How Hackers Broke Into John Podesta and Colin Powell’s Gmail Accounts

Motherboard:

On March 19 of this year, Hillary Clinton’s campaign chairman John Podesta received an alarming email that appeared to come from Google.

The email, however, didn’t come from the internet giant. It was actually an attempt to hack into his personal account. In fact, the message came from a group of hackers that security researchers, as well as the US government, believe are spies working for the Russian government. At the time, however, Podesta didn’t know any of this, and he clicked on the malicious link contained in the email, giving hackers access to his account.

The article illustrates exactly how it was done but the process is actually incredibly simple and so is the precaution to avoid it happening to you.  The victims were sent emails that looked like they came from Google.  Each email said the password had to be changed and included a link to a fake webpage.  The victim entered the existing and new passwords and voila, the email account was compromised.  Nothing complicated, just tricking people to handover passwords.  To avoid this, NEVER click on an email link to change a password.  Always go to the proper website (e.g. Google) and follow the links on that website.

This is a broader article on the recent email hacking.