“What the Twitter Hack Revealed: An Election System Teeming With Risks”


Over the past year government officials have raced to help states replace voting machines that leave no paper trail, and to harden vulnerable online voter registration systems that many fear Russia, or others, could hijack to trigger chaos on Election Day.

But this week, the country got a startling vision of other perils in political disinformation — and how many other ways there may be to manipulate turnout, if not votes.

The breach by a hacker or hackers who bored into the command center of Twitter on Wednesday — seizing control of Joseph R. Biden Jr.’s and Barack Obama’s blue-checked accounts, among many others — served as a warning that some of the most critical infrastructure that could influence the election is not in the hands of government experts, and is far less protected than anyone assumed even a day ago.

The hackers probably did the nation a favor. With a crude scheme to deceive users into thinking that Mr. Biden and Mr. Obama were asking them for donations in Bitcoin — which sent more than $120,000 flowing into their cryptocurrency wallets — they revealed how simple it may be to imitate the powerful and the trusted.

Had saboteurs infiltrated Twitter on Nov. 3 instead of in the middle of July, with the goal of upending the election, the political fallout could have been quite different. False warnings of a coronavirus outbreak in key precincts in Wisconsin or Pennsylvania could have untold impact on a close vote in a battleground state. Deceptive tweets from political party accounts saying polling places were closed could sow confusion.

Or imagine a fake declaration, under Mr. Biden’s account, that he was dropping out of the race — a nightmare scenario for Democrats that some federal officials said they were talking about hypothetically among themselves on Wednesday night as the scope of Twitter’s failure became clear.

Similar war gaming about social media and election interference has played out in classified simulations conducted by the Department of Homeland Security, which is responsible for securing the 2020 election, and at Fort Meade, Md., home of the National Security Agency and United States Cyber Command. The results have never fully been made public.

Share this: