1. Forum
  2. FidoNet
  3. CONSPRCY

  • Malicious domains target 2026 US Midterm elections

    From Mike Powell@1:2320/105 to All on Wed Jun 3 09:23:48 2026
    Over 5,000 malicious domains targeting 2026 US Midterm elections spotted
    going live and they could be used for fraud, phishing, or worse

    Date:
    Tue, 02 Jun 2026 19:00:00 +0000

    Malicious actors are not targeting vote counters, but rather the voters themselves -- Russia (and probably other nation-states, as
    well) is actively trying to influence US Midterm elections scheduled to take place in November this year. This is according to a new report from cybersecurity researchers Check Point Research , who said they saw more than 5,000 election-themed websites pop up since January this year.

    In this new era of AI-powered disinformation, the goal is often not to change vote counts directly, but to convince voters that truth itself is difficult
    to verify, the researchers said. In other words, these hackers are not targeting the machines that count the votes, but rather humans casting them, influencing them and thus changing the outcome of the elections. This is hardly a new thing, and weve seen US government officials accusing Putin of meddling with US presidential elections before.

    This time, however, Check Point found concrete evidence, as well
    as a detailed modus operandi of these operations. In January, the researchers found 1,300 domains containing the word election and almost 3,000 with the word vote. Between mid-April and mid-May, election held steady at around 1,140, while vote spiked to 4,010. The volume is increasing as November approaches, and the mix is shifting toward the more voter-facing term, it was explained.

    While domain registration volume alone does not automatically mean malicious intent, security teams know that the domains are usually used for phishing pages impersonating information portals, fake donation collection sites, candidate impersonation , and misinformation distribution campaigns.

    Check Point also said that it saw a Russian operation called Doppelganger cloning high-authority news sites (Reuters, The Washington Post, Fox News,
    and similar) and publishing fake news there, hoping other outlets would pick up and distribute it before realizing the scam.

    Security teams working with campaigns, election organizations, fundraising platforms, or any organization adjacent to this environment should treat this cycle as an elevated-risk period for phishing, brand impersonation, and credential-based attacks, Check Point concluded. Thats not because the
    threats are novel, but because the motivation and attention behind them are significantly higher than usual.

    Link to news story: https://www.techradar.com/pro/security/over-5-000-malicious-domains-targeting- 2026-us-midterm-elections-spotted-going-live-and-they-could-be-used-for-fraud- phishing-or-worse

    $$
    --- MultiMail/DOS
    * Origin: Capitol City Hub (1:2320/105)