An FBI bulletin warns of possibly linked attacks on two states' election databases.
The FBI warned election officials to enhance the security of systems after it found evidence foreign hackers penetrated databases in two state systems, Yahoo reports.
An Aug. 18 bulletin from the FBI’s Cyber Division stated hackers were able to exploit a Structured Query Language injection vulnerability to exfiltrate data from one state’s Board of Election website in July and attempted intrusions on another’s in August. The FBI alert lists eight IP addresses for the perpetrators and one used in both incidents, indicating the attacks could be linked.
The methods, tools and a previously flagged IP address resemble other suspect Russian state-sponsored attacks, an expert told Yahoo News.
» Get the best federal technology news and ideas delivered right to your inbox. Sign up here.
Election security has been a hot-button issue a series of suspected Russian-sponsored attacks compromised the Democratic Party and media organizations allegedly to sway voter opinion. Earlier this month, Homeland Security Secretary Jeh Johnson suggested the federal government label elections systems as critical infrastructure.
The FBI issued the bulletin three days after Johnson had a call with representatives from National Association of Secretaries of State and U.S. Election Assistance Commission to offer DHS assistance addressing cybersecurity risks within each state’s election systems.
At the time of the call, per Johnson, DHS was not aware of any credible cyberthreats related to 2016 general election systems. Some swing states declined DHS' assistance, including Georgia and Pennsylvania, stating they will rely on in-house security crews.
The FBI bulletin asks states and election boards to review activity logs for similar tools and techniques, and report them to local FBI field offices.