnerabilities using Acunetix, and after identifying a Structured Query Language (SQL) injection (SQLi) vulnerability, used SQLmap to target the state website," the FBI alert reads.
"The majority of the data exfiltration occurred in mid-July. There were 7 suspicious IPs and penetration testing tools Acunetix, SQLMap, and DirBuster used by the actor."

Read Also : 

The SQL injection attack on Illinois state board website took place in late July, which brought down the state’s voter registration for ten days and siphoned off data on as many as 200,000 registered voters.

However, the Arizona attack was less significant, as the hackers were not able to discover any potential loophole using a vulnerability scanning tool, which could have allowed them to steal any data successfully.

Read Also : 
In the wake of these attacks, the FBI also advised ‘Board of Elections’ of all States to investigate their server logs and determine whether any similar SQL injection, privilege escalation attempts, or directory enumeration activity has occurred.

Last December, a misconfigured 300GB of the database also resulted in the exposure of around 191 Million US Voter records, including their full names, home addresses, unique voter IDs, date of births and phone numbers.
 

Why Blame Russia, Always? There's No Evidence Yet


The attacks against the state election boards came weeks after the DNC hack that leaked embarrassing emails about the party, leading to the resignation of DNC (Democratic National Committee) Chairwoman Debbie Wasserman Schultz.

Some security experts and law enforcement agencies raised concerns about politically motivated hacking, pointing finger over the Russian state-sponsored hackers in an attempt to damage Hillary Clinton’s presidential campaign.


Read Also : WhatsApp to Share Your Data with Facebook — You have 30 Days to Stop It
 

Although the FBI does not attribute the recent attacks to any particular hacking group or country, Yahoo News links the attacks to Russia on the basis of IP addresses involved.

However, those IP addresses that the FBI said were associated with the attacks belong to a Russian VPN service, which does not conclude that the Russians are behind the attacks.

It's believed that the hacks were carried out to disturb the election process either by altering voting totals in the database or by modifying the voter registration page.

 

Script-Kiddie Move Reveals Everything:


But, by scanning the website with a vulnerability scanner and downloading the whole database, the ‘script-kiddies’ itself made a rod for their own back, which indicates that neither they are sophisticated state-sponsored hackers, nor they had any intention to influence the election covertly.

Neither the Illinois nor Arizona board of elections have responded to these hack attempts.

Source : thehackernews

click the next for more ...
Hackers Takes Down Websites Of Israel s Prime Minister Bank Of Israel
Hackers Takes Down Websites Of Israel s Prime Minister Bank Of Israel
Hackers Takes Down Websites Of Israel s Prime Minister Bank Of Israel

.
Marvel Comics Giant Stan Lee Has Died At 95
Marvel Comics Giant Stan Lee Has Died At 95

Stan Lee, the colorful Marvel Comics patriarch who helped usher in a new era of superhero storytelling -- and saw his creations become a giant influen


Marvel Comics Giant Stan Lee Has Died At 95
How Does Android s New In-app Updates API Work

Notice that the Android§apostrofe§s new In-app Updates API doesn§apostrofe§t force or lock out users from the app if they chose no


Marvel Comics Giant Stan Lee Has Died At 95
Capitan has slept in the grave of his owner every night

For the past 6 years, a dog named Capitan has slept in the grave of his owner every night. His owner, Miguel Guzman died in 2006 and Capitan dissapear


Marvel Comics Giant Stan Lee Has Died At 95
Kendall Jenner Has Been A Granted Permanent Restraining Order Against Her Alleged Stalker

Kendall Jenner§apostrofe§s supposed stalker was requested to avoid the supermodel for a long time on Friday subsequent to being gotten on her proper


Marvel Comics Giant Stan Lee Has Died At 95
So Your Dog Has Canine Cancer Here s What to do Next

One in four dogs will be diagnosed with canine cancer in their lifetime, and cancer is the second leading cause of death in older animals. That’


Marvel Comics Giant Stan Lee Has Died At 95
7 facts about roads that will tank up your trick

They’re a part of our everyday life, and we don’t have to think about them much. They’re just kind of, there, to be driven on and walked beside.



© 2013-2018 best of geeks. All rights reserved.