The invasion confirmed with documents
The technology portal TecMundo revealed that the Superior Electoral Court (TSE) suffered a hack in its system, long before the October election (first and second rounds) and that the invaders had access to countless confidential files, code system of the electronic ballot box software , emails, correspondence and many other documents. According to a hacker heard by Criptomoedas Fácil, the access to the system, as disclosed, is so great that, certainly, it can allow the attacker to have altered the software that supplies the electronic ballot boxes and, thus, to have influenced the election results, both in the first as well as in the second round.
The hacker who would have invaded the system, in contact with the news portal, explained that he had accessed the entire Electoral Justice network through a flaw developed by the Court itself and that, in this way, it managed remote access to the network.
“I had access to the internal network (intranet) and, for several months, I was exploring the network, including entering several different machines from the TSE, in order to understand the functioning of the voting systems. With that, I obtained thousands of source codes, confidential documents and even credentials, being the login of a substitute TSE minister (Sérgio Banhos) and several technicians, some being linked to the high IT summit of TSE, linked to the father of the polls ( Giuseppe Janino), ”said the attacker, who also sent a series of classified files to the portal that he obtained during his invasion.
“After a few weeks of using TSE network equipment, I noticed via emails from STI technicians that they noticed suspicious traffic (because I used scan programs on the network). They did an investigation to detail how the attacker managed to gain illegal access to the network, but even with all these security procedures they adopted, including changing passwords for all accounts, it ended up not being enough to interrupt my access to emails and also to internal network, ”said the hacker, who also explained that he had access to“ thousands of other codes ”and commented that the Electoral Justice runs outdated versions of JBoss, “like the Digital Pouch, used by TRE's”.
Criptomoedas Fácil tried to contact the TSE but got no response and, so far, the Court has not ruled on the case. But, according to information from the legal portal JOTA, the Electoral Court would have analyzed all the files sent by TecMundo that had been made available by the hacker and confirmed that in fact the invasion may have happened and the attacker would have even had access to confidential documents and codes .
However, despite the seriousness of the complaint and the hacker's access to TSE files, the portal highlighted that the invasion would have no potential to influence and defraud the elections. “It is worth noting that the invaders did not have access to the voting secrecy module: this means that it was not possible to access the part of the system that displays voters' votes. In addition, the GEDAI code is 'public', after signing a confidentiality agreement, parties, MPs and OABs, for example, can request access ”, states the publication.
Fraudulent polls and hacker opinion
Criptomoedas Fácil talked to a hacker, a crypto expert and one of the first cypherpunks in Brazil, who disagreed about access to the voting secrecy module and pointed out that the attacker certainly accessed the software and may have altered his code to defraud the election. According to him, the level of access obtained by the group of people (he does not believe he was just an invader) was such that he could “do anything”, as he had, according to what was disclosed, the entire justice system Electoral "in hand" for a long period of time without being discovered.
Opinion Professor Diego Aranha
“It is worth remembering that the voting software is known to have had several serious vulnerabilities and design errors in recent years, despite being classic and well known in the security area. Either way, exploring the consequences of the event is an interesting exercise. It is not known at what point the invasion started or what type of information was accessed by the attacker, so a possible impact on the results of the last elections is uncertain. For this reason, a physical record of the vote ends up being indispensable, since any uncertainty can be resolved by checking and auditing by non-specialists a record verified by a significant portion of the electorate.”Commented Aranha.
As the Easy Cryptocurrencies, the PSL, the party for which President Jair Bolsonaro won this year's elections, indicated Paulo Fagundes, specialist in blockchain and information security, who, still in the electoral period, raised suspicions regarding the Electoral Justice software, indicating that the source code that generates all the programs run in the ballot on the polling day (files that the hacker had access) lacked, in advance.
Other inconsistencies were raised in the audit performed at the São Paulo TRE by the engineer Amílcar Brunazo Filho, who followed the process independently. A member of a committee that performs a parallel assessment of the results, he complains that there was no copy of the ballot box memory at the beginning of the procedure, nor access to the log file.
As Easy Cryptocurrencies has reported, nations like Russia, China, Sierra Leone, Switzerland and some states in the U.S. have sought to build an electoral system that is based on blockchain to ensure the integrity of the votes, however, so far, no nation has used technology as an official system of election in votes for the executive or legislative branch. However, the use of blockchain for elections is not a consensus between researchers and security experts because, before ensuring that the “given” vote is unique and immutable, it is necessary to ensure that the hardware does not suffer invasion and, by various techniques, “changes” the vote before it is sent to blockchain.