Read on Twitter
DEF CON 26 Report
A Hacking Event covering Cyber Vulnerabilities in U.S. Election Equipment, Databases & Infrastructure
SEPT 2018*
*In 10 mins, an 11-year old hacked into a mock up of Florida’s election results website, changing its reported vote totals
THREAD + EVIDENCE
A Hacking Event covering Cyber Vulnerabilities in U.S. Election Equipment, Databases & Infrastructure
SEPT 2018*
*In 10 mins, an 11-year old hacked into a mock up of Florida’s election results website, changing its reported vote totals
THREAD + EVIDENCE
The Election Companies/Equipment at the Event
Dominion: Premier/Diebold AccuVote TSx
Dominion: Diebold AccuVote OS
Dominion: AVC Edge
ES&S: ExpressPoll Tablet Electronic Pollbook
ES&S: M650
AVS: WINVote
AVC Edge activation device
The Hackers had to use a Free Kali Linux Toolset
Dominion: Premier/Diebold AccuVote TSx
Dominion: Diebold AccuVote OS
Dominion: AVC Edge
ES&S: ExpressPoll Tablet Electronic Pollbook
ES&S: M650
AVS: WINVote
AVC Edge activation device
The Hackers had to use a Free Kali Linux Toolset
Read all Highlights
*Bc the device in question is a high-speed unit designed to process a high volume of ballots for an entire county, hacking just one of these machines could enable a attacker to flip the Electoral College and determine the outcome of a presidential election.
*Bc the device in question is a high-speed unit designed to process a high volume of ballots for an entire county, hacking just one of these machines could enable a attacker to flip the Electoral College and determine the outcome of a presidential election.
Since we know that CHILDREN (Future Digital Soldiers) with NO BUDGET, EQUIPMENT or PRIOR KNOWLEDGE accomplished all the Exploits above WITHIN MINUTES, it begs the question...
What Media, State/Govt officials were in attendance, received the report & witnessed the Event Live?
What Media, State/Govt officials were in attendance, received the report & witnessed the Event Live?
Attendees ranged from SOS of CA, Alex Padilla, to several state & local election officials as well as top officials from DOD, NSA, DHS & U.S. Congress.
Media Coverage: WAPO, CNN, WSJ, The New Yorker, BBC, TIME, USA Today, CNBC, Reuters, NBC, LA Times, ABC & Politico.
Media Coverage: WAPO, CNN, WSJ, The New Yorker, BBC, TIME, USA Today, CNBC, Reuters, NBC, LA Times, ABC & Politico.
1 of the young Hackers was able to fully penetrate the last firewall in the exercise, this provided useful info on ways to better protect voter data (went ignored).
The report lists several Hacker Limitations.
Ex: No access to backend provisioning or voter registration systems.
The report lists several Hacker Limitations.
Ex: No access to backend provisioning or voter registration systems.
Dominion, Sequoia, Premier Voting Solutions, Diebold & ES&S.
AVC Edge is currently used in AZ, CA, FL, IL, LA, MO, NJ, PA, WA, WI.
AccuVote TSx is currently used in AZ, CA, CO, FL, GA, IL, IN, KA, MO, MS, OH, PA, TN, TX, UT, WI & WY.
*unsure if Machines were ES&S or Dominion*
AVC Edge is currently used in AZ, CA, FL, IL, LA, MO, NJ, PA, WA, WI.
AccuVote TSx is currently used in AZ, CA, CO, FL, GA, IL, IN, KA, MO, MS, OH, PA, TN, TX, UT, WI & WY.
*unsure if Machines were ES&S or Dominion*
"Third parties with no access to the election management
system can create rogue election definitions which are indistinguishable from real elections."
An attack can be distributed remotely with no physical access to the voting machine.
system can create rogue election definitions which are indistinguishable from real elections."
An attack can be distributed remotely with no physical access to the voting machine.
"Paperless, un-auditable systems are extremely vulnerable to this kind of attack, as the only record of a voter’s intent is in digital form."
As far as Physical Security... Locks were picked in under a MINUTE.
As far as Physical Security... Locks were picked in under a MINUTE.
It took the hackers 1 to 2 minutes to carry out attacks on the ES&S: M650.
The second note explains how "Trusting" the machine is, allowing for the ability to hide critical files and even complete file systems.
The second note explains how "Trusting" the machine is, allowing for the ability to hide critical files and even complete file systems.
The WINVote system contained a Chinese Song on four Machines indicating the the song was copied onto the machines at the same time the master software distribution for the WINVote was being built, i.e. before delivery to VA = MADE IN CHINA!
I can't even...
I can't even...
Report linked.
Maybe @DNI_Ratcliffe @ODNIgov can take a look at it.
Funny, it was broken down & provided to ALL the MSM talking heads asking "where all the proof of Fraud is"
@SidneyPowell1 / @CodeMonkeyZ / @LLinWood / @JennaEllisEsq / @realDonaldTrump https://www.documentcloud.org/documents/6777608-DEF-CON-26-Voting-Village-Report.html
Maybe @DNI_Ratcliffe @ODNIgov can take a look at it.
Funny, it was broken down & provided to ALL the MSM talking heads asking "where all the proof of Fraud is"
@SidneyPowell1 / @CodeMonkeyZ / @LLinWood / @JennaEllisEsq / @realDonaldTrump https://www.documentcloud.org/documents/6777608-DEF-CON-26-Voting-Village-Report.html
