This is a source-check on the other substack article which is quoted from above.
The centerpiece of the new theory is recounted thoroughly in a June 11 Substack post titled “She Won. They Didn’t Just Change the Machines. They Rewired the Election.” Unlike earlier post-election theories, this one doesn’t just focus on theoretical vulnerabilities plus suspicions or vague statistical anomalies. It introduces what it claims is a complete mechanism consisting of software manipulation; a new access mechanism; and a test case.
New Technical Documentation: It describes engineering change orders (ECOs) showing that Pro V&V, a federally accredited test lab, approved software and hardware changes to ES&S voting machines just before the election, without triggering a full certification review. It did so, according to the new claim, by declaring the changes to be “de minimis” (inconsequential) which allowed the changes to be implemented without a complex recertification process. This “de minimis” claim is presented as essentially bogus — a cover to create an ability to make substantive changes without subjecting them to review.
A New Starlink Access Pathway: It claims that Elon Musk’s Starlink gained a new, previously unknown access that provided real-time internet connectivity to voting machines, allowing votes to be altered during tabulation.
‘A “Smoking Gun” Test Case: It cites five machines in Rockland County, NY, that recorded zero votes for Kamala Harris while showing hundreds of votes for other Democrats in the same precincts.
These claims suggest a full system: motive, method, and result. According to the post, this wasn’t just dirty politics or local fraud. It was a coordinated digital operation—technically sophisticated, nationally scaled, and hidden in plain sight.
. . . Tentative Conclusions
The voting machine changes were real, but the idea that Pro V&V scammed the system by claiming “de minimis” to cover up malicious changes does not seem to be supported.
The deployment of 265 Starlink satellites just before the election is confirmed, but there is no evidence any of them were ever connected to voting tabulators and it appears they played no role in vote counting.
The “zero vote” anomaly has a strong sociological explanation and a clear historical precedent- bloc voting by orthodox jewish communities acting on recommendation of their rabbi. It happened in 2020 with Joe Biden receiving zero votes as well.
This is the reply from the “This Will Hold” author:
“This Will Hold
5d
Edited
Hi Michael,
Just here to clarify a few things and offer additional context, especially since some of what you’ve presented includes outdated assumptions about air-gapping, “de minimis” logic, and the scope of Starlink’s role in voting infrastructure.
Poll Books vs. Tabulators: Yes, Starlink was “officially” contracted to service e-poll books in multiple counties. What’s been largely overlooked is that many poll books share ports and internal pathways with tabulation systems—especially when all components run through a central UPS or networked control unit. In counties using centralized setups or vendor-integrated “turnkey” packages, the distinction between air-gapped systems and externally connected components becomes blurrier than it should be.
Air-Gapping Is No Longer a Guarantee: The claim that tabulators are “air-gapped” is often cited, but vendor documentation and independent testing contradict that. ES&S DS200s, for example, have modem capabilities that have been activated in previous elections. Add to that the Eaton/Tripp Lite UPS devices with SNMP-enabled network cards—often sitting directly between tabulators and their power/network environment—and it becomes clear there were viable pathways for intrusion, even if indirect.
The Pro V&V ‘De Minimis’ Loophole: This is a bigger deal than most people realize. Pro V&V certified software changes as “de minimis”—which legally sidesteps a full recertification—but the magnitude of those changes, particularly firmware-level updates across multiple counties, raises major red flags. This isn’t a theoretical concern—it’s part of documented complaints from at least three states.
Starlink’s Role Is About Access, Not Visibility: No one is saying Starlink was directly connected to every tabulator. The concern is command-and-control level access. Starlink’s DTC capability—enabled by the Gen2 satellite fleet and confirmed by Musk’s own documentation—bypasses traditional network routes altogether. This isn’t your average ISP connection. It’s a dedicated, private mesh that can sync with smart hardware in real time, independent of local firewalls, and it’s also the reason the “air-gap” dialogue is a nonstarter.
