File-sharing software on state election servers could expose them to intruders

by
Ars Staff
from Ars Technica - All content on (#42AGN)
GettyImages-1016765456-800x533.jpg

Enlarge / Stickers await residents who vote at the Parks and Recreation Center building on August 14, 2018, in Elkhorn, Wisconsin. (credit: Scott Olson/Getty Images)

As recently as Monday, computer servers that powered Kentucky's online voter registration and Wisconsin's reporting of election results ran software that could potentially expose information to hackers or enable access to sensitive files without a password.

The insecure service run by Wisconsin could be reached from Internet addresses based in Russia, which has become notorious for seeking to influence US elections. Kentucky's was accessible from other Eastern European countries.

The service, known as FTP, provides public access to files-sometimes anonymously and without encryption. As a result, security experts say, it could act as a gateway for hackers to acquire key details of a server's operating system and exploit its vulnerabilities. Some corporations and other institutions have dropped FTP in favor of more secure alternatives.

Read 21 remaining paragraphs | Comments

index?i=9DvN6uV3yYE:snUhH7fBkIM:V_sGLiPB index?i=9DvN6uV3yYE:snUhH7fBkIM:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments