Democrats and Republicans Agree: Our Cybersecurity Stinks

Jonathan Lampe

Jonathan Lampe

Speaker Bio

Jonathan Lampe has spent 15 years in application information security and recently founded Cybertical to concentrate on the cybersecurity of political campaigns.  His site ratings of the top dozen candidates predated many of the security improvements in the 2016 campaign, and his work has been featured by the Associated Press, Politico and local NBC affiliates.

Presentation

Every two years almost seventy major candidates vie for Senate seats across the United States. Many of the candidates have or will soon have a major impact on policy and spending, and their campaign web sites are visited by millions of voters and other interested parties. 2016 has been the year of the political cyberattack, with hacked emails, phishing, insecure servers and even whispers of foreign penetration in the news.

Despite this backdrop, the cybersecurity of US Senate senatorial campaigns leaves much to be desired. On the eve of the 2016 election, Cybertical employed a new tool to scan the sites of 67 major candidates and found unpatched vulnerabilities, administrative usernames and public entry points on many of them. To help communicate which candidates’ sites were better or worse than others, every site scanned was awarded a “grade point average” (GPA) and a letter grade from A to F.

This presentation demonstrates the newly released tool, how it was used to get these results, and how the scoring process worked (and could be repeated across time to track improvement).  Several Wisconsin and Milwaukee-area political sites will also be scanned and graded live.