Photo: Stephen Maturen/Getty Image

Very few (only 4%) of state elections offices across the 50 states, Washington D.C. and the three U.S. territories use adequate protection to keep hackers from sending email from those offices' official email addresses, according to a new study by the security company Anomali.

Why it matters: Nothing in the basic email protocol guarantees that a sender's address is authentic. To do that, web sites need to add a handful of additional security protocols. That could lead to voter suppression if a dirty tricks-wielding campaign sends emails from the official account saying that polling places have moved, election days changed, or groups of people are no longer registered to vote.

The Anomali study looked at 6 different security protocols: DANE, DKIM, DMARC, DNSSEC, SPF and STARTTLS.

  • DKIM, DMARC and SPF all have different functions to protect recipients from fake or “spoofed” email addresses.
  • DNSSEC, DANE and STARTTLS work together to ensure the message reaches the right recipient without being altered along the way.

The details: If a website fails to have SPF and DMARC in place and configured to prevent it, a bad guy can fake (or "spoof") an email from the site.

  • Properly set up, SPF identifies if a server has permission to send an email from a domain and DMARC tells an email client to either reject emails that fail SPF or mark them as spam.
  • Only 4% of elections sites had both set up in a way to prevent spoofing.
  • DKIM ensures specific emails were in fact sent by the senders listed. Only 10 percent of states use DKIM.
  • None of the security protocols had even 50% adoption accross the states.

Go deeper

Bryan Walsh, author of Future
1 hour ago - Health

Rockefeller Foundation commits $1 billion for COVID-19 recovery

A health worker performs a COVID-19 test in New Delhi. Photo: Raj K Raj/Hindustan Times via Getty Images

The Rockefeller Foundation announced on Monday that it will allocate $1 billion over the next three years to address the pandemic and its aftermath.

Why it matters: The mishandled pandemic and the effects of climate change threaten to reverse global progress and push more than 100 million people into poverty around the world. Governments and big NGOs need to ensure that the COVID-19 recovery reaches everyone who needs it.

Updated 2 hours ago - Politics & Policy

Coronavirus dashboard

Illustration: Sarah Grillo/Axios

  1. Politics: Ex-FDA chief: Pence campaigning after COVID exposure puts others at risk — Mark Meadows: "We are not going to control the pandemic"
  2. Health: 13 states set single-day coronavirus case records last week — U.S. reports over 80,000 new cases for second consecutive day.
  3. World: Italy tightens restrictions Spain declares new state of emergency.
  4. Media: Fox News president and several hosts advised to quarantine after possible COVID-19 exposure

Fox News president and several hosts advised to quarantine in COVID-19 precaution

A political display is posted on the outside of the Fox News headquarters on 6th Avenue in New York City in July. Photo: Timothy A. Clary/AFP via Getty Images

Fox News President Jay Wallace and anchors Bret Baier and Martha MacCallum are among those recommended to get tested and quarantine after possible exposure to COVID-19, the New York Times first reported Sunday night.

The big picture: The Fox News contingent, which also included "The Five" show hosts Juan Williams and Dana Perino, were on a charter flight from Nashville to New York following Thursday's presidential debate with a person who later tested positive for the coronavirus.