WASHINGTON — The FBI, in a change of policy, is committing to inform state officials if local election systems have been breached, federal officials said Thursday.
In the past, the FBI would alert local governments about attacks on their electoral systems without automatically sharing that information with the state. That meant state officials, left in the dark, might be in a position of certifying the accuracy of election results without realizing there had been problems in individual counties. Alerting local governments about breaches, but not the states, was in keeping with FBI policy of protecting the privacy and identities of the actual hacking victim.
Now, though, the FBI will notify both counties victimized by breaches as well as the state’s chief election official — in most cases, the secretary of state. Under the new policy, that notification is to be done in person. The state will be notified either simultaneously or around the same time, officials said Thursday.
The change is intended to bolster federal-state cooperation, which has often been difficult on electoral issues, and is one of several government efforts to rethink how information about cyber threats is shared and with whom. It may also ease concerns of local officials who in the past have complained about the lack of information they’ve received from the federal government, though cooperation has improved ahead of the 2020 election with concerns that Russia or another nation could try to tamper with the vote.
The policy change was shared with state officials on Thursday and made public later in the day. Senior officials from the FBI and Justice Department described the outlines of it to The Associated Press ahead of the formal release on condition of anonymity.
State elections officials praised the change, saying the notifications are essential to securing elections in their states. The secretaries of state in Ohio, Colorado and West Virginia issued a joint statement calling it a “good step forward in protecting” elections.
California Secretary of State Alex Padilla told The Associated Press that state election officials play an important role in supporting local election officials.
“It’s imperative that we work together not just in the proper administration of elections but in the proper security of elections,” Padilla said. “It’s us at the state level that can connect dots if things are happening in multiple jurisdictions in our state.”
Federal officials say their goal is to sound the alarm louder and at higher levels of government than in past years, ensuring that information about efforts to interfere in the election reaches the state officials who need it the most and who have the best resources to deal with it. That is especially important since federal officials believe Russian agents in 2016 searched for vulnerabilities within election systems in all 50 states.
Though the policy change means that a broader audience of government officials will learn of any intrusion, it does not guarantee that the American public will as well.
FBI officials say they will continue to protect the privacy of individual hacking victims, including governmental offices or local elections systems, by not sharing their identities with the public. It will remain up to electoral officials to disclose if they’ve been hacked, or if they are working with the FBI.
That stance has been a source of contention between federal law enforcement and state and local officials. The public still does not know, for instance, which two Florida counties were breached by Russian agents in 2016, and members of the congressional delegation said they were barred by federal officials from sharing that information following a briefing they attended.
