Cybersecurity

Cybersecurity tips for state election offices, as federal support dwindles

Some state election officials are losing faith in the federal government's capacity for support, but there are steps they can take, according to a new report.

By Colin Wood

July 28, 2025

Listen to this article

0:00

This feature uses an automated voice, which may result in occasional errors in pronunciation, tone, or sentiment.

Arizona Secretary of State Adrian Fontes looks on during a House Administration Committee hearing in the Longworth House Office Building at the U.S. Capitol on September 11, 2024 in Washington, D.C. (Bonnie Cash / Getty Images)

A report published last week by the Brennan Center for Justice and the R Street Institute provides states recommendations on how to secure their elections using a “whole of government” strategy, as federal support dwindles.

Researchers pointed to the smooth process they observed during the 2024 election that included a decisive victory by President Donald Trump and a prompt concession by Kamala Harris. The numerous bomb threats, cyberattacks and other attempted disruptions were deftly repelled in part thanks to federal support, the report’s authors claim.

“That these incidents failed to have a major impact is a testament to the planning, preparation, and response of election officials and law enforcement,” the report read. “Still, these incidents highlight the need for policymakers to double down on their commitment to the election resiliency policies and practices that made 2024 such a success.”

The report goes on to detail various steps states can take to replicate the success of the 2024 election, and urges the adoption of a “layered approach,” in which states enact overlapping safeguards against potential disruptions to the democratic process.

For cybersecurity, researchers recommend forming state interagency groups and using state agencies to provide training and conduct vulnerability assessments, both resources that have historically been provided by the federal Cybersecurity and Infrastructure Security Agency.

They also recommend developing and expanding interstate information-sharing networks. One such network is North Dakota’s Joint Cybersecurity Operations Command Center, a 15-state network used to share cybersecurity intelligence in real time. The report cites it as a model that other regions could replicate.

“State officials should join information-sharing efforts like JCOCC and ensure that relevant information is passed on to election officials,” the report reads.

Some states have reported a belief that they’ll need to be more self-reliant under the new Trump administration. Arizona Secretary of State Adrian Fontes told CyberScoop last week, after one of his websites had been defaced by Iran-linked hackers, that he’d lost confidence in CISA’s capacity to support offices like his.