Cyberattack on Tennessee election website preceded outage

May 11, 2018 by Adrian Sainz

An intentional cyberattack and suspicious activity by foreign computers preceded the crash of a website that was reporting results in a Tennessee county's primary elections, a cyber-security firm said Friday.

The Knox County elections website suffered the attack, and "a suspiciously large number of foreign countries" accessed the site on May 1, according to the report by Sword & Shield Enterprise Security. The firm hired by the county said those actions were among the likely causes of the crash, which also included a large increase in errors and in overall traffic.

Officials have said no voting data was affected, but the site was down for an hour after the polls closed—causing confusion among voters—before technicians fixed the problem.

The report notes that no compromise of official election data could have happened. Physical access would have been the only way to manipulate official data, and access to the results was closely guarded.

Investigators said there were multiple attempts to attack a vulnerable part of the site, but it's not clear where the so-called "denial of service" attack originated from.

"The effect was clearly a loss of service, but it is unclear, with the information provided, if the outage was an intended event or a side effect of the events," the report said.

David Ball, the county's deputy director of information technology, said the vulnerability issue identified by Sword & Shield has been fixed. Additional safeguards also have been put into place.

The report said the website received requests for access from about 100 countries. The most foreign requests came from Canada, Great Britain and Chile. Source addresses from Ukraine and Great Britain tried to exploit a vulnerability in the website, the report said.

Dan Wallach, a computer science professor at Rice University, notes that the internet is a "messy place" with a lot of background traffic.

"It is often quite difficult to understand what is an attack, and what is just random traffic," Wallach said.

However, if it is a specific attack, then it would be difficult to find its origin because attackers are very good at hiding their location, Wallach said.

"What attackers will do is they'll break into other computers and then launch their attacks from there," he said.

Joyce McCants, a spokeswoman for the FBI in Knoxville, said Knox County has not reached out to the FBI in relation to the website crash.

Explore further: North Carolina county leaders say second cyberattack failed

Related Stories

When the Internet goes down

March 2, 2018

"A third of the Internet is under attack. Millions of network addresses were subjected to distributed denial-of-service (DDoS) attacks over two-year period," reports Warren Froelich on the UC San Diego News Center website. ...

You don't need to be an IT expert to mastermind cyber-attacks

August 10, 2016

Anyone with a sinister mind and some dollars to spare could mastermind a cyber-attack such as the one the Australian Bureau of Statistics is claiming hit the Census website last night, according to a Deakin University cyber ...

Hackers target Ukraine's election website

October 26, 2014

Hackers attacked Ukraine's election commission website Saturday on the eve of parliamentary polls, officials said, but they denied Russian reports that the vote counting system itself had been put out of action.

Recommended for you

After a reset, Сuriosity is operating normally

February 23, 2019

NASA's Curiosity rover is busy making new discoveries on Mars. The rover has been climbing Mount Sharp since 2014 and recently reached a clay region that may offer new clues about the ancient Martian environment's potential ...

Study: With Twitter, race of the messenger matters

February 23, 2019

When NFL player Colin Kaepernick took a knee during the national anthem to protest police brutality and racial injustice, the ensuing debate took traditional and social media by storm. University of Kansas researchers have ...

Solving the jet/cocoon riddle of a gravitational wave event

February 22, 2019

An international research team including astronomers from the Max Planck Institute for Radio Astronomy in Bonn, Germany, has combined radio telescopes from five continents to prove the existence of a narrow stream of material, ...


Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.