Apple GSX phishing scam (1/18/2017)

The following scam is designed to target University IT personnel and attempts to trick these personnel into providing login information to the scammer. This scam is sophisticated in a way that the attacker have spoofed the identity of an Apple email server. However, the tell-tale signs of the scam appears in the form of an unknown reply email address at and the mis-spelling and grammatical errors. Most of all, any reputable organizations will never ask you to email your password and other credentials to an email address. If you received this email, please delete it.


From: Global Service Exchange <>
To: <ITpersonnel>
Subject: GSX access password update


Please note that due to some security breach some of the GSX accounts were compromised and there is an risk that this may be used by other parties.

In order to avoid this, please change the GSX account password and then forward the new login details together with “Two Step Verification Rekovery Key” to email address: in order to update it in our files also.

IS&T Accounts Security

Comments are closed.