The scenario that keeps cybersecurity experts up at night is simple. A cybercriminal could inject malware on multiple networks that affect voter registration databases. Then activate it just before the election. Or they could target voter tabulation and reporting systems.
With ransomware, a criminal may just target a county or state without knowing which part of the network they are hitting. But as the infection spreads and the malware begins to creep along, the entire network is impacted, including the election infrastructure.”
According to New York Times reporting, a February advisory issued by the FBI recommends local governments separate election-related systems from county and state systems to ensure they aren’t affected in an unrelated attack.
The FBI and Department of Homeland Security have both issued advisories to local governments, including recommendations for preventing attacks.
States have been planning for worst-case scenarios and hardening election infrastructure. Many of them have compartmentalized the data to make it more secure.
