Threat Intelligence Report: Threat Actors Targeting the 2024 U.S. Presidential Election

The United States election process is a fundamental pillar of its democracy, involving a vast network of federal and state agencies, political parties, candidates, and, most importantly, the voting public. As elections approach, it’s imperative to recognize and understand the array of cyber threats that could impact the integrity and trustworthiness of this critical process.

Cyber adversaries, including state-sponsored actors and hacktivist groups, are increasingly active in the lead-up to elections. For US-specific threats, the dark web has become a hub for malicious actors to trade sensitive information and develop strategies to exploit vulnerabilities. Hacktivist groups are also mobilizing, aiming to disrupt proceedings or sway public opinion through coordinated cyber campaigns.

However, one of the biggest threats is state-sponsored entities that employ sophisticated tactics to infiltrate systems, steal data, and disseminate misinformation. Their activities can undermine confidence in the electoral process and potentially alter outcomes. Malicious actors are also utilizing artificial intelligence to create and automate the spread of disinformation and misinformation, thereby shaping public opinion in unintended ways. Commonly exploited vulnerabilities, such as outdated software and inadequate security protocols, make systems more susceptible to attacks.

Election infrastructure, government agencies engaged in electoral processes, political campaigns, media organizations, and technology providers could all be at risk during this time. These and similar entities must prioritize cybersecurity measures to protect against potential breaches and ensure the integrity of the electoral process. This report provides a comprehensive overview of the potential cyber threat landscape and critical vulnerabilities that could impact the election process. This analysis is crucial for preparing and safeguarding against cyberattacks that could disrupt or influence election outcomes.

In this report, FortiGuard Labs Threat Research provides an in-depth analysis of threats gathered from January 2024 to August 2024 that may affect US-based entities and the electoral process. It also examines the diverse array of challenges posed by cyber threats, assesses their impact on the present US elections, and provides guidance on how to protect critical environments and systems.