The Ramapo Example (Which I Never Cited): Correct, the voting patterns in ultra-Orthodox communities follow bloc behavior. But that wasn’t my claim. I’ve focused on Clarkstown, where precinct-level data doesn’t follow that sociological trend and includes affidavits from voters whose ballots are inexplicably absent or distorted.
Evidence vs. Admission: The fact that a post-election forensic audit hasn’t caught this yet doesn’t mean it didn’t happen. Many audits are partial, lack administrative access, are candidate-specific, or rely on vendor-provided data. Our report is based on data inconsistencies, confirmed system access pathways, contract timelines, and alignment between satellite activation and vote spikes in key precincts.
You said: if someone can offer more information or a correction, you’re open to hearing it. This isn’t just a theory anymore—it’s an evidence-based hypothesis backed by infrastructure records, expert forensic analysis, and patterns too precise to dismiss. Add to that a year’s worth of ‘confessions,’ if you will, from the very person who benefited most from the heist.
We’ve laid the groundwork—there’s more than enough evidence for state attorneys general to open an investigation.
Not that I know of. Here’s a good recap of that part:
“Air-Gap” Protection — Theory vs. Reality: This is a critical distinction. The idea that voting systems are “air-gapped”—i.e., not connected to any network—is a common talking point, but it doesn’t hold up under scrutiny.
Remote updates have been pushed in multiple jurisdictions, sometimes over cellular or satellite connections. Some systems labeled “offline” were shown to have remote management ports.
Direct-to-Cell (DTC) satellite capability, rolled out by Musk/Starlink in 2024, allowed access without land-based signals. These satellites could interface directly with LTE modems or integrated modules — no Wi-Fi or Ethernet required.
Pro V&V and system vendors never updated threat models to account for these technologies, and security protocols have not evolved with the real-world capabilities of modern equipment.
So yes — the “air-gap” is now more myth than reality, especially in jurisdictions using equipment with remote-access pathways installed or updated under the guise of “de minimis” changes.
that doesn’t connect the dots. The de minimis update was purportedly to the UPS driver software. Sounds like the implication is that the connection between the UPS and the driver was used to backdoor the systems. Which device exactly was supposed to have received the Starlink DTC connection?
I really encourage you to read both articles but it sounds like you might want to start with the comment thread on the second substack one.
I don’t know, because I’m not anything close to the author but I’ll go see if I can find the answer to that.
Edit: Okay I think this is the relevant part. Basically the theory is that Palantir’s “digital janitor” was used to upgrade voting machine firmware and then erase itself. That upgrade would allow LTE modems to connect to Starlink. That’s my read, I could be wrong.
The Activation: Starlink Goes Direct-to-Cell
That signal came on October 30, 2024—just days before the election, Musk activated 265 brand new low Earth orbit (LEO) V2 Mini satellites, each equipped with Direct-to-Cell (DTC) technology capable of processing, routing, and manipulating real-time data, including voting data, through his satellite network.
DTC doesn’t require routers, towers, or a traditional SIM. It connects directly from satellite to any compatible device—including embedded modems in “air-gapped” voting systems, smart UPS units, or unsecured auxiliary hardware.
From that moment on:
- Commands could be sent from orbit
- Patch delivery became invisible to domestic monitors
- Compromised devices could be triggered remotely
This is a source-check on the other substack article which is quoted from above.
This is the reply from the “This Will Hold” author:
“This Will Hold
5d Edited
Hi Michael,
Just here to clarify a few things and offer additional context, especially since some of what you’ve presented includes outdated assumptions about air-gapping, “de minimis” logic, and the scope of Starlink’s role in voting infrastructure.
Poll Books vs. Tabulators: Yes, Starlink was “officially” contracted to service e-poll books in multiple counties. What’s been largely overlooked is that many poll books share ports and internal pathways with tabulation systems—especially when all components run through a central UPS or networked control unit. In counties using centralized setups or vendor-integrated “turnkey” packages, the distinction between air-gapped systems and externally connected components becomes blurrier than it should be.
