There’s a growing possibility cyber threats could disrupt the upcoming federal election, writes Glenn Maiden.
Election security is a pressing concern for government agencies, cybersecurity experts, and the public as the 2025 federal election draws closer. Australia’s paper-based voting system makes direct cyber tampering with ballots unlikely; however, interference can still happen in other ways. Cyberattacks, misinformation, and foreign influence campaigns all have the potential to disrupt the election process and undermine public confidence.
Election-related cyber threats aren’t new, but cyber-enabled opportunities for disruption and manipulation are many and varied. The 2016 census attack demonstrated how government-run digital platforms can be targeted. Attackers often exploit vulnerabilities in supporting infrastructure, even when voting systems have strong protections. A cyberattack on voter registration databases, electoral commission websites, or ballot distribution systems could introduce major disruptions. Even if the election remains secure, public confidence in the process can still be undermined.
Foreign interference in democratic processes is well-documented globally, with misinformation and disinformation already shaping public discussions on key political issues. These campaigns can push false narratives about policies, economic conditions, or national security to sway public sentiment. Social media and online news sources make it easy for misleading content to spread quickly, creating confusion and division. Australia’s role as a long-standing member of the Five Eyes alliance and a key partner in the Australia – United Kingdom – United States (AUKUS) agreement, increases the likelihood of hostile state actors attempting to manipulate its political landscape.
Geopolitical conflicts and power struggles have already fuelled disinformation campaigns designed to benefit certain interests. Some actors see Australia’s election as an opportunity to push their own agendas; however, misinformation doesn’t always come from foreign sources. Domestic political groups, advocacy organisations, and media outlets also spread misleading narratives to shape public opinion.
Cybercriminals and state-sponsored groups don’t need to go after the voting system itself to cause problems in the lead-up to an election. Hitting essential services like government agencies, media organisations, or financial institutions with ransomware could be enough to create uncertainty and shake public confidence. Leaking sensitive information (malinformation) can shift public perception, damage reputations, or even sway undecided voters. Disrupting telecommunications or emergency response services could add another layer of chaos, making it harder for officials to communicate with the public.
Not every attack needs to be high-profile to have an impact, either. Targeting smaller but critical service providers, like companies managing electoral roll data, logistics firms handling ballot distribution, or contractors supplying digital infrastructure, could cause delays and raise questions about whether the election is running smoothly. The timing of an attack matters just as much as the target. A well-placed cyber incident just before voting day or during ballot counting could create confusion, put pressure on response teams, and open the door for misinformation to spread.
AI-generated content is likely to play a role in shaping public discourse
Artificial intelligence has also introduced new risks. Deepfake videos, AI-generated audio clips, and synthetic news articles have made it easier than ever to broadly spread disinformation. The increasing sophistication of these tools means that fabricated content can be highly convincing. Voters need to be particularly cautious about the information they consume in the lead-up to the election, as AI-generated content is likely to play a role in shaping public discourse.
The Australian government has strong measures in place to detect and respond to these threats. Agencies such as the Australian Cyber Security Centre and the Australian Signals Directorate monitor cyber risks in real time and work closely with electoral commissions to strengthen defences. Security teams run simulated cyberattacks on election systems to test for weaknesses and improve response times. Law enforcement and intelligence agencies also track ransomware groups and state-sponsored threat actors known to target government infrastructure.
Efforts to curb misinformation have become just as important as technical security. Election officials collaborate with social media platforms to flag and remove false information, but misleading narratives still spread fast. Digital literacy campaigns, like the Australian Electoral Commission’s Stop and Consider initiative, aim to help voters identify manipulated content. However, the challenge is getting through to people who already distrust mainstream sources. Security measures can protect the election process itself, but stopping bad information from influencing public perception remains an ongoing battle.
Government agencies, businesses, and individuals need to stay alert to cyber threats and misinformation. Attackers target election-related systems through phishing, ransomware, and denial-of-service attacks, while disinformation campaigns aim to erode trust in the process. Monitoring unusual activity, securing networks, and having a clear response plan can help prevent disruptions, as can identifying vulnerabilities before attackers exploit them. Educating the public on misinformation also makes it harder for false narratives to take hold.
Australia’s national security agencies are already acting to protect the integrity of the election. ASIO has made it clear that the 2025 federal election will take place in a security environment marked by eroded trust in institutions, politically motivated violence, and attempts at foreign interference. Specialist teams are already working alongside the Australian Electoral Commission and other agencies to safeguard the process, and any attempts by foreign regimes to meddle in the election, whether by pressuring diaspora groups, directing foreign-language newspapers, spreading disinformation on social media, or using other tactics seen overseas, will be detected. Security agencies will be watching, and they will act.
Glenn Maiden, director of threat intelligence, FortiGuard Labs, Australia and New Zealand, Fortinet
Leave a Reply