>> The US agency that's supposed to ensure voting machines meet security standards was itself hacked after the November elections. That according to a security firm working with law enforcement on the matter, says Reuters' Cyber Security Reporter, Joseph Menn.>> Security firm called Recorded Future. One of the number of security companies that trolls the dark web looking for hackers offering deals, came across a Russian speaking gentleman or lady, that was offering access and credentials to the US Election Assistance Commission.
They engaged the hacker in conversation posing as a potential buyer. And the hacker who was initially just selling log ons and passwords said that he had been able to obtain them. With a technique called SQO injection, which is a very common preventable database exploit.>> The researchers alerted law enforcement and said Thursday that the hold had been patched.
The US government has blamed Russia for cyber attacks against Democratic party organizations to interfere with the 2016 elections. And the CIA concluded Moscow was trying to help Donald Trump raising concerns whether the hacking could have gone further. The commission isn't directly linked to the voting precincts, but Menn says, in theory, information on its site could be used by hackers.
>> But it would not be trivial. And it probably is worth noting that there were no widespread reports of fraud on the actual election day in November.