Air-Gapping Is No Longer a Guarantee: The claim that tabulators are “air-gapped” is often cited, but vendor documentation and independent testing contradict that. ES&S DS200s, for example, have modem capabilities that have been activated in previous elections. Add to that the Eaton/Tripp Lite UPS devices with SNMP-enabled network cards—often sitting directly between tabulators and their power/network environment—and it becomes clear there were viable pathways for intrusion, even if indirect.
The Pro V&V ‘De Minimis’ Loophole: This is a bigger deal than most people realize. Pro V&V certified software changes as “de minimis”—which legally sidesteps a full recertification—but the magnitude of those changes, particularly firmware-level updates across multiple counties, raises major red flags. This isn’t a theoretical concern—it’s part of documented complaints from at least three states.
Starlink’s Role Is About Access, Not Visibility: No one is saying Starlink was directly connected to every tabulator. The concern is command-and-control level access. Starlink’s DTC capability—enabled by the Gen2 satellite fleet and confirmed by Musk’s own documentation—bypasses traditional network routes altogether. This isn’t your average ISP connection. It’s a dedicated, private mesh that can sync with smart hardware in real time, independent of local firewalls, and it’s also the reason the “air-gap” dialogue is a nonstarter.
The Ramapo Example (Which I Never Cited): Correct, the voting patterns in ultra-Orthodox communities follow bloc behavior. But that wasn’t my claim. I’ve focused on Clarkstown, where precinct-level data doesn’t follow that sociological trend and includes affidavits from voters whose ballots are inexplicably absent or distorted.
Evidence vs. Admission: The fact that a post-election forensic audit hasn’t caught this yet doesn’t mean it didn’t happen. Many audits are partial, lack administrative access, are candidate-specific, or rely on vendor-provided data. Our report is based on data inconsistencies, confirmed system access pathways, contract timelines, and alignment between satellite activation and vote spikes in key precincts.
You said: if someone can offer more information or a correction, you’re open to hearing it. This isn’t just a theory anymore—it’s an evidence-based hypothesis backed by infrastructure records, expert forensic analysis, and patterns too precise to dismiss. Add to that a year’s worth of ‘confessions,’ if you will, from the very person who benefited most from the heist.
We’ve laid the groundwork—there’s more than enough evidence for state attorneys general to open an investigation.
Thanks! - TWH“
And actually, for the first time I can ever remember, I’m specifically recommending reading the comments on there.
it’s quite a stretch to say that Starlink DTC can connect to any “smart device“.
is the author trying to say that UPSes have cellular modems or satellite terminals in them?
Not that I know of. Here’s a good recap of that part:
that doesn’t connect the dots. The de minimis update was purportedly to the UPS driver software. Sounds like the implication is that the connection between the UPS and the driver was used to backdoor the systems. Which device exactly was supposed to have received the Starlink DTC connection?
I really encourage you to read both articles but it sounds like you might want to start with the comment thread on the second substack one.
I don’t know, because I’m not anything close to the author but I’ll go see if I can find the answer to that.
Edit: Okay I think this is the relevant part. Basically the theory is that Palantir’s “digital janitor” was used to upgrade voting machine firmware and then erase itself. That upgrade would allow LTE modems to connect to Starlink. That’s my read, I could be wrong.
Right, which device is supposed to have an LTE modem? that would be an obvious and unusual addition to a UPS.
I think they’re referring to the voting machines. Some examples:
https://www.nbcnews.com/politics/elections/online-vulnerable-experts-find-nearly-three-dozen-u-s-voting-n1112436
https://www.politico.com/news/2022/10/14/wireless-modems-could-endanger-midterms-00061769
https://www.nytimes.com/2018/02/21/magazine/the-myth-of-the-hacker-proof-voting-machine.html