Archive | January 18, 2017

Apple GSX phishing scam (1/18/2017)

The following scam is designed to target University IT personnel and attempts to trick these personnel into providing login information to the scammer. This scam is sophisticated in a way that the attacker have spoofed the identity of an Apple email server. However, the tell-tale signs of the scam appears in the form of an unknown reply email address at grupapple.com and the mis-spelling and grammatical errors. Most of all, any reputable organizations will never ask you to email your password and other credentials to an email address. If you received this email, please delete it.

_______________________________________

From: Global Service Exchange <donotreply@apple.com>
To: <ITpersonnel>@vcu.edu
Subject: GSX access password update

Hello,

Please note that due to some security breach some of the GSX accounts were compromised and there is an risk that this may be used by other parties.

In order to avoid this, please change the GSX account password and then forward the new login details together with “Two Step Verification Rekovery Key” to email address: xxxxxxxxxx@grupapple.com in order to update it in our files also.

Thanks,
IS&T Accounts Security

Comments Off on Apple GSX phishing scam (1/18/2017)