Cybersecurity researchers have identified a shift in how hackers and foreign influence operators are targeting elections, with a new emphasis on misinformation campaigns over direct tampering with voting infrastructure.

A report published Monday by cybersecurity firm Check Point Software found that threat actors are increasingly focusing on confusing and misleading voters rather than attempting to compromise voting machines and ballots ahead of the 2026 midterm elections.

The analysis indicates that phishing attacks, impersonation schemes, and misinformation activities are expected to be the primary tactics used by malicious actors seeking to influence the electoral process.

This represents a notable evolution in election security threats, as previous concerns have centered heavily on the potential for direct manipulation of voting systems and ballot counting processes.

The findings suggest that election security officials and voters may need to prepare for different types of threats than those that have dominated previous election cycles, with information integrity becoming as critical as infrastructure protection.