기본 콘텐츠로 건너뛰기

The ABCs of Hacking a Voting Machine


A hacker who successfully infiltrated a voting machine at last year's DEF CON will demonstrate at Black Hat USA how he did it, as well as what he later found stored on other decommissioned WinVote machines.
It took computer scientist Carsten Schuermann just minutes last year to hackinto one of the 30 pieces of voting equipment sitting in a cramped room in Caesar's Palace that housed DEF CON's maiden Voting Machine Village. He fired up his laptop, quickly spotted a WinVote voting machine on the Wi-Fi network using Wireshark, and then typed in a command that launched a Metasploit exploit.
"And, poof, that was it," Schuermann says. He was able to access the Windows XP-based voting machine using the Remote Desktop Protocol (RDP), exposing real election and voting data that was still stored in it. The voting machine's inherent weaknesses made it an easy mark: It ran XP (Service Pack 0), Wi-Fi and RDP were enabled by default, it employed the outdated WEP security protocol, and the majority of WinVote machines he had studied all used the same password: "abcde."  
"The only changes I did was turn off the machines remotely, and we added new files to the directories," he says. His exploit used an old buffer overrun flaw in XP, which apparently had not been patched on the voting machine.
Schuermann had been studying security weaknesses in the WinVote machine back at his home office at the IT University of Copenhagen in Denmark. He now has eight decommissioned WinVote machines that were used in previous elections – four from Virginia – that he's been dissecting and looking for clues of compromise and hacking attempts. He'll be back in Vegas in August at Black Hat USA, demonstrating just how he hacked the machine at DEF CON, as well as sharing some research findings from the WinVote machines he's been studying. 
"I'm going to bring a machine and show how easy it is to hack ... exploiting the same vulnerability" used in last year's DEF CON contest, he says. Schuermann, an academic expert in election security who has been studying election security for a decade, used a root shell script to control the machine, and says he can change data on the voting machines. The notoriously insecure WinVote machines – which don't include a paper-trail feature – were replaced in Virginia prior to the 2016 election, but some localities, including some in Pennsylvania, still use them.
"Since these machines all have the same access point they connect to, once you know how to get into that wireless network ... and use the 'abcde' password, then you have networking access to the machine and can deploy the exploit. Then you're in," he says. "The scary thing is you could make this automatic: You could drive by polling stations and make changes on all of the totals in the voting machines."
Schuermann has been conducting forensic investigations on the disks in the WinVote machines using the so-called Autopsy tool. "I was trying to understand if everything was OK with the machine or was it hacked," he says.
But because the machine's XP platform doesn't provide system logging, there's no way to track whether someone connected remotely to the machine. "There's no trail of who accessed it," Schuermann says. So the only way to spot a potential hack is the data on the disks.
So far, Schuermann has found traces of MP3 files on the disks of one of the WinVote machines, including a Chinese music file, he says. It appears the machine was used to record songs from CDs and play MP3s.
"But there's no evidence real hacking happened" on the machines so far, he says, and no signs of election-meddling in vote counts. 
Even so, Schuermann says hacking one of the machines would have been fairly simple. "If anyone really knows what they are doing, they could hack those machines in a minute. And once you've hacked one, you know [how] to hack [others]," he says.
The biggest risk overall, he says, is citizens losing trust in an election and the voting systems if hackers are able to break into them and alter or change results. "Now, with the Russia investigation and election interference, people are becoming more aware that this is not only possible but also likely someday. That's the scary part," he says. 
His message for the US midterm elections: "How important [a] paper [trail] is," he says.
Home Page Photo Credit: Monica M. Davey / Epa/Shutterstock  
Related Content:

Kelly Jackson Higgins / 7/25/2018 / 07:00 PM

댓글

댓글 쓰기

이 블로그의 인기 게시물

BLACK LABEL Secured Automobile Smart Key Solution

Developed by MERCEDES BENZ for the first time 20 years ago, the SmartKey has been very convenient for motorists. However, since this technology has been applied so far, the smart key security has not been upgraded so that even if a simple wireless hacking device is purchased on the market, the password which is exchanged between the car and the smart key is wirelessly captured, the car door is opened, Things are happening in a random way. The biggest problem in smart key security so far is that the identification code exchanged between the smart key and the key is a fixed value and the security is difficult to hack the fixed single code value. However, if a mutual verification system, which is a security solution of BLACK LABEL, is applied to a smart key and a vehicle, it is impossible to access the vehicle even if the identification code value is fixed in a single code, Can be made. This is because the code that has been changed once and then discarded is discarded. ...
댓글 쓰기
자세한 내용 보기

Avoiding Cryptocurrency Scams

The Money Makers Club now has 6 of 15 available seats. Learn more here! Everyone is always focused on the potential upside of buying cryptocurrency, but they forget there are always going to be hidden downsides as well. The downside risk of investing in cryptocurrencies is huge. Not only do you need to worry about the high volatility of these assets, but you also need to bear in mind that theft is always a possibility, and the assets are poorly regulated.  Lack of Regulation Creates Opportunity for Thieves In the equity and debt markets, there are stringent controls on the way capital is invested and the rules that govern investors. The goal is to protect investors from any fraud or wrongdoing, and even though there are times where it takes regulators longer than normal to catch on (see: Bernie Madoff), the general effect is a safer investment marketplace.  Fraud can occur in a variety of ways. It can be the result of false claims by the company regarding the s...
댓글 쓰기
자세한 내용 보기

Cold Wallet Vs. Hot Wallet: What’s The Difference?

You may have heard about cold and hot digital wallets but do you know how they are different from each other? The simplest way to describe the difference between a cold wallet and a hot one is this: hot wallets are connected to the internet while cold wallets are not. Most people who hold digital assets have both cold and hot wallets because they are designed for different purposes. Hot wallets are like checking accounts while cold wallets are similar to savings accounts. People who have digital assets keep a small amount of money in their hot wallets for purchasing stuff. They keep the vast majority of their digital coins in their cold wallet. If you like Medium articles in video form, you’re in luck: SECURITY Q: Why do people keep most of their digital coins in a cold wallet? A: Hackers cannot steal digital assets that are not connected to the internet. Q: So then, how safe are hot wallets? A: The security of hot wallets is dependent upon the security ha...
댓글 쓰기
자세한 내용 보기