Colorado Secretary of State Faces Scrutiny Over Voting Machine Password Leak in Live Interview

Jena-Griswold

October 30, 2024

In a recent live interview, Colorado Secretary of State Jena Griswold faced tough questions from 9NEWS anchor Kyle Clark about an inadvertent leak of sensitive BIOS passwords linked to voting machines. The issue surfaced when a Colorado GOP affidavit revealed that over 600 passwords had been accidentally published on the Secretary of State’s website from August to October, raising concerns over election security and the confidentiality of data.

Griswold’s office initially acknowledged that some BIOS passwords for voting system components were made accessible. Clark pressed Griswold for specifics, asking if this was indeed a breach of security. Griswold downplayed the incident, stating that the passwords published were “partial” and wouldn’t allow full access to voting machines. According to Griswold, Colorado’s voting systems remain secure due to a multi-layered security approach, which includes physical access requirements and two-part passwords for system entry. However, she confirmed that her office had started an investigation into the breach and that all passwords had since been removed from the website.

Griswold also faced criticism for not immediately notifying county clerks of the password exposure, with many learning of the incident from the Colorado GOP’s public announcement. Despite Clark’s questions, Griswold maintained that the leak didn’t constitute an “insider threat,” as defined by the Department of Homeland Security, emphasizing that no unauthorized access had been detected.

The Colorado GOP criticized the leak as a “major lapse” in password management and cited it as a threat to election integrity. Election security protocols in Colorado mandate strict confidentiality around such data, and the public display of unencrypted BIOS passwords is a direct breach of state regulation. The GOP’s response highlighted the importance of transparency and swift corrective action to maintain public trust in election processes.

When asked whether she would resign in light of the incident, Griswold dismissed the suggestion, stating she was committed to improving election security and had already implemented measures to enhance system protection. This incident follows another election-related error in 2022, which impacted voter confidence, prompting further calls for Griswold to address these recurring security lapses.

Clark’s interview brought attention to the ongoing challenges in safeguarding election data and maintaining public confidence, with Griswold assuring voters that her office is cooperating with federal partners, including the Cybersecurity and Infrastructure Security Agency (CISA), to resolve the issue.

Sources:

  • [9NEWS Interview with Jena Griswold]
  • Colorado GOP affidavit statements on security concerns
  • Public statements from Colorado Secretary of State’s Office