Security News > 2020 > February > MIT Researchers: Online Voting App Has Security Flaws
Security researchers at the Massachusetts Institute of Technology have published a technical paper that describes several security flaws in Voatz, a smartphone app used for limited online voting during the 2018 U.S. midterm elections.
In their paper, the MIT researchers note that they were unable to obtain complete information about how Voatz engineers developed the company's voting application, nor were they able to access the full backend of the company's infrastructure to investigate how the app checks and verifies identity.
The MIT researchers say they found several vulnerabilities within the Voatz app.
An attacker who can gain root access to a device running the app can "Easily" evade security defenses and learn about the user's voting choice - even after the event is over - and alter that vote, the researchers say.
Over the last few years, Voatz has been aggressive in pushing back against researchers who have found flaws in the company's app.
News URL
https://www.inforisktoday.com/mit-researchers-online-voting-app-has-security-flaws-a-13726
Related news
- Researchers Uncover Major Security Vulnerabilities in Industrial MMS Protocol Libraries (source)
- WeChat devs introduced security flaws when they modded TLS, say researchers (source)
- Researchers Discover Severe Security Flaws in Major E2EE Cloud Storage Providers (source)
- Apple Opens PCC Source Code for Researchers to Identify Bugs in Cloud AI Security (source)
- Germany drafts law to protect researchers who find security flaws (source)