Widespread vulnerabilities in US voting and government systems

rcjordan · October 01, 2024, 03:34:23 PM

https://www.techspot.com/news/104939-security-researcher-uncovers-widespread-vulnerabilities-us-government-systems.html

I couldn't find the old thread here. Government (all levels), hospitals, utilities, etc. are the worst at having old, vulnerable legacy software & hardware.

littleman · October 01, 2024, 08:10:09 PM

Maybe ten or twelve years ago I was at something where there was a "high tech" all electronic voting machine on display. It apparently recorded the vote and then sent a backup to a central box adjacent to it. The whole setup proprietary and and without audit. I had a conversation with the representative. I said, electronic is fine, but there needs to be a real time paper back up that is recorded and on display for the voter; this way if the machine results need to be verified it could be compared to the paper backup. The representative said that that's what the attached black box was for. I said it wasn't the same thing. I got a blank stare.

rcjordan · October 01, 2024, 09:11:25 PM

>hospitals

https://www.theregister.com/2024/09/30/texan_hospital_ransomware/

Ransomware forces Texas hospital to turn away ambulances

This year I've received 4 Data Breach notices. All of them have been pharmacy-related.

>paper backup

That is one of my lesser concerns with online payments -no hardcopy audit trail. AFAIK, the IRS won't accept digital proof during an audit ...for good reason.

grnidone · October 02, 2024, 12:46:26 AM

Astronauts can vote from space. And have been able to since 1997.

https://www.nasa.gov/missions/station/how-nasa-transmits-votes-from-the-space-station/

Why the hell can't the rest of us?

ergophobe · October 02, 2024, 02:23:48 AM

> paper backup

A friend of mine who refuses to get electronic statements likes to say, "The call it a paper trail for a reason!"

rcjordan · October 02, 2024, 02:40:09 AM

>refuses to get electronic statements

Ditto

Brad · October 02, 2024, 08:36:54 AM

>Ditto

Ditto, ditto.

Y'all thought I was sleeping in the back of the class, but I was paying attention to the "never bank online" and such. That extends to bills. I get deluged with mail, write a lot of checks and pay a lot of postage but it works. Whereas, a friend of mine who pays everything electronically, had his bank account compromised and it was a nightmare straightening it all out.

rcjordan · October 02, 2024, 03:34:11 PM

https://www.theregister.com/2024/10/02/cve_pileup_nvd_missed_deadline/

National Institute of Standards and Technology's (.gov) national security flaw database still backlogged with 17K+ unprocessed bugs. Not great • The Register