FEC Rules Campaigns Can Get Discounts on Cybersecurity

July 12, 2019 by Dan McCue

WASHINGTON – The Federal Election Commission ruled Thursday that federal candidates and political committees can accept low-cost cybersecurity services from a Silicon Valley security company so long as the firm continues to offer the same rates to its non-political clients.

The firm, Area 1 Security, Inc., first approached the commission in June, requesting permission to offer low-to-no-cost services to political candidates during the 2020 election cycle.

The company was founded in 2013 by a group of former National Security Agency hackers, and it specializes in crawling the web for signs of phishing.

In December, it successfully uncovered a phishing attack on the Ministry of Foreign Affairs in Cyprus that compromised the entire EU’s diplomatic communication network.

In approaching the FEC, the company cited a 2018 ruling by the agency that allowed Microsoft to offer free account security to political candidates.

In Microsoft’s case, it stood the risk of long-term damage to its reputation if its clients were hacked.

But at a hearing on Area 1’s request in June, lawyers for the commission said the company’s request should be rejected on the grounds that it would be violating campaign finance laws that prohibit corporations from offering free or discounted services to federal candidates.

The same law also prevents political parties from offering candidates cybersecurity assistance because it is considered an “in-kind donation.”

The attorneys dropped their opposition after learning Area 1 would simply be offering the same low-cost services to candidates as it does to its regular clients.

In its ruling, technically an “advisory opinion,” the commission stated that Area 1 could charge candidates a fixed fee of $1,337 for its phishing services, “because doing so would be in the ordinary course of Area 1’s business and on terms and conditions that apply to similarly situated non-political clients.”

As a result, wrote commission chair Ellen Weintraub, “the commission concludes that the proposal would not result in prohibited in-kind contributions and thus is permissible.”

She did note, however, that any change in the material facts on which the opinion was based, would effectively render it null and void.

She also said the conclusions in the advisory opinion could be affected by subsequent developments in the law including, but not limited to, statutes, regulations, advisory opinions, and case law.

In June, House Democrats passed sweeping legislation that would require voting systems to use backup paper ballots in federal contests, while also banning voting machines from being connected to the internet and being produced in foreign countries.

In addition the Securing America’s Federal Elections Act, introduced by Representative Zoe Lofgren, D-Calif., authorized $600 million for the Election Assistance Commission, which would be allocated to states to enhance their security ahead of 2020, and $175 million that would be provided biannually for “sustainment” funds intended to maintain election infrastructure.

The House voted 225-184 in favor of the bill, with only one Republican, Florida Representative Brian Mast, voting for the measure.

To date, Senate Majority Leader Mitch McConnell has declined to bring it — or any other election security bill to the Senate floor.

Cybersecurity

America Is Woefully Unprepared for Cyber Warfare National Security
America Is Woefully Unprepared for Cyber Warfare

WASHINGTON — War in cyberspace is fully on, and the United States is losing it, according to about two dozen national security experts. The U.S. military is increasingly adept at mounting cyberattacks in places like Russia and Iran, but America’s computers are almost completely defenseless. Without... Read More

FEC Rules Campaigns Can Get Discounts on Cybersecurity Cybersecurity
FEC Rules Campaigns Can Get Discounts on Cybersecurity
July 12, 2019
by Dan McCue

WASHINGTON - The Federal Election Commission ruled Thursday that federal candidates and political committees can accept low-cost cybersecurity services from a Silicon Valley security company so long as the firm continues to offer the same rates to its non-political clients. The firm, Area 1 Security, Inc.,... Read More

Political Leaders Seek NSA Briefings After Report That Agency’s Tool Was Used in Baltimore Ransomware Attack Cybersecurity
Political Leaders Seek NSA Briefings After Report That Agency’s Tool Was Used in Baltimore Ransomware Attack

BALTIMORE — Sen. Chris Van Hollen and Rep. C.A. Dutch Ruppersberger are seeking briefings from the National Security Agency after a report that a spying tool developed by the agency and then leaked online was used to spread the ransomware that has debilitated Baltimore’s computer systems.... Read More

US Census Vulnerable to Russian Meddling, Top Official Warns Cybersecurity
US Census Vulnerable to Russian Meddling, Top Official Warns

ATLANTA — The U.S. Census Bureau is concerned the Russian government could hack into data collected in the 2020 Census, in a similar way to how it interfered in the 2016 presidential election, a top bureau official said. “Most of the agencies of the federal government... Read More

Analysis of Ransomware Used in Baltimore Attack Indicates Hackers Needed ‘Unfettered Access’ to City Computers Cybersecurity
Analysis of Ransomware Used in Baltimore Attack Indicates Hackers Needed ‘Unfettered Access’ to City Computers

BALTIMORE — Officials in the eastern North Carolina city of Greenville arrived to work one morning in early April to find the files on some 800 of their computers locked up. More than five weeks later, they’re still recovering from the debilitating cyberattack. The city of... Read More

Here Are the Florida Counties That Were Sent a Russian Phishing Attack. Two of Them Were Hacked Cybersecurity
Here Are the Florida Counties That Were Sent a Russian Phishing Attack. Two of Them Were Hacked

FORT LAUDERDALE, Fla. — The search is on to determine which two Florida counties’ voter data was accessed by Russian hackers. A South Florida Sun Sentinel investigation found that at least 13, and as many as 20, elections offices in Florida were sent an email by... Read More

Straight From The Well
scroll top