this post was submitted on 18 Dec 2023
116 points (100.0% liked)

Technology

59673 readers
3002 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] maynarkh@feddit.nl 5 points 11 months ago

During a live video stream of the ballot result, a representative of TrueBallot shared their screen, which displayed an internet URL in the address bar of their web browser. A flight attendant watching the stream copied the URL into their own computer and discovered that the link took them to an unsecured database of the vote.

The flight attendant was able to view the name of everyone who had voted and what ballot they had cast, alongside their email address. The database could even be edited, and ballots could be added and deleted.

TrueBallot had literally one job there. It's not even that hard to provide a secure balloting system for 10k people.