The Virginia election commission, which is responsible for certifying whether machines are fit to be used in elections, has decertified the Advanced Voting Solutions WINVote and for many very good reasons. Amongst the many security flaws in this product are:
Worse still, this machine has been used in actual elections and its lack of any logging or record-keeping means that we'll never know if its weaknesses were used to manipulate the outcome of an election. As a proof of concept, security researchers successfully demonstrated accessing the machine and manipulating the recorded vote counts.
(Score: 4, Insightful) by Nobuddy on Thursday April 16 2015, @09:17PM
Did you read the article? It is shocking. It would be bad on grandma's home computer. It is beyond belief that something as important as a voting machine has hardcoded 5 character passwords- much less easy to guess passwords - and all communicating via WEP to a home server that is equally insecure.
It would have been shocking to hear this in 2004 when they were new. Now, 14 years later, every election they were used in is now suspect.