This talk presents a security analysis of the Brazilian voting machine software based on our participation in official restricted tests organized in 2012 by the national electoral authority. During the event, vulnerabilities in the software were detected and explored, with significant impact on ballot secrecy and integrity. We present scenarios where these vulnerabilities allow electoral fraud and suggestions to restore the security of the affected mechanisms. We also discuss how a crowdsourcing approach was used to partially verify the transmission of results in 2014 and improvements for upcoming elections.