(ICS)² Chapter NL debate about voting machines

Posted on 15-05-2017 by Sijmen Ruwhof

The Dutch chapter of (ICS)² asked me to tell about how the Dutch voting process could be easily hacked for the last 26 years, because the Dutch government outsourced vote counting tasks to computers:

Afterwards we discussed if the voting process should be executed on paper completely in the future. As it seems, around 50% of the security professionals that attended the debate thinks voting machines are still a good idea:

Discussion topic: “We have to keep voting with red pencil and paper”. People on the left agree; on the right disagrees.

I think this outcome is quite shocking! All the hacking experts I know are against voting machines, so my hypothesis is that technical security experts are against, and more process oriented security professionals vote for voting machines.

We need to fix this hacking knowledge and experience gap in our community (!)

Posted in discussion, e-voting, presentation | Comments Off on (ICS)² Chapter NL debate about voting machines

NOS-interview over de gevaren van ransomware

Posted on 15-05-2017 by Sijmen Ruwhof

Vandaag belde de NOS en vroeg wat de gevaren zijn van ransomware, en in het bijzonder het WannaCry-virus, dat dit weekend honderdduizenden computers op slot zette. Ze schreven het volgende stuk erover:

Lees het hele nieuwsbericht verder op NOS.nl.

Posted in cyber crime, interview, ransomware | Comments Off on NOS-interview over de gevaren van ransomware

3FM: WannaCry-computervirus

Posted on 15-05-2017 by Sijmen Ruwhof

Vanmorgen was ik te gast in de radio-uitzending van Domien bij 3FM wat ging over het wereldwijde WannaCry-computervirus wat dit weekend al honderdduizenden computers heeft gegijzeld en nog zeer actief is. Wat moet je doen en waar moet je op letten?

Posted in 3FM, computer worm, cyber crime, interview, phishing, radio, ransomware | Comments Off on 3FM: WannaCry-computervirus

Keynote op congres Informatieveiligheid in de Overheid

Posted on 11-05-2017 by Sijmen Ruwhof

Vandaag mocht ik een keynote verzorgen op het jaarcongres Informatieveiligheid in de Overheid:

Posted in e-voting, hacking, pentesting, presentation | Comments Off on Keynote op congres Informatieveiligheid in de Overheid

FERM-interview over digitale dreigingen voor het MKB

Posted on 20-04-2017 by Sijmen Ruwhof

FERM heeft me geïnterviewd over phishing en andere digitale dreigingen waar het MKB dagelijks mee te maken krijgt:

Continue reading

Posted in cyber crime, interview, security awareness | Comments Off on FERM-interview over digitale dreigingen voor het MKB

Sveriges Radio: Cyber crime and election hacking

Posted on 15-04-2017 by Sijmen Ruwhof

A correspondent from Swedish national radio traveled to The Netherlands to interview me about my research about how I could hack the Dutch elections that were held in March 2017:

As this radio show is presented in Swedish, a local friend of my there was so kind enough to make a transcript of the interview in English: Continue reading

Posted in cyber crime, e-voting, interview, radio, security awareness | Comments Off on Sveriges Radio: Cyber crime and election hacking

Sputnik radio: Has Russia hacked the Brexit vote?

Posted on 12-04-2017 by Sijmen Ruwhof

Moscow based Sputnik Radio interviewed me about the news that Russia might have tried to hack the Brexit election:


Update August 17, 2022
This interview (.mp3) was originally hosted on SoundCloud. I just found out they deleted this specific upload without notifying me about it. Guess giving an interview on Sputnik radio about a controversial topic is nowadays considered fake news. It seems that such uploads will be deleted by SoundCloud without researching the contents.

Posted in e-voting, hacking, interview, radio | Comments Off on Sputnik radio: Has Russia hacked the Brexit vote?

Gemeente Rotterdam slecht beveiligd

Posted on 06-04-2017 by Sijmen Ruwhof

Mijn stukje in het NOS 20:00 uur Tv-journaal van vandaag over de onveiligheid bij gemeente Rotterdam:

Posted in hacking, interview, media, password, security awareness | Comments Off on Gemeente Rotterdam slecht beveiligd

TeleSUR: South American Tv broadcaster about Dutch election hacking

Posted on 09-03-2017 by Sijmen Ruwhof

Today South American Tv broadcaster teleSUR brought my research about how I could hack the Dutch elections under attention via their news update:

Posted in e-voting, hacking, tv | Comments Off on TeleSUR: South American Tv broadcaster about Dutch election hacking

AFP: ‘Ditch computers to save democracy: ethical hacker’

Posted on 03-03-2017 by Sijmen Ruwhof

See below for my in-depth interview to Jo Biddle from international news agency AFP:

Ditch computers to save democracy: ethical hacker

UTRECHT (NETHERLANDS) © ANP/AFP / by Jo Biddle
In an age of superfast computers and interconnected everything, the only sure way to protect the integrity of election results is to return to paper and pen.

