Around 35 million voter records from the 19 different countries are available for sale in the dark web forum.
Around 23 million records which are available for sale especially for three states, although no clear record has been counted that these remaining states which are probably 16. The price of this voter’s records list ranges from $150 to $12,500 depending on the state.
Many of these projects are underway to pay the seller: a move which could offer a full list for free to the members of a particular hacking forum. Records for the Kansas have successfully been published already, with the Oregon next in the line.
Well, the access to the state voter registration lists is provided to the political campaigns, journalists and the academic researchers, there are rules forbidding their use for the commercial purpose or republishing online.
If the seller says the truth, this haul could be very helpful to identify the fraudsters and even those who want to interfere in the very next upcoming mid-terms.
“When these lists are combined with other breached data containing sensitive information, e.g., social security number and the driver’s license, on underground forums it provides the malicious actors with the key data points for creating a target profile of the US electorate,” noted Anomali.
“This type of information can facilitate the criminal actions such as the identity fraud or allow for false submissions of the changes online to voter registrations, making some legitimate voters ineligible to cast ballots. In a voter identity theft scenario, fraudsters can cause disruptions to the electoral process through physical address changes, deletion of voter registrations, or requests for a absentee ballots on behalf of the legitimate voter.”
The seller has also claimed that he will be receiving a weekly updates of the registration data from the contacts within the state governments, which if it is true it could really make a major insider risk.
“Threats actors frequently recruit and fool insiders into helping them to pull off the data theft and abuse schemes. This research seems to indicate that insider either knowingly or unwittingly helped the nefarious party to obtain voter information,” said Dtex CEO Christy Wyatt.
“Government-sector research we conducted earlier this year revealed that 53% of the agencies have been hit with an insider incident.”
The Affected States Are: GEORGIA, IDAHO, IOWA, KANSAS, KENTUCKY, LOUISIANA, MINNESOTA, MISSISSIPPI, MONTANA, NEW MEXICO, OREGON, SOUTH CAROLINA, SOUTH DAKOTA, TENNESSEE, TEXAS, UTAH, WEST VIRGINIA, WISCONSIN AND WYOMING.