One flaw he uncovered in the voter registration cancellation portal for the state of Georgia, for instance, allowed anyone visiting it to cancel the registration of any voter in that state when the visitor knew the name, birthdate, and county of residence of the voter. This starkly highlights how critical vulnerabilities in these systems can be exploited, putting the integrity of voter registrations at serious risk.
Failing at the most fundamental level, the number of vulnerabilities mostly stemming from weak permission controls, poor validation of user inputs, and faulty authentication processes, demonstrate a lack of due care in ensuring the trustworthiness of the systems millions of citizens rely on every day. The consequences can be detrimental, especially in the realms of justice and voting rights.
These platforms are supposed to ensure transparency and fairness, but are failing at the most fundamental level of cybersecurity," Parker wrote, indicating a significant disconnect between the intended purpose of these systems and their actual capacity to secure sensitive information.
Parker has found and reported dozens of critical vulnerabilities in no fewer than 19 commercial platforms used by hundreds of courts, government agencies, and police departments across the country. This staggering number of vulnerabilities raises serious questions about the competence and oversight of the companies responsible for maintaining these essential public records systems.
#cybersecurity #voter-registration #public-records #government-vulnerabilities #justice-administration
Collection
[
|
...
]