A company that provides voting systems in 28 states used software from hacked Internet technology companies.
Based on information available on the Dominion’s web site, The Dominion Voting Systems (Dominion Voting Systems) uses the SolarWinds software.
SolarWinds does not list Dominion in some of its customer lists but says its products and services are used by more than 300,000 customers worldwide, including all five branches of the us military and more than 425 of the us Fortune500 companies.
The condition of the SolarWinds software gave hackers access to the Commerce Department and reportedly the Treasury Department.
The SolarWinds Orion product is currently being exploited by malicious elements, according to the Cybersecurity and Infrastructure Security Agency (CISA), part of the Department of Homeland Security. This method enables the attacker to access the network traffic management system.
According to the agency, the only known and available mitigation measure is to disconnect the affected device.
SolarWinds is advising customers to upgrade their Orion platform to the latest version. If customers cannot upgrade immediately, they are urged to block the platform from connecting to the Internet and to limit ports and connections to only what is necessary. A patch is expected to be released on Tuesday.
Dominion did not respond to requests for comment, including whether it had followed the measures recommended by CISA or SolarWinds. Dominion did not respond to voice mail, either.
The hackers inserted malicious code into a legitimate software update to the SolarWinds Orion software, according to cybersecurity firm FireEye. This code enables an attacker to remotely access a victim’s system.
The malware is designed, in part, not to alert the victim to an intrusion. And attackers go to great lengths to blend in with normal activities.
According to the company, the vandalism dates back to the spring. The company has contacted SolarWinds, the Federal Bureau of Investigation and other key partners.
The company says the FBI is investigating these activities. The bureau said it doesn’t comment on an ongoing investigation.
The Dominion has been in the spotlight in recent weeks because of the Dominion’s systems and machines, which are widely used in the United States. Witnesses have come forward to say Dominion products were connected to the Internet during the November 3 election, raising security concerns. The Dominion Machine is used in Antrim County, Michigan. Officials there initially reported that Democratic presidential candidate Joe Biden had won, and later said that president Trump had actually won.
Antrim County, Michigan, had a change of about 6,000 votes.
Officials at Michigan and Dominion insist that what happened was the result of human error. But a lawyer who brought the case against the county said last week that a Forensic Audit showed that software problems were in fact the cause.
A judge is expected to decide on Monday morning whether to grant an emergency motion. The motion seeks permission to make the audit public.