Officials Allay Concerns That Voter Portals Allow Canceling of Other Voters’ Mail-in Ballots in Some States

Election security in some states appears to be so lax that someone could spy on other people’s mail-in ballot process and even cancel their ballots with only basic personal information that’s easily obtained online.

However, spokespeople for the states’ election authorities assure that measures are in place to prevent such tampering.

Upon login, a person can view the voter’s registration information and other details, including the registered address and ballot status. The portal also allows voters to request a new ballot, which the person can fill out online, print out, and mail to the election authorities to vote. The ballot package needs to be signed, and the signature would be matched by the authorities to the one they have on record.

However, the page warns that “if you continue, a ballot previously mailed to you will be cancelled,” suggesting that somebody could log in and cancel another person’s ballot simply by requesting a new one.

The Epoch Times contacted a Washington voter who then went through the process for his own ballot, which he recently received in the mail. He verified that a person’s name and date of birth are all it takes to request a new ballot.

Kylee Zabel, spokeswoman for the Washington secretary of state, explained that the original ballot wouldn’t be invalidated, but only “placed on hold.” If the voter returns the ballot, it would still be processed and counted and no additional ballots would then be accepted.

“The Office of the Secretary of State and county elections offices, with the collaboration of state and federal partners and private-sector experts, have instituted multiple levels of security over the entire vote-by-mail process, including both electronic and manual measures to maintain the integrity of the election,” she told The Epoch Times via email.

Andrea Chiapella, spokeswoman for the Oregon secretary of state, assured The Epoch Times that “no votes can be cast or canceled online” through the voter portal, called MyVote.

Voters with disabilities and military and overseas voters can mark their ballot online “and send it back in their return envelope already sent to them,” she said via email.

“They still must return the ballot with the proper identifying information, including their signature, which will be compared against the voter’s signature in the voter registration file before being accepted to count,” she said.

She also noted that trying to cast another person’s ballot is a felony punishable by up to five years in prison.

“Attempts to alter information on MyVote can be tracked through our system logs to help identify the individual who is committing the crime,” she said.

The Oregon voter portal appeared to be offline for maintenance on Oct. 18 for several hours.

Both Washington and Oregon hold all-mail elections, meaning ballots are automatically mailed to all registered voters before every election.

The online voter portals issue was first spotted by users of anonymous discussion board “Politically Incorrect” on 4chan.org. The board is known for robust open-source research, as well as online pranks and offensive posts.

Screenshots posted to the board around Oct. 18 indicated some users took advantage of the vulnerability to log in as Portland, Oregon, Mayor Ted Wheeler, Oregon Secretary of State Bev Clarno, and others. It’s not clear whether the users went through the whole process of printing the overseas, military, or disabled ballots for the officials. The main posts on the board on the subject urged users not to commit voter fraud, but only showcase the vulnerability to publicly expose it.

It isn’t clear if other states suffer from the same vulnerability.