A new cybersecurity report warns that November's midterm elections will drive elevated cyber threats to political organizations, fundraising platforms, and media outlets, with some groundwork for election misinformation likely already being laid. Check Point, a cybersecurity firm, documented significant increases in newly registered domains containing keywords like "election" and "vote," raising concerns among election security experts about phishing, impersonation schemes, and AI-enabled disinformation.

The report found that in January, approximately 1,300 newly registered domains contained the keyword "election" while roughly 2,957 contained "vote." An even sharper increase occurred between April 13 and May 14, when approximately 1,140 domains with "election" and 4,010 with "vote" were registered. While registering domains alone does not constitute malicious activity, Check Point notes these websites increase the pool that may later be used for phishing, impersonation, fraudulent donation schemes, or misinformation distribution.

What the Right Is Saying

Conservative cybersecurity commentators note that domain registration alone does not indicate malicious intent and caution against alarmist interpretations. Oregon Secretary of State Tobias Reed, a Republican, told PBS News that while the domain findings warrant attention, they may represent legitimate political organizing rather than nefarious activity. "It may not be nefarious," Reed said, adding that voters should verify suspicious websites.

Republican election officials have emphasized state-level preparedness over federal intervention. Some conservative voices argue that concerns about AI-generated content and foreign influence mirror warnings issued during previous cycles without materializing into widespread disruption. The focus, according to this view, should remain on basic cyber hygiene rather than expanded government authority.

What the Left Is Saying

Progressive election security advocates point to the data as confirmation of longstanding concerns about digital vulnerabilities in U.S. elections. Kathy Boockvar of Athena Strategies, who served as Pennsylvania's secretary of state from 2019 to 2021, said the Check Point findings are consistent with warnings from federal agencies and private sector threat trackers. "Seeing that these websites are continuing to grow is of significant concern, on top of what's already a concerning status quo," Boockvar told PBS News.

Democratic-leaning cybersecurity experts emphasize that both major party platforms showed vulnerabilities in the report. ActBlue, the Democratic fundraising website, had approximately 9,600 leaked citizen credentials exposed, while its Republican counterpart WinRed had around 6,500. Election security advocates argue this demonstrates that threats cross partisan lines and require nonpartisan federal coordination.

What the Numbers Show

The Check Point report documents specific threat metrics relevant to midterm security: 82% of malicious file attacks occur through email phishing attempts, highlighting the prevalence of that attack vector. Both major party fundraising platforms experienced significant credential exposures, with ActBlue at approximately 9,600 leaked credentials and WinRed at roughly 6,500. Individual political campaign domains for swing-state candidates from both parties showed minimal leaked credentials in comparison, suggesting exposure is concentrated among larger platforms rather than individual campaigns.

The domain registration data shows substantial growth: January saw about 1,300 "election" domains and nearly 3,000 "vote" domains registered; a single month between April and May added approximately 1,140 "election" and over 4,000 "vote" domains. Foreign adversary activity varies by nation, with Russia-focused on influence operations and narrative amplification, China concentrating on reconnaissance and division-exploitation, and Iran historically engaging in direct hacking of political operations.

The Bottom Line

The Check Point report underscores that cybersecurity threats to U.S. elections continue evolving ahead of November's midterms. Both major party fundraising platforms experienced significant credential exposures, while thousands of new election-related domains provide potential vectors for phishing and disinformation campaigns. AI-enabled content creation has lowered barriers for disseminating false information about the electoral process.

Election officials face resource constraints in responding to these threats. Oregon's Reed said his state relies on its National Guard for cybersecurity needs rather than federal assistance from CISA, which he suggested should be providing more support. Boockvar noted that federal-state collaboration and information sharing presents a different landscape compared to previous election cycles. Voters are advised to verify suspicious websites before trusting them with personal information or political donations.