account noticed a fishing attack, flagged it, and one of them responded by saying, this is a legitimate e-mail, john needs to change his pass word immediately. now, the aide later said he knew it was a fishing e-mail and he meant to write illegitimate, not legitimate. it is shocking, such a small error could have huge repercussions. how often does something like this happen? most hacks today, don, actually begin with an e-mail. it is called social engineering, and what this attack method is, is a junior high schooler could do it. they send malicious links or, like in this case, a fake g-mail. we call this in the security world credential harvesting, in other words stealing people s credentials, and this stuff is really, really common. i i don t think podesta knew, he would never have put in his credentials or his assistant, whoever put in his credentials was fooled by the attack.