Posted: 7/16/2021 3:22:03 PM EDT
[#5]
Quoted:
This is an attempt to compile @seek2 's play by play in one place. Sorry if I missed anything.
Opening said they weren't going to discuss results until they were done, but the delays made the hearing necessary to answer the questions.
Ran a 5 minute into video discussing the audit operations, basically how much effort was put in to maintain chain of custody and how precise they were. Ballot boxes were under strict control and they're being so methodical that the boxes will be returned with the ballots in the same box and same order as they arrived.
Coverage of details, the number of boxes processed and what they did. They found a few non-ballot items in the boxes and segregated them.
Discussion of things the county didn't provide.
Currently discussing duplicated ballots -- thousands of duplicate ballots -- missing serial numbers or have serial numbers printed in a way as to be unreadable, and this made reconcilliation very difficult. This wasn't all, some had very readable numbers, others had numbers but weren't readable, and yet others had no serial numbers at all.
Forensics data acquisitions has been completed.
Zero changes have been made to any original media/devices.
Discussion of the process for digital acquisition.
Discussion of the forensics process emphasizing that no devices were or could be altered.
Specifically stating that the machines had not been tampered with, and more specifically stating that the could detect if the machines had been tampered with due to the md5sum hashes made.
Calling out the AZ secretary of state's claim that the voting machines couldnt' be used due to tampering.
They have not received router configuration files or router data.
County had agreed to provide network data, but did not provided it as it was claimed it would compromise law enforcement and disclose private information.
They know elements of the voting system were breached, registration server had unauthorized access. County issued letter confirming to some voters.
It's become apparent there's security problems with network maintenance.
None of the endpoints of the election management system had updated antivirus, the last update was the day the Dominion software was installed in August of 2019, no OS patches were made since that same date.
Discussing the router setup, and showing that the County's public response v. supoena responses regarding the router information are in conflict.
Publicly stating that the election system is closed and not on the internet, privately sayng they can't provide the data because it would expose private/law enforcement data on the internet.
Security logs only go back to 2/2021, after the election.
There was a massive number of requests (>37000) in one day to validate a blank password on a system with only 8 accounts.
He wants security logs to figure out where that came from.
There's that plus confirmation that an internal system was breached, which with no OS updates means the whole are was breached.
He needs the Dominion keys to get system configuration data including MAC addresses.
He needs the router data to see if the MAC addresses of the dominion machines ever touched the outside internet.
Based on current evidence it's not believed that Maricopa County has the ability to independently verify the election system as they don't appear to have admin access to their own system
ETA:
The county audits don't appear to have addressed any cybersecurity audit.
The same password was used on all accounts and established on August 2019 and has never been changed.
He also needs the log files so he can see anonymous logins because they record usernames and IP address and hostnames
that access files.
He's seeing logins that don't follow normal windows behavior to validate what the activity is. (Hinting it's not legitimate.)
Back to cyberninjas
Saying the audit is taking longer because Maricopa county isn't cooperating.
Batches named as original that are actually duplicate ballots.
Showing slide documenting original batches w/ duplicates -- total over 1000 ballots that were duplicates.
ETA: This was just ONE box.
Found original ballots with same serial number, should be one serial per original ballots. This resulted in delays.
ETA 2:
Printed ballots are calibrated so front/back printing line up to keep bubble errors from happening.
Found ballots far outside of acceptable limits, the average batch they looked at had 1000% error.
Paper bleed can cause overvote.
County says they use VoteSecure paper with special coating that should prevent bleed through.
Actual ballots had serious bleed through, but they don't know if this affected the vote yet, still in analysis.
seeing very thin paper stock used in the election (implying the paper used was not the same as VoteSecure.)
Most of the large offsets were in ballots on demand -- and those were election day ballots, about 160K ballots.
74,000 mail ballots with no record the ballot was sent.
Two docs, EV33 and EV32 -- documenting ballots sent and returned -- missing the 74K sent documents.
Could be verified via ccanvassing, contacting post office.
11,000 weren't on voter rolls in November, and were on the rolls in December.
They voted in November.
3900 voted in the election but registered after the October cut-off date so wouldn't be legal.
18,000 voted in election and were removed immediately after the election.
Mail in ballot standards were lowered over time and then removed.
Maricopa county has not provided the images of the ballot envelopes.
Now giving a wish list:
Needs a full backup of voter roles with information on who made the changes and why.
Need chain of custody data while Maricopa county had ballots.
Need access to ballot duplication software.
Need data regarding security breach.
Needs a network diagram showing how the sherrif's network is on the election network.
Needs other documention on policies etc.
Just general wrap-up now, I think this is the end of it now.
Noting that if they don't get everything it'll be an incomplete audit.
(major bullet points)
Major security issues with the election management system, it was likely accessible by outside parties.
Massive discrepancy in mail-in ballots. 74,000 ballots received without documentation they were sent.
Substantial number of voters in the voter registration system that are suspect -- 18,000 voters that disappearred from the
system immediately after the election without explanation, several thousands that voted in November that
weren't in the registration system until a month later.
In a nutshell, about 100K voter/votes that need some kind of explaining.
County is withholding most of the data that would explain them. View Quote
|
|