Rep. Zoe Lofgren (D-CA), chair of the Committee on House Administration, says in a hearing that substantial election-related “vulnerability comes from election technology vendors . . . who have little financial incentive to prioritize election security and are not subject to regulations requiring them to use cyber security best practices.”

Sources:
1. The transcript of this hearing is not available on Congress.gov. The Brennan Center provides the quote:
Framework-election-vendor-oversight
2. The video of the hearing is here:
https://www.congress.gov/116th-congress/event

1. How is it possible that election technology vendors in the U.S. are not subject to regulations requiring them to follow best practices in terms of cyber security?

2. If more than 80% of the U.S. electoral market is in the hands of only 3 voting system vendors, isn’t it enough for the security of at least one of them to be breached to seriously jeopardize the American electoral system?

3. Has the concentration of voting system vendors become stronger or weaker since the Obama Justice Department forced the sale of Premier in 2010?

4. Have the private companies that supplied voter registration databases and electronic pollbooks been audited and periodically reviewed?

5. What about the electronic voting systems and its software source code? Have they been periodically reviewed since 2019?