It took a village to get Hillary Clinton’s campaign chair John Podesta’s email hacked.
It wasn’t technical; there wasn’t a big security breach on Google’s servers. In short, someone tricked Podesta into giving them his password, he didn’t have two-factor authentication set up as an additional check, and the campaign’s IT team led him astray. Thanks to WikiLeaks, we now know how it happened:
On March 19, Podesta received an email from “[email protected]” — a user falsely posing as Google, notifying Podesta that his password had been compromised by someone in Ukraine. The email provided a bit.ly link to change the password.
…read more
Source: Vox