“
On Saturday, March 19, 2016, at 4:34 A.M., John Podesta, the Hillary Clinton campaign chairman, received what looked like an email from Google about his personal Gmail account. “Hi John Someone just used your password to try to sign in to your Google Account,” read the email from “the Gmail Team.” It noted that the attempted intrusion had come from an IP address in Ukraine. The email went on: “Google stopped this sign-in attempt. You should change your password immediately.” The Gmail Team helpfully included a link to a site where Podesta could make the recommended password change. That morning, Podesta forwarded the email to his chief of staff, Sara Latham, who then sent it along to Charles Delavan, a young IT staffer at the Clinton campaign. At 9:54 AM that morning, Delavan replied, “This is a legitimate email. John needs to change his password immediately, and ensure that two-factor authentication is turned on his account… It is absolutely imperative that this is done ASAP.” Delavan later asserted to colleagues that he had committed a typo. He had meant to write that “this is not a legitimate email.” Not everybody on the Clinton campaign would believe him. But Delavan had an argument in his favor. In his response to Latham, he had included the genuine link Podesta needed to use to change his password. Yet for some reason Podesta clicked on the link in the phony email and used a bogus site to create a new password. The Russians now had the keys to his emails and access to the most private messages of Clinton World going back years.
”
”
Michael Isikoff (Russian Roulette: The Inside Story of Putin's War on America and the Election of Donald Trump)