As the 2024 U.S. presidential election approaches, cybersecurity is once again at the forefront of national concerns. Despite significant improvements in election security over the last decade, cyber threats still pose a risk to the voting process. From phishing schemes aimed at voters to potential ransomware attacks on election infrastructure, cybercriminals and foreign adversaries will likely attempt to disrupt the election in various ways. While these attacks may not change the outcome of the vote, they can create confusion and fear among voters, making it critical for individuals to stay vigilant and take steps to protect their personal information and digital devices.

The good news is that election officials at every level have made substantial progress in safeguarding voting systems. Jen Easterly, Director of the U.S. Cybersecurity and Infrastructure Security Agency (CISA), recently stated that voting and ballot-counting systems are more secure than ever. Easterly reassured the public that no foreign adversary could alter the results of the election at scale. However, this doesn’t mean voters should become complacent. Even with these protections in place, cyber threats like misinformation campaigns still remain real. It’s essential for voters to understand these risks and take proactive measures to secure their vote and ensure they are relying on trusted sources for information.

Common Cyber Threats to Voters in 2024

While election officials have significantly improved the security of voting systems, voters must still remain cautious about the types of cyber threats they may encounter leading up to Election Day. In 2024, cybercriminals and foreign actors may attempt to exploit vulnerabilities in the digital landscape to sow confusion, steal personal data, or disrupt the election process. While these attacks are unlikely to impact the overall outcome, they can undermine voter confidence and create delays or confusion. Below are some of the most common cyber threats that voters should be aware of in this election cycle.

• Phishing and Social Engineering Attacks
  Phishing remains one of the most prevalent cyber threats, especially during high-stakes events like elections. Cybercriminals often send emails, texts, or social media messages that appear to come from official sources, such as election boards or government agencies, in an attempt to steal sensitive information. These messages might include links to fake websites designed to look like legitimate voter registration pages or election information portals. Once a user enters their personal information, such as their social security number or login credentials, it can be stolen and misused. Voters should be skeptical of unsolicited messages and always verify the legitimacy of the source before clicking on any links or providing information.
• Ransomware
  Ransomware attacks, where malicious actors lock down access to a computer system and demand a ransom for its release, are increasingly targeting municipalities, including those managing voter registration and election infrastructure. Ransomware could delay access to voter registration databases or disrupt the reporting of election results, leading to confusion and frustration among voters. To protect themselves, voters should ensure they are accessing official election resources and avoid downloading suspicious files or attachments.
• DDoS Attacks on Election Websites
  Distributed Denial of Service (DDoS) attacks aim to overwhelm an online system, causing websites to crash and become temporarily unavailable. In the context of elections, cybercriminals might target websites where voters can check their registration status, find polling locations, or monitor election results. Although these attacks cannot alter votes, they can cause significant delays in accessing information. Voters should prepare for possible website outages and know where to find alternate resources for critical election details.
• Fake News, Disinformation, and Deepfakes
  Disinformation campaigns aim to confuse and mislead voters, often using manipulated content or fake news spread across social media platforms. Lawmakers in 27 states have already introduced bills in early 2024 to regulate deepfakes in elections, highlighting the concern around this growing threat. Voters must be vigilant in identifying misleading content and rely only on verified, official sources for accurate election information. Fact-checking election-related content before sharing it is crucial to prevent the spread of false information.

Verifying the Sources of Voting Information

Ensuring you are getting accurate and reliable voting information is essential for the integrity of your vote. Election-related falsehoods, especially about polling locations, voter registration, and mail-in ballots, can cause confusion and potentially lead to disenfranchisement. To safeguard your vote, it’s crucial to rely on official sources, such as state or local election board websites, which provide the most accurate and up-to-date information. These sites, typically ending in .gov, are directly managed by election officials and will give you the correct details on where to vote, how to register, and deadlines for mail-in ballots. It is also important to cross-reference any election information you encounter with reputable news outlets to avoid falling prey to misleading content.

Beyond websites, voters should be mindful of disinformation campaigns on social media platforms. While platforms like Facebook and Twitter have implemented some measures to curb the spread of fake news, they remain prime targets for disinformation actors seeking to manipulate voters. False claims about voting procedures or results can quickly go viral, misleading millions. Voters should verify any election-related content they see on social media with official sources before believing or sharing it. For example, fact-checkers and election offices on social media often provide clarification and corrections to viral misinformation, helping to keep the public informed. Email scams and fake phone calls are other tactics used by cybercriminals to deceive voters. These messages may claim to offer updates on voting registration or polling locations but are often phishing attempts aimed at stealing personal information. Always avoid clicking on links in unsolicited emails or providing sensitive information over the phone unless you are certain the communication is legitimate. By using verified sources and maintaining a cautious mindset, you can ensure that your vote is cast securely and accurately, without falling victim to misinformation or fraud.

Tips for Digital Ballot Security

Securing your vote starts with protecting your personal information and ensuring that your digital activities are safeguarded throughout the election process. Whether you’re registering to vote, checking your registration status, or researching candidates, it’s important to take precautions to protect your data and avoid cyber threats. One of the simplest ways to do this is to use strong, unique passwords for any online accounts tied to your voter registration or political activities. Password managers can help you generate and store complex passwords, making it harder for cybercriminals to compromise your accounts. Enabling multi-factor authentication (MFA) also adds an extra layer of security, ensuring that even if a password is stolen, your account remains protected.

When accessing voter information online, be cautious when using public Wi-Fi networks. Public Wi-Fi is often unsecured, making it easier for hackers to intercept your data. If you must use a public network, consider using a virtual private network (VPN) to encrypt your connection and protect your online activities from potential snooping. This added layer of security ensures that your personal information and voter data are shielded from potential cyber threats, whether you’re researching election information or tracking your ballot status.

For those who choose to vote by mail or absentee ballot, it’s critical to follow all instructions carefully and track your ballot’s status through official channels. Many states provide secure portals for voters to verify that their mail-in ballot was received and processed. This helps you avoid falling for phishing scams that may claim your ballot has been rejected or offer false updates. Voters should remain vigilant about potential cyber fraud involving mail-in ballots. Scammers may try to impersonate election officials via email or text, claiming they need additional information to process your vote. Always contact your local election office directly if you receive any suspicious messages related to your ballot. 

As we approach the 2024 election, safeguarding your vote is more critical than ever. Beyond protecting election systems, securing your own digital activities is essential to ensuring your voice is heard. Cybercriminals and disinformation campaigns may target voters, but by taking simple, proactive steps you can play a role in keeping your vote safe. It’s not just about protecting your ballot; it’s about preserving the integrity of the election process as a whole. By being aware of the risks and making conscious efforts to protect your data, you help defend democracy from those who would seek to undermine it.