Displaced NJ Voters Told To Email Ballot Requests To A Hotmail Account
from the you've-absolutely-got-to-be-kidding-me dept
The election day news is coming in rather fast today, but we're already seeing reports of voting issues. There's some viral videos floating around showing voting machines acting up. This, of course, can be added to the long history of voting machine nonsense we've written about in the past. But adding to the the confusion is that a great section of the East Coast is still recovering from Hurricane Sandy.You may have seen the news over the past few days that displaced New Jersey voters are being allowed to (sorta) vote via email. Or, rather, they would be allowed to vote via email if the state's election officials could manage to act like they know what they're doing. Instead, reports indicate massive amounts of people have been unable to request ballots at the email addresses originally provided. This is causing frustration and confusion across the state, but the real absurdity shows up in Essex County.
Aware of the problems with the official e-mail system, Essex County Clerk Christopher Durkin suggested an alternative option: "Displaced voters can email a request for a ballot at cj_durkin@hotmail.com," according to a post on the Facebook page of the town of West Orange, NJ. Interestingly, security researcher Ashkan Soltani notes that Durkin's Hotmail address has his mother's maiden name as a "password recovery" question. This means that anyone who can figure out Durkin's mother's maiden name could seize control of his Hotmail account and intercept voters' official ballot requests.I'll be clear in saying that I understand that the situation in New Jersey is a difficult one and I'm sure election officials there are simply trying to do their best under the circumstances. Unfortunately, Durkin's best appears to suck. You simply cannot put something of such importance (voting) in the hands of someone who cannot either provide a working and secure email address for ballot access or, at the very least, take the most trivial security steps on another email address. We all want every citizen to be able to have their voice heard, but not at the cost of massive security risks.
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Filed Under: e-voting, email, new jersey, security
Reader Comments
Subscribe: RSS
View by: Time | Thread
Missing the point?
Saying he has a bad password recovery question is like complaining about a shitty lock on a house made of tissue paper.
[ link to this | view in chronology ]
Re: Missing the point?
[ link to this | view in chronology ]
Re: Re: Missing the point?
[ link to this | view in chronology ]
Re: Re: Missing the point?
Or intercept all email coming from ISPs in New Jersey, as that would seem easier (less drinking from the firehose.)
[ link to this | view in chronology ]
A fairly major assumption is being made...
Still, I can't imagine any part of Hotmail (or any other webmail service) is inherently secure against interested parties.
[ link to this | view in chronology ]
Re: A fairly major assumption is being made...
MUCH better. ;)
[ link to this | view in chronology ]
Re: A fairly major assumption is being made...
[ link to this | view in chronology ]
Re: Re: A fairly major assumption is being made...
as someone wrote above the walls are made of tissue paper. At the first rain or if someone starts pissing on them, they tend to develop holes and in a short while they allow the liquid to pass through.
/ :p
[ link to this | view in chronology ]
[ link to this | view in chronology ]
Context matters but...
Something inside me cried in agony the moment I read this sentence on a techdirt post.
[ link to this | view in chronology ]
[ link to this | view in chronology ]