Established Fact In the Sept. 24 hearing, CyFIR revealed and showed that not only can these ballot machines access the internet, but in Maricopa County they did access the internet. In the hearing, CyFIR provided the time & date stamps to prove it as well as the IP addresses of the computers they connected to. […]
Election Machines Accessed the Internet (AZ) Read More »
Established Fact Forensic analysis of the Maricopa County EMS server and client workstations revealed 59 open ports at boot, active IPv6, and enabled Terminal Services and Remote Access features. Unallocated hard drive space yielded artifacts of internet connections to public URLs and foreign entities on devices officials represented as strictly air-gapped. The audit team found
EMS Server Internet History & Enabled Remote Services (AZ) Read More »
Established Fact Contrary to representations made to the district court and the public, Maricopa County did not conduct statutorily mandated pre-election L&A testing on all its active vote-center tabulators prior to the November 2020 election. Instead, county officials tested only five spare tabulators – units not deployed to vote centers – leaving the actual production
Failure to Test Production Tabulators – Only Five Spare Units Tested (AZ) Read More »
Disputed Fact Cotton’s forensic presentation to the Arizona Senate documented that a compiler was installed on the Maricopa EMS – a tool providing the ability to modify and create executable files and drivers on the fly that could alter election results without detection. Evidence showed that new executable files were created at least three times
EMS Compiler Installed – Capable of Generating New Executables During Live Election (AZ) Read More »
Established Fact The Cyber Ninjas audit documented as an established fact that neither the EMS operating system nor its antivirus software had been patched or updated since August 2019 – the date of Dominion’s software installation – meaning Maricopa ran a presidential election on a system with 15+ months of unaddressed CVEs. Maricopa County contended
EMS OS and Antivirus Unpatched Since August 2019 – Contradictory CISA Guidance (AZ) Read More »
Disputed Fact Forensic cybersecurity analyst Ben Cotton (CyFIR), retained by the Arizona Senate audit, documented that after the Dominion software installation 45 .exe packages and 1,053 .dll files were modified, and 4 .exe files and 377 .dll files were newly created on the EMS system. Cotton stated: “The machine behavior settings (MBS) and the database
Post-Certification Software Alterations – 45 EXEs and 1,053 DLLs Modified (AZ) Read More »
Established Fact Post-election forensic examinations of Maricopa County’s voting systems conducted by certified test laboratories, including Pro V&V and SLI Compliance, were structurally limited to external reviews, removable-media imaging, and software-level analysis. No auditor was permitted to conduct internal hardware inspections of the tabulator units – the “lift the hood” examination that would verify whether
Disputed Fact Maricopa County publicly represented its 2020 tabulator deployment as consisting of ImageCast Precinct 2 (ICP2) optical scan units. However, multiple independent forensic indicators establish that the devices operated on Election Day were ImageCast Evolution (ICE) units: EMS configuration files consistently identified the tabulators as ICE devices, not ICP2 units; SLOG verification logs and
Defective L&A Testing Using Zero-Voter “NVP” Synthetic Precincts (AZ) Read More »
Reasonable Inference Maricopa County publicly represented its 2020 tabulator deployment as consisting of ImageCast Precinct 2 (ICP2) optical scan units. However, multiple independent forensic indicators establish that the devices operated on Election Day were ImageCast Evolution (ICE) units: EMS configuration files consistently identified the tabulators as ICE devices, not ICP2 units; SLOG verification logs and
Disputed Fact System log files reviewed during post-election forensic analysis indicate that Maricopa County’s tabulation software was surreptitiously altered in components that control how ballots are read – the core functional module of any optical scan tabulator. This alteration rendered the deployed software an uncertified build not matching the EAC-approved Dominion Democracy Suite 5.5B golden
