The computer infrastructure of a Georgia county at the center of an effort to falsely claim that the state’s 2020 presidential election was marked by fraud was struck by a cyberattack earlier this month that prompted state officials to sever Coffee County’s access to statewide election systems.

In a statement Friday, the Coffee County Board of Commissioners said that the county was notified by the Cybersecurity and Infrastructure Security Agency on April 15 about unusual cyber activity in Coffee County’s IT infrastructure.

“Upon examination, Coffee County’s IT infrastructure showed no evidence of exfiltration of data/files, but did indicate cyber-activity by an unknown malicious actor,” the county board said, adding that it declared a cyber incident and took steps to secure its systems.

The incident prompted state election officials to shut down Coffee County’s access to Georgia’s statewide voter registration system, known as GARViS, “out of an abundance of caution,” according to a notice sent by Georgia’s Secretary of State’s office obtained by CyberScoop.

Coffee County election officials were also “barred” from accessing other state systems, including an election management suite known as ePulse, the election night reporting system and other state systems “until the security threat is cleared,” according to the note.

The note added that there is no evidence “that this is an issue or attack impacting other counties, however attacks can be done sequentially, impacting one county, then another.”

The Georgia Secretary of State’s office could not immediately be reached for comment. CISA referred questions about the incident back to Coffee County. 

The breach in Coffee County is the second incident in Georgia in which IT infrastructure has been breached in counties where former President Donald Trump or his allies are embroiled in legal battles related to his effort to overturn the results of the 2020 election.

Earlier this year, Fulton County, Georgia, was struck by a ransomware attack believed to have been carried out by the Russian criminal gang known as LockBit. Prosecutors in Fulton County have indicted Trump alongside his lawyer, Rudy Giuliani, and his former chief of staff, Mark Meadows, for their attempts to change the outcome of the 2020 election.

In Coffee County, Trump allies are alleged to have unlawfully obtained voting machine software in what ​​is considered one of the most serious breaches of voting equipment in recent memory.

The extent of the cyberattack on Coffee County remains unclear, as is who was behind it. The number of impacted systems is also unclear, but some parts of Coffee County’s website were down Thursday and Friday. County officials have been responding to public records requests this week by claiming the county archiver is down for maintenance.

Tim Starks contributed reporting to this article.

The post Cyberattack hits Georgia county at center of voting software breach appeared first on CyberScoop.

Leave a Reply

Your email address will not be published. Required fields are marked *

Explore More

Six Austrians Arrested in Multi-Million Euro Crypto Scheme

May 8, 2024 0 Comments 0 tags

Europol and Eurojust targeted the orchestrators of a cryptocurrency scam launched in December 2017

Class-Action Lawsuit against Google’s Incognito Mode

April 3, 2024 0 Comments 0 tags

The lawsuit has been settled: Google has agreed to delete “billions of data records” the company collected while users browsed the web using Incognito mode, according to documents filed in

CISA and Partners Release Advisory on Threat Actors Exploiting Ivanti Connect Secure and Policy Secure Gateways Vulnerabilities

February 29, 2024 0 Comments 0 tags

Today, CISA and the following partners released joint Cybersecurity Advisory Threat Actors Exploit Multiple Vulnerabilities in Ivanti Connect Secure and Policy Secure Gateways:  Federal Bureau of Investigation (FBI)  Multi-State Information