first published week of: 09/19/2016
Voter registration databases (VRDB) and election systems are rich targets and may continue to experience frequent attempted intrusions. This problem is not unique to individual states—it is shared across the nation. The keys to good cybersecurity are awareness and constant vigilance.
What are the threats that may place voter data at risk?
Malicious actors may use a variety of methods to interfere with voter registration websites and databases. Some methods of attack are listed below.
What prevention measures should I employ to protect against these threats?
DHS encourages election officials and network administrators to implement the recommendations below, which can prevent as many as 85 percent of targeted cyber attacks. These strategies are common sense to many, but DHS continues to see intrusions because organizations fail to use these basic measures.  Â
A commitment to good cybersecurity and best practices is critical to protecting voter registration data. Here are some questions you may want to ask of your organization to help prevent attacks against voter registration websites and databases:
How do I respond to unauthorized access to voter registration data?
Implement your security incident response and business continuity plan. It may take time for your organization’s IT professionals to isolate and remove threats to your systems and restore normal operations. In the meantime, you should take steps to maintain your organization’s essential functions according to your business continuity plan. Organizations should maintain and regularly test backup plans, disaster recovery plans, and business continuity procedures.
Contact law enforcement or DHS immediately. We encourage you to contact your local FBI field office, the FBI Internet Crime Complaint Center (IC3), or DHS’s National Cybersecurity and Communications Integration Center (NCCIC) immediately to report an intrusion and to request incident response resources or technical assistance.