That is the view of Sijmen Ruwhof, an ethical or “white hat” hacker, who last month revealed that the Dutch election’s commission computer software was riddled with vulnerabilities.

In a shock announcement just weeks before the March 15 elections — seen as a bellwether of the rise of far-right and populist parties across Europe — Dutch officials announced they were abandoning the computer system in use since 2009 to return to counting ballots by hand.

It was Ruwhof who discovered the problem. At the request of Dutch broadcaster RTL he spent just one evening examining the OSV software, developed for the Dutch government by a German company, via an online YouTube explanatory video, finding 25 weak points.

“It seemed to be completely insecure. I was quite shocked that we run our democracy, our election process based on very vulnerable software,” he told AFP. Continue reading

Posted in analysis, cyber terrorisme, cyber warfare, e-voting, hacking, interview | Comments Off on AFP: ‘Ditch computers to save democracy: ethical hacker’

BNR: De Technoloog over Digitaal Stemmen

Posted on 02-03-2017 by Sijmen Ruwhof

Vandaag was ik uitgebreid (1 uur) te gast bij De Technoloog, een podcast van BNR Nieuwsradio:

Continue reading

Posted in bnr nieuwsradio, e-voting, hacking, interview, podcast, radio | Comments Off on BNR: De Technoloog over Digitaal Stemmen

RTL Nieuws: “Twijfel over betrouwbaarheid Stemwijzer door beveiligingsproblemen”

Posted on 08-02-2017 by Sijmen Ruwhof

De Stemwijzer is gehackt en iemand heeft als grap SijmenRuwhofiseenlul erin opgenomen:

RTL Nieuws belde me op en schreef het volgende stuk daarover vandaag: Continue reading

Posted in bnr nieuwsradio, e-voting, hacking, interview, media, radio | Comments Off on RTL Nieuws: “Twijfel over betrouwbaarheid Stemwijzer door beveiligingsproblemen”

Cqure Quick Question: over (non)scoping bij pentests

Posted on 03-02-2017 by Sijmen Ruwhof

Cqure nodigde me uit om te komen praten over de scoping van pentesten:

Cqure: “Sijmen Ruwhof van Secundity vertelt deze week in de Cqure Quick Question over (non) scoping bij pentests. Sijmen vertelt in deze video dat veel pentesten in Nederland van een zeer goed niveau zijn maar dat het verschil juist zit in een goede scoping, of een “non scoping” zoals Sijmen zelf noemt.”

Posted in hacking, interview, pentesting, scoping, security assessment | Comments Off on Cqure Quick Question: over (non)scoping bij pentests

NOS vroeg: “Hoe kun je nog veilig stemmen tegenwoordig?”

Posted on 02-02-2017 by Sijmen Ruwhof

Vandaag was ik uitgenodigd door de NOS op 3 Tech podcast:

NOS: “Hoe kun je nog veilig stemmen tegenwoordig, zonder kans dat je gehackt wordt door het buitenland? Als je het nieuws hierover deze week hebt gevolgd zou je er moedeloos van kunnen worden. Ethisch hacker Sijmen Ruwhof ontdekte hoe lek het systeem is, en vertelt wat we kunnen doen om veilig te kiezen.”

Posted in e-voting, hacking, interview, podcast, radio | Comments Off on NOS vroeg: “Hoe kun je nog veilig stemmen tegenwoordig?”

Minister Plasterk: “Komende verkiezingen weer 100% handmatig”

Posted on 01-02-2017 by Sijmen Ruwhof

Mijn onderzoek in samenwerking met de onderzoeksjournalisten van RTL Nieuws over de veiligheid van onze stemtelsoftware heeft vergaande impact gehad. Minister Plasterk heeft besloten dat de komende verkiezingen alle stemmen voor 100% handmatig geteld gaan worden:

Posted in e-voting, hacking | Comments Off on Minister Plasterk: “Komende verkiezingen weer 100% handmatig”