The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have come together to bring attention to the looming threat of Distributed Denial of Service (DDoS) attacks on election infrastructure as the 2024 US general election draws near. While these DDoS attacks have the potential to disrupt public access to election-related information, it is crucial to note that they will not compromise the security or integrity of the voting process.
DDoS attacks are anticipated to target various election-related functions, such as voter look-up tools or unofficial election night reporting, which could result in temporary disruptions. However, the FBI and CISA stress that despite these attacks, the actual voting process will remain unaffected.
Threat actors are likely to utilize DDoS attacks to fabricate false narratives of election compromise, with the aim of undermining public confidence in the upcoming 2024 US general elections. Historically, DDoS attacks have been a favored tactic among hacktivists and cybercriminals driven by social, political, or ideological motives.
A DDoS attack occurs when malevolent actors overwhelm an internet-accessible server with an abundance of requests, rendering it slow or completely inaccessible. This obstructs legitimate users from accessing online resources and services, leading to disruptions in various business activities and public services. In the context of elections, DDoS attacks could impede access to crucial information such as polling locations, voter registration details, or unofficial results.
It is worth emphasizing that the FBI and CISA have not found any evidence suggesting that DDoS attacks have ever compromised the integrity of voting systems, prevented eligible voters from casting their ballots, or disrupted the tabulation and transmission of election results. Even in the event of such attacks, the data and internal systems remain secure, ensuring that every eligible voter can exercise their right to vote.
Election officials across the nation have implemented multiple safeguards, backup processes, and incident response plans to minimize the impact of DDoS attacks on election operations. These measures have been put in place to ensure minimal disruption and also include the availability of alternative communication channels, such as traditional news outlets and direct messaging to voters, to disseminate crucial election-related information.
To mitigate the potential impact of DDoS attacks, the FBI and CISA recommend that voters seek information from official sources regarding voter registration, polling locations, voting by mail, and final election results. In case an official website is unavailable, contacting state or local election officials is advisable, with the reminder that DDoS attacks cannot compromise the security or integrity of election systems.
CISA and the FBI collaborate closely with federal, state, and local election partners to safeguard US voting processes and uphold the resilience of elections. The FBI is tasked with investigating and prosecuting election crimes, foreign influence operations, and malicious cyber activities targeting election infrastructure, while CISA supports critical infrastructure owners and operators in ensuring the security and resilience of election systems against physical and cyber threats.
The public is encouraged to report any suspicious or criminal activity, including DDoS attacks impacting election infrastructure, to their local FBI field office or to CISA through designated communication channels provided by the agencies.
As part of their ongoing public service announcement series for the 2024 US General election cycle, CISA and the FBI have released a statement titled “Just So You Know: DDoS Attacks Could Hinder Access to Election Information, Would Not Prevent Voting,” underscoring their commitment to providing the public with information and supporting the election infrastructure community in conducting safe and secure elections.
In conclusion, this joint announcement serves to educate the public about DDoS attacks, their potential impact on election infrastructure, and the importance of seeking reliable information from official sources. By remaining informed and vigilant, voters can play a crucial role in preserving the integrity and resilience of US elections.