The ruling party in Israel in primaries election security blunder
This is an amazing story about how security issues can inflict damage even on old fashioned paper ballot elections.
The Likud is Israel’s ruling parties for a couple of years. This is the party of Benjamin Netanyahu, Israel’s prime minister. The Likud’s primaries election were held on February 4, Those elections were old fashion - means no voting machines, no web system. Just old, plain, paper ballot thrown to a box. You know the drill.
After the elections, there were some miscalculations, issues, and highly suspicious results. The prime minister ordered recounting of the vote.
The recounting process is also made by hand, but someone needs to count those ballots and after counting the results should be written and aggregated in a computer. This how things are done, we collect the data by hand but write it down in a computer system.
In the middle of the process, one of the reporters got her hand on a picture of the system with the unofficial results.
Twitter snapshot, the text says that the recounting is in the process and you can see that the voting is different from the initial count. If you will look closely, you will see that the IP address is visible. I and other Twitter users tried to put this IP in our browsers and… I was surprised to find out that I have full access to the entire recounting system.
Full access to the results FULL access, that’s right - not just viewing permission but also access to the editing interface - it means that I could change the recounting results freely.
Editing interface - fully operational Yup, that’s right folks! The system’s software engineers thought that not installing any access control is fine. It means that everyone that knew the IP of the system - and there were a lot of those people, could change the voting results.
If even simple access control measures were not installed, what else went wrong in that system? in other systems? Can we believe that no one exploited the recounting process? Does this system was used in the previous counting?
This recounting process is contaminated. The Likud party must hire an external security professional to validate the recounting process.