Introduction
As the 2024 US presidential election approaches [1] [2] [5] [9], the integrity of the democratic process is under significant threat from various cyber-related challenges. These include misinformation, cyberattacks [5] [6] [7], and the rise of generative AI technologies [6], such as deepfakes. This situation necessitates heightened vigilance and robust cybersecurity measures to protect the electoral process.
Description
As the 2024 US presidential election on November 5 approaches, the integrity of the democratic process faces significant threats from misinformation [6], cyberattacks [5] [6] [7], and the rise of generative AI technologies [6], including deepfakes [6]. Cyber adversaries [2] [5] [9], including state-sponsored actors [2] [5] [6] [9], financially motivated criminals [8], and hacktivist groups [2] [5] [7] [8] [9], are increasingly active [2] [9], posing substantial risks to the electoral process [4]. A report from FortiGuard Labs highlights several key cyber threats targeting US-based entities [2], voters [1] [2] [4] [5] [6] [7] [9], and the electoral framework [2].
Phishing scams are on the rise [2], with threat actors creating and selling phishing kits on the darknet that impersonate presidential candidates [2] [7] [9], including Donald Trump and Vice President Kamala Harris [3]. Priced at $1,260 each, these kits aim to harvest personal information such as names [1] [4], addresses [1] [2] [4] [5] [6], and credit card details from voters and donors. Since the start of 2024 [1] [5], over 1,000 new potentially malicious domains related to the election have been registered [2] [4] [7] [9], designed to deceive users into believing they are visiting official campaign pages [3]. Many of these domains are hosted by reputable providers like Amazon Web Services (AWS) and Cloudflare, indicating that attackers are leveraging these services to enhance the legitimacy of their operations [1] [4].
The darknet is rife with sensitive US data for sale [2] [4] [9], including Social Security numbers (SSNs) and credentials that could facilitate misinformation campaigns and fraudulent activities [2] [4] [5] [9]. Research indicates that billions of records, including usernames [5], email addresses [1] [4], and passwords [1] [4], are available on darknet forums [2] [5], posing risks for credential-stuffing attacks [1] [2] [4]. Approximately 3% of posts on these forums involve databases related to business and government entities [4], raising significant concerns about the integrity of the electoral process [2]. Notably, there has been a 28% year-over-year increase in ransomware attacks against US government agencies in 2024 [7], which could undermine public trust in government institutions during the election [2]. The report indicates that 23 state-sponsored adversaries [3], with China being the most prominent [3], followed by Russia and Iran [3], are actively targeting the US [3] [10], anticipating a rise in cyber espionage and misinformation activities aimed at disrupting or manipulating the electoral process.
Hacktivist groups [2] [5] [7] [8] [9], particularly from Russia and Iran [8], are also involved in disruptive and destructive activities [8], often with connections to state-sponsored operations [8]. Fraudulent fundraising websites imitating legitimate platforms like ActBlue have emerged, complicating the electoral landscape further [2]. The concentration of malicious domains associated with a limited number of IP addresses suggests a coordinated effort by threat actors to manage large-scale cyber campaigns [2]. Additionally, cybercriminals are increasingly leveraging AI-generated content and deepfake technology, with services available for as low as $15, to create convincing mobile scams that spread false narratives, potentially affecting voter outcomes [1].
To address these challenges [6], it is essential for citizens [2], business leaders, and election officials to remain vigilant [2]. Strengthening cybersecurity measures at all levels of government is crucial [6], including prioritizing cybersecurity training [2], enforcing multi-factor authentication [1] [2] [4] [9], and implementing strong password policies [1]. Regular updates to software and endpoint protection solutions [1], along with AI-powered threat detection systems, are critical to safeguarding the integrity of the electoral process as the election date approaches [2]. The Federal Artificial Intelligence Risk Management Act of 2023 aims to guide federal agencies in managing AI-related risks [6], while states like California and New York are enacting laws to regulate AI systems [6]. Public awareness campaigns are also necessary to combat the risks posed by disinformation and cyberattacks on election infrastructure [7], as these challenges pose significant risks to US democracy. Security leaders advocate for legislation that imposes penalties for the creation and distribution of malicious deepfakes and misinformation [6], emphasizing the need for international cooperation on AI regulation and targeted cyber threats [6]. Vigilance among voters [6], campaign workers [6], and media professionals is crucial to ensure a secure and transparent electoral process [6].
Conclusion
The 2024 US presidential election faces unprecedented cyber threats that could undermine the democratic process. Mitigating these risks requires a concerted effort from government agencies, businesses [2] [4], and the public. Strengthening cybersecurity measures [4] [6], enacting relevant legislation, and raising public awareness are essential steps to protect the integrity of the election. As technology continues to evolve, ongoing vigilance and adaptation will be necessary to safeguard future electoral processes.
References
[1] https://www.darkreading.com/cyberattacks-data-breaches/attackers-unleash-flood-potentially-disruptive-election-related-activity
[2] https://marketwirenews.com/news-releases/fortinet-fortiguard-labs-observes-darknet-activity-x-5626766282886075.html
[3] https://www.benzinga.com/government/24/10/41346351/cybersecurity-firm-warns-of-threats-to-2024-presidential-election-integrity
[4] https://www.fortinet.com/corporate/about-us/newsroom/press-releases/2024/fortinet-fortiguard-labs-observes-darknet-activity-targeting-the-2024-united-states-presidential-election
[5] https://betanews.com/2024/10/15/dark-web-activity-targets-us-election/
[6] https://www.trustwave.com/en-us/resources/blogs/trustwave-blog/combating-misinformation-and-cyber-threats-to-secure-the-2024-us-election/
[7] https://www.secureworld.io/industry-news/cyber-challenges-usa-election-2024
[8] https://thenimblenerd.com/article/cyber-shenanigans-2024-elections-wild-ride-with-hackers-hacktivists-and-nation-states/
[9] https://www.globenewswire.com/news-release/2024/10/15/2963304/0/en/Fortinet-FortiGuard-Labs-Observes-Darknet-Activity-Targeting-the-2024-United-States-Presidential-Election.html
[10] https://www.infosecurity-magazine.com/news/darknet-activity-increases/
