Skip to footer

Illinois voter registry breach smaller than first thought

State election officials suspect hackers stole the personal information of 86,000 voters, not 200,000 it first suspected. 

|
Chris Keane/AP
A voter peels off a sticker during North Carolina presidential primary, March 2016. In Illinois, the information for 90,000 voters was breached, down from 200,000 first reported.
  • By Ben Rosen Staff

An admission by an Illinois election official last week that hackers stole the personal information of 200,000 voters incited worries about how to safeguard the Nov. 8 elections across the country.

It turns out the breach was smaller than the state had thought, according to an update from the Illinois State Board of Elections.

The board suspects hackers viewed the records of 86,000 voters, according to an Aug. 31 press release. The board confirmed 700 of those records had been viewed. Hackers could have breached voters’ names, address, and dates of birth. If a voter listed it, hackers could have also viewed his or her phone number, email address, driver’s license number, or the last four digits of his or her Social Security number.

“[But] the board is sure no records have been altered or changed in any way,” reads the release.

Along with the leak of Democratic National Committee emails in June, news of breaches of the Illinois and Arizona voting systems has led to concerns about how to protect the integrity of future elections. But, the board’s update underscores state and federal officials still don’t know these hackers’ motivations and how credible a threat they pose.

“We don’t know whether the hackers were engaging in espionage, attempting to manipulate the election, or just harvesting low-hanging cyber fruit for their financial gain,” Jessica Beyer, a cybersecurity postdoctoral fellow at the University of Washington, and author of “Expect Us: Online Communities and Political Mobilization,” writes in a column for Reuters.  

“Neither the DNC nor the voter registration attacks,” she adds, “should come as a surprise. With so many actors, motives, and targets, cyber attacks are inevitable.”

When Illinois officials became aware of a breach in July, they shut down their voter registration system for 10 days.

“This was a highly sophisticated attack most likely from a foreign [international] entity,” Kyle Thomas, director of voting and registration systems for the state board of elections, wrote in a Facebook message sent that month to all election authorities in the state.

With an FBI investigation into the breach ongoing, the board in Illinois is now “confident” no information in the database was added, changed, or deleted, and many of the voter records viewed contained information otherwise publicly available from other sources, according to the Aug. 31 release.

In Arizona, meanwhile, it appears hackers used malware steal the username and password of just a single election official in Gila County, according to The Washington Post.

Yet, because hackers could, in theory, sway elections, state and federal officials aren’t taking any precautions.

“Having access to voter rolls, for example, could allow hackers to digitally alter or delete registration information, potentially denying people a chance to vote on Election Day,” writes Politico’s Cory Bennett and Eric Geller. “Or news of the attack could simply fuel further distrust in the U.S. election system, which Trump has repeatedly alleged is ‘rigged.’ ”

The White House, FBI, and Department of Homeland Security have all taken steps to understand this threat. The White House has ordered a Cold War-era organization, the Foreign Denial and Deception Committee, to perform a classified study of the implications of Russia’s recent hack of the DNC, according to NBC News. The FBI and Department of Homeland Security have also warned all election officials of the threat of possible cyber threats, and have offered their assistance to these state entities to protect their systems.

Cybersecurity experts have also warned that electronic voting systems are an easy target for hackers, as The Christian Science Monitor’s David Iaconangelo reported Thursday. But, 35 states backup ballots through an electronic paper trail, allowing election officials to cross-reference electronic voting records with physical ones. But the Verified Voting Foundation says five states – N.J., Delaware, Louisiana, Georgia, and South Carolina – lack such a system. 

These concerns shouldn’t come as a surprise, however. Ms. Beyer, the cybersecurity postdoctoral fellow, writes it’s the age we live in.

“These records attacks highlight the need for every organization that manages private data to work harder at making it secure,” she writes. “Whoever the actor and whatever their motive, the world is rich with appealing data targets.” 

You've read  of  free articles. Subscribe to continue.
Real news can be honest, hopeful, credible, constructive.
What is the Monitor difference? Tackling the tough headlines – with humanity. Listening to sources – with respect. Seeing the story that others are missing by reporting what so often gets overlooked: the values that connect us. That’s Monitor reporting – news that changes how you see the world.
editor@csmonitor.com
Subscribe
Mark Sappenfield
Editor

Dear Reader,

About a year ago, I happened upon this statement about the Monitor in the Harvard Business Review – under the charming heading of “do things that don’t interest you”:

“Many things that end up” being meaningful, writes social scientist Joseph Grenny, “have come from conference workshops, articles, or online videos that began as a chore and ended with an insight. My work in Kenya, for example, was heavily influenced by a Christian Science Monitor article I had forced myself to read 10 years earlier. Sometimes, we call things ‘boring’ simply because they lie outside the box we are currently in.”

If you were to come up with a punchline to a joke about the Monitor, that would probably be it. We’re seen as being global, fair, insightful, and perhaps a bit too earnest. We’re the bran muffin of journalism.

But you know what? We change lives. And I’m going to argue that we change lives precisely because we force open that too-small box that most human beings think they live in.

The Monitor is a peculiar little publication that’s hard for the world to figure out. We’re run by a church, but we’re not only for church members and we’re not about converting people. We’re known as being fair even as the world becomes as polarized as at any time since the newspaper’s founding in 1908.

We have a mission beyond circulation, we want to bridge divides. We’re about kicking down the door of thought everywhere and saying, “You are bigger and more capable than you realize. And we can prove it.”

If you’re looking for bran muffin journalism, you can subscribe to the Monitor for $15. You’ll get the Monitor Weekly magazine, the Monitor Daily email, and unlimited access to CSMonitor.com.

Subscribe to insightful journalism

QR Code to Illinois voter registry breach smaller than first thought
Read this article in
https://www.csmonitor.com/USA/2016/0904/Illinois-voter-registry-breach-smaller-than-first-thought
QR Code to Subscription page
Start your subscription today
https://www.csmonitor.com/subscribe