Wisconsin officials say they have taken multiple steps to guard against the type of attack that Russian hackers unleashed on neighboring Illinois when they allegedly stole data about hundreds of thousands of Illinois voters before the 2016 election. But the August rollout of vote tallying through the WisVote system shows more work needs to be done. Here, a voting sign is seen outside the town hall in Lake Mills, Wis., on Aug. 14, 2018. Credit: Katie Scheidt / Wisconsin Center for Investigative Journalism
Related story

How hackers could attack Wisconsin’s elections and what state officials are doing about it

Previous coverage

Voting systems in Wisconsin, a key swing state, can be hacked, security experts warn

Reporter Grigor Atanesian talks with host Frederica Freyberg on Wisconsin’s Public Television’s Here & Now. He also appeared on Wisconsin Public Radio’s Central Time and on WIBA’s Madison in the Morning show.

Wisconsin officials say they have taken multiple steps in recent months to guard against the type of attack that Russian hackers unleashed on neighboring Illinois when they allegedly stole data about hundreds of thousands of Illinois voters before the 2016 election.

But the August rollout of vote tallying through the WisVote system — in which clerks inadvertently reported duplicate votes in nine counties — shows more work needs to be done.

In 2016, cyberactors gained access to 200,000 voter records in Illinois, according to an April report from FireEye, a California-based cybersecurity firm.

“Illinois maintains that no data was altered; however, it is possible that the actors had the ability to the modify or delete data,” the report said.

A July indictment by Special Counsel Robert Mueller put the number even higher, saying Russian hackers gained access to information about 500,000 voters in that breach, including “names, addresses, partial Social Security numbers, dates of birth and driver’s license numbers.”

The threat of Russian interference in U.S. elections continues to be “very high,” according to Luke McNamara, a senior analyst at FireEye.

Wisconsin Elections Commission officials say they have taken several steps recently to secure WisVote, the state’s vote tallying and voter registration database. They include:

  • Encrypted data so that “in the unlikely event of a breach, any data stolen would be unusable.”
  • A new WisVote access policy, effective July 23, that requires all users to be trained in computer security “best hygiene” practices. “New users must complete security training before gaining access to the system,” the commission said, “and existing users must complete the training prior to the November 2018 election.”
  • Multi-factor authentication, meaning “clerks will need more than a username and password to gain access to the system.”
  • Upgrading monitoring to detect any suspicious activity and continued regular “cyber hygiene scans” from the U.S. Department of Homeland Security, which began in 2016.

“WisVote has approximately 3,000 users, primarily the clerks in Wisconsin’s 1,853 municipalities and 72 counties and their employees,” the commission said. “Users of the system receive extensive online training, including security training. Users have access only to voter records in their jurisdiction, limiting the potential for damage in the event an authorized user’s credentials were stolen or of unauthorized actions by an authorized user.

In July, the FBI briefed Maryland state government that the private company hosting the statewide voter registration and election management system is controlled by Vladimir Potanin, a Russian oligarch with close ties to Russian President Vladimir Putin. Gov. Larry Hogan has asked the federal government to help it evaluate whether Maryland’s voting network is safe.

Wisconsin election officials say WisVote is more secure because it was developed in-house and is hosted on servers owned by the state and protected by the state Department of Administration Division of Enterprise Technology.

But nine Wisconsin counties reported inflated results to WisVote after the Aug. 14 primary, said Reid Magney, spokesman for the Elections Commission. The glitch was first reported by the conservative news outlet Media Trackers.

“Milwaukee County experienced problems when uploading its results into the new system, which caused creation of duplicate records,” Magney said, adding that the county initially certified the incorrect results.

Eight other counties — Ashland, Dunn, Florence, Iron, Oneida, Outagamie, Sheboygan and Washington — experienced similar problems that were corrected before the counts were certified, he said.

Magney said the problem was that the system was “timing out” while data were being uploaded.

“When the upload would resume, it would create duplicate records,” he said, adding, “It has been fixed.”

Grigor Atanesian

Grigor Atanesian is an Edmund S. Muskie fellow at the Wisconsin Center for Investigative Journalism. He is a former editor and deputy editor-in-chief of Esquire Russia. He has contributed to The Guardian, PRI (Public Radio International), The Moscow Times, GQ, Forbes, OpenDemocracy and other publications, reporting from Kyiv, Donetsk, Serbia, Bosnia, Armenia and Nagorno-Karabakh. Since 2017, he has studied investigative reporting at the Missouri School of Journalism via a Fulbright grant.

Dee J. Hall

Hall, a co-founder of the Wisconsin Center for Investigative Journalism, joined the staff as managing editor in June 2015. She worked at the Wisconsin State Journal for 24 years as an editor and reporter focusing on projects and investigations. Previously she was a reporter for eight years at The Arizona Republic in Phoenix, where she covered city government, schools and the environment. During her 35-year journalism career, Hall has won more than three dozen local, state and national awards for her work, and is a member of Investigative Reporters and Editors. She is based in Madison, Wisconsin. She can be reached at dhall@wisconsinwatch.org