Colorado Agency 'Improperly' Posted Passwords for Its Election System Online (gizmodo.com) 14
For months, the Colorado Department of State inadvertently exposed partial passwords for voting machines in a public spreadsheet. "While the incident is embarrassing and already fueling accusations from the state's Republican party, the department said in a statement that it 'does not pose an immediate security threat to Colorado's elections, nor will it impact how ballots are counted,'" reports Gizmodo. From the report: Colorado NBC affiliate station 9NEWS reported that Hope Scheppelman, vice chair of the state's Republican party, revealed the error in a mass email sent Tuesday morning, which included an affidavit from a person who claimed to have downloaded the spreadsheet and discovered the passwords by clicking a button to reveal hidden tabs.
In its statement, the Department of State said that there are two unique passwords for each of its voting machines, which are stored in separate places. Additionally, the passwords can only be used by a person who is physically operating the system and voting machines are stored in secure areas that require ID badges to access and are under 24/7 video surveillance.
"The Department took immediate action as soon as it was aware of this, and informed the Cybersecurity and Infrastructure Security Agency, which closely monitors and protects the [country's] essential security infrastructure," The department said, adding that it is "working to remedy this situation where necessary." Colorado voters use paper ballots, ensuring that a physical paper trail that can be used to verify results tabulated electronically.
In its statement, the Department of State said that there are two unique passwords for each of its voting machines, which are stored in separate places. Additionally, the passwords can only be used by a person who is physically operating the system and voting machines are stored in secure areas that require ID badges to access and are under 24/7 video surveillance.
"The Department took immediate action as soon as it was aware of this, and informed the Cybersecurity and Infrastructure Security Agency, which closely monitors and protects the [country's] essential security infrastructure," The department said, adding that it is "working to remedy this situation where necessary." Colorado voters use paper ballots, ensuring that a physical paper trail that can be used to verify results tabulated electronically.
Re:What's going on in Michigan? (Score:4, Informative)
five seconds of search revealed the "expert" "is awaiting trial on felony charges related to allegedly breaching election machines". maybe not the best source of information. i recall pjmedia also posted loads of bogus election denial content in 2020
improperly? (Score:3)
Is there a proper way to post your passwords list on your website?
Re: (Score:2)
Is there a proper way to post your passwords list on your website?
Voting machines with passwords are scary. Just use public key auth so no passwords need to be transmitted at all and every authorized person or system can easily be tracked when they access the system even if they use a single account.
How quaint (Score:1)
Re: (Score:2)
Re: (Score:2)
Speech to text not your friend?
Why do voting machines need passwords? (Score:2)
b. Do they in fact provide a paper-trail?
How very unfortunate (Score:2)
... considering that this election is said to be the most important in recent American history.
Standardize on paper ballots or analogue machines only. None of this electronic bs. It's simply too untrustworthy on several fronts.
Re: (Score:2)
I can't recall an election where this was NOT said. Can you?