Analysis: Democratic presidential campaigns score high on cybersecurity

Analysis: Democratic presidential campaigns score high on cybersecurity
© Getty

The Democratic presidential candidates are all doing well on securing their campaigns against cyberattacks, new research released Thursday indicated, highlighting the turnaround on the issue following attacks on the Democratic National Committee (DNC) and the presidential campaign of Democratic presidential nominee Hillary ClintonHillary Diane Rodham ClintonTrump, Biden set for tight battle in Florida We need to be 'One America,' the polling says — and the politicians should listen Poll shows Biden with 6-point edge on Trump in Florida MORE in 2016. 

IT security group SecurityScorecard detailed the cybersecurity improvements made by candidates in a new report, which found that the third-party groups used by campaigns to assist with cybersecurity also scored high in implementing cyber safeguards. 

All the candidates were overall judged to be doing well in cybersecurity, with everyone except Sen. Elizabeth WarrenElizabeth WarrenHillicon Valley: Schiff presses intel chief on staff changes | Warren offers plan to secure elections | Twitter's Jack Dorsey to donate B to coronavirus fight | WhatsApp takes steps to counter virus misinformation Warren releases plan to secure elections during coronavirus pandemic On The Money: Trump officials struggle to get relief loans out the door | Dow soars more than 1600 points | Kudlow says officials 'looking at' offering coronavirus bonds MORE (D-Mass.), Sen. Bernie SandersBernie SandersDrugmaker caps insulin costs at to help diabetes patients during pandemic The Hill's Campaign Report: Wisconsin votes despite coronavirus pandemic Sen. Brown endorses Biden for president MORE (I-Vt.) and former New York City Mayor Michael BloombergMichael BloombergNew York City auctioned off extra ventilators due to cost of maintenance: report DNC books million in fall YouTube ads Former Bloomberg staffer seeks class-action lawsuit over layoffs MORE scoring an A grade; those three all got a B.


The campaign of former Vice President Joe BidenJoe BidenTrump shakes up WH communications team The Hill's Campaign Report: Wisconsin votes despite coronavirus pandemic The Intercept's Ryan Grim says Cuomo is winning over critics MORE scored the highest, receiving a 97 out of 100. 

The company noted that a campaign given a B grade or higher was five times less likely to be breached by a cyberattack than campaigns with a C grade or lower. 

SecurityScorecard also assessed presidential campaigns for those who have since dropped out of the race, with the only major concerns found in the campaign of tech entrepreneur Andrew YangAndrew YangJack Dorsey committing billion to coronavirus relief efforts Campaigns face attack ad dilemma amid coronavirus crisis Andrew Yang: Calling coronavirus 'China virus' only used to incite 'hostility' MORE, where the company discovered an attack on a third party event management vendor used by his campaign that could have led to cyber vulnerabilities. 

SecurityScorecard cautioned that despite the improvements, no campaign should let down its guard and that some cyber hygiene problems were still an issue. 

“Although all signs point to candidates heeding the call of security experts, the landscape of cybersecurity changes daily, if not by the minute,” the company wrote. “No security professional ever feels their defenses, processes, or threat intelligence systems are flawless. Instead, it is a balance of continual improvements and risk analysis.”


SecurityScorecard wrote that it planned to do another report on the cybersecurity posture of the eventual 2020 Republican and Democratic nominees, as well as any third-party presidential nominees, once they are officially chosen. 

“Modern political campaigns have troves of personally identifiable information (PII) on voters, including historical voting records, registered party members, competitive intelligence, sensitive communications with heads of state and more,” SecurityScorecard wrote. “It is vitally important to the election process and the protection of voters’ data that political campaigns take cybersecurity seriously.”

The company hailed the results as encouraging given cyber intrusions by Russian agents during the 2016 presidential race. 

According to the report compiled by former special counsel Robert MuellerRobert (Bob) MuellerCNN's Toobin warns McCabe is in 'perilous condition' with emboldened Trump CNN anchor rips Trump over Stone while evoking Clinton-Lynch tarmac meeting The Hill's 12:30 Report: New Hampshire fallout MORE, Russian agents hacked into the email accounts of Clinton campaign staffers, including campaign chairman John Podesta, and stole thousands of emails. Russian actors also hacked into servers at the Democratic National Committee and the Democratic Congressional Campaign Committee. 

Experts have raised concerns ahead of the 2020 presidential election about the cybersecurity of campaigns. 

Former top officials, including two former Homeland Security secretaries, created the “U.S. CyberDome” last year designed to help presidential campaigns address cybersecurity, while private companies such as Cloudflare are offering free cyber assistance to presidential and congressional campaigns. 

These concerns were underlined in October, when Microsoft announced that Iranian cyber criminals had targeted a presidential campaign. Reuters later reported that it was President TrumpDonald John TrumpCDC updates website to remove dosage guidance on drug touted by Trump Trump says he'd like economy to reopen 'with a big bang' but acknowledges it may be limited Graham backs Trump, vows no money for WHO in next funding bill MORE's campaign but said the hacking attempt did not succeed.