1/I've been asked how malware capable of undetectable manipulation can find its way onto computers used in GA elections. 2 Windows systems are used. Windows CE for Diebold touchscreen voting machines and desktop versions of Windows for tabulation. Here are the vulnerabilities.

2/ Windows CE is the mobile version of Windows used in hand held devices around the year 2000 (remember?) Windows CE basically has no security features at all. These are the vulnerabilities. Windows CE is an obsolete Microsoft product. It has not been strengthened.

3/Hackers cracking familiar desktop Windows OS try to take over when the computer is first turned on when various tests are run and necessary software is loaded. If something bad happens here, abandon all hope. You'll never find the malware bc its hiding deep b4 even the OS loads

4/ Anti virus software doesn't exist for Win CE. Anti virus software is ineffective if the boot sequence is compromised. And it doesn't matter if the machines are connected to the Internet.

5/Bios updates happen invisibly, often when vendors like Dell flash updates for drivers and firmware. POST sequences pull code from attached devices which may have been purchased from 3rd parties bc original parts are no longer available from original mfr.

6/You cant even trust memory which may have been replaced during system maintenance (KSU/CES did exactly that). When the boot sequence sets up memory it will read whatever is loaded into certain memory locations. Remember: no OS to help you out at this point.

7/A big problem bc Defcon researchers found Chinese songs stored in the memory of Winvote voting machines. That memory was supposed to be initialized and not contain any data at all. Means to me that the supply chains are compromised. Oh, and by the way:

8/Barcode readers and writers are examples of devices that are queried during system initialization. So you barcode enthusiasts, just keep that in mind as you drift off to sleep tonight.