As the 2024 U.S. Presidential election fast approaches and tensions rise, there has been another impact that nobody expected. With a major surge in darknet usage. Cybersecurity concerns are mounting due to a surge in darknet activity and online threats, including phishing attacks, ransomware, and misinformation campaigns. This includes the widespread use of fake websites and the sale of sensitive information, prompting calls for stronger cybersecurity measures to safeguard election integrity.
Key Insights
- Reports claim that darknet activity has increased significantly ahead of the 2024 U.S. election.
- Over 1,000 new election-related websites have been registered since January 2024, most of which are fraudulent.
- Phishing attacks designed to deceive voters are a primary concern.
- Phishing kits priced at $1,260 allow individuals to create fake campaign websites to steal voters’ personal information.
- The sale of 1.3 billion usernames and passwords on the darknet could fuel credential-stuffing attacks.
- Ransomware attacks have surged by 28% in 2024, targeting U.S. government agencies and threatening election operations.
- 3% of darknet posts involve data from U.S. businesses and government organizations, increasing the risk of identity theft and system breaches.
In a recent report, Fortinet’s FortiGuard Labs outlined how cybercriminals resort to different methods like phishing, creating fake websites, and selling sensitive U.S. information on the darknet to interfere with the election process.
“As the 2024 U.S. presidential election approaches, it’s critical to recognize and understand the cyberthreats that may impact the integrity and trustworthiness of the election process and the welfare of the participating citizens. Cyber adversaries, including state-sponsored actors and hacktivist groups, are increasingly active leading up to major events like elections. Remaining vigilant and identifying and analyzing potential cyberthreats and vulnerabilities is crucial for preparing and safeguarding against the lures and targeted cyberattacks that could take advantage of a heightened moment in time and even disrupt or influence electoral outcomes.” – Derek Manky, Chief Security Strategist and VP of Global Threat Intelligence at Fortinet
Phishing Scams and Fake Websites
One major concern is phishing attacks. Criminals are selling special kits that let other people create fake websites to try and trick voters into sharing their personal information like credit card details. These kits, which cost about $1,260, were created to look like real campaign websites for U.S. presidential candidates. FortiGuard Labs found that there are currently over 1,000 new websites that are related to the election and have been registered since January 2024, and many of them are completely fake. One example is a fake site called “secure.actsblues.com,” which pretends to be a real nonprofit organization called ActBlue.
Darknet Forums are filled with stolen personal data, such as Social Security numbers, email addresses, and passwords. FortiGuard Labs found that around 3% of posts on the darknet include information from U.S. businesses and government organizations, which might end up leading to identity theft or the hacking of personal accounts. Being sold, to this day, are over 1.3 billion rows of usernames and passwords that can be used in “credential-stuffing” attacks, where hackers try to use the same username and password on different sites to break into accounts.
As the founder of Bugcrowd, Casey Ellis would note, while these stolen records most probably wouldn’t directly change results in the election, they could cause people to lose trust in the process and reduce overall turnout.
Ransomware and Other Cyber Threats
Another big problem is the rise of ransomware attacks that have grown in recent months, which have gone up by a scary 28% in 2024 compared to last year. Ransomware attacks target U.S. government agencies and can create chaos in the election process, which will also end up making it harder for people to vote.
Nick France, the Chief Technology Officer of Sectigo, stated that “ Election officials and political campaigns need to be investing in AI-driven threat intelligence, conduct regular security assessments, and enforce strict access controls,” and went on to say, “Fostering collaboration among government agencies and cybersecurity experts is essential for a coordinated response to emerging threats”.
A Fight For Privacy
The sad reality is that law enforcement will use situations like this to crack down on your right to privacy. The misuse of the darknet to interfere with elections and attack citizens undermines the legitimacy of privacy tools like the Tor Browser. This means wider consequences for citizens’ rights to online privacy and free expression. While some use the darknet for illegal activities, platforms and tools like Tor Browser remain important for privacy, especially in repressive regimes or for individuals concerned about surveillance.
Governments may introduce stricter regulations or surveillance measures that restrict access to privacy-preserving technologies. This risks eroding online privacy rights, as tools like the Tor Browser and Darknet Forums are essential for anonymous communication, particularly for journalists, activists, and individuals living under repressive regimes.
The mere possibility that governments might clamp down on tools like the Tor Browser—tools that millions of people rely on for privacy and security—is an attack on fundamental freedoms. This isn’t just about fighting cybercrime; it’s about control.
The moment we allow the state to start regulating these platforms, we’re handing over the keys to mass surveillance. While governments will claim it’s for “security,” in reality, it’s a massive overreach that threatens to strip away the last line of defence for anyone who values their personal privacy and freedom to speak without fear.
Global Concerns Over Election Security
It’s not just the U.S. that has to deal with these cybersecurity issues. The same type of threats to the integrity of elections worldwide have been reported by cybersecurity experts at companies like Google, Trellix, and Trend Micro. More than half of the world’s population is likely to vote this year, and keeping those elections safe from cybercriminals has become a very real international concern.
Some of the biggest threats include misinformation and disinformation, which are false or misleading messages about candidates, voting procedures, or the election timeline. These might end up confusing voters and make it harder for them to know what’s true or false. There is also the growing use of artificial intelligence (AI) to create deepfakes, which are fake videos or images that look real but aren’t, further tricking voters, which might influence the swing of their vote.
Social media platforms have now become a key ground for spreading a lot of false information. Foreign countries in the past used social media to influence the outcome of elections by posting misleading comments, articles, or videos that make people question the system of voting, and this is happening now more than ever with the 2024 US election.
Protecting Voting Systems
It has been well-documented over the last decade that hackers have targeted equipment, government networks, and other aspects of election systems. According the DOJ, the darknet provides a platform for criminals to offer services like hacking into election systems, disrupting voting operations, or selling information that could influence voter turnout or confidence. This includes posting disinformation or leaking sensitive information to discredit candidates or the voting process.
In securing these systems for election officials, they must protect them from ransomware and other malware threats. This means updating systems for the protection of existing and known problems, periodically scanning for new issues, and using strong security measures using multi-factor authentication, which will lead to additional steps required to log into these platforms.
Other ways election teams can mitigate risks include keeping email and critical systems separate, so if hackers access one system, they can’t get to everything else. Voting machines and other devices used in the election need to be checked against security flaws, and the companies manufacturing them closely work with election officials to make sure those are safe.
While it is essential to address criminal activities on the darknet, it is equally important to recognize its legitimate uses for privacy and free speech. A balanced approach is needed to ensure that efforts to protect elections and cybersecurity do not inadvertently infringe upon citizens’ fundamental rights to privacy, free expression, and access to anonymous tools like Tor.