Prestigious University Websites Compromised: The Scammers’ Exploit of Negligent Record-Keeping
The digital landscape of some of the world’s foremost academic institutions has recently become the target of cybercriminals. A researcher has discovered that notable universities’ websites are inadvertently distributing explicit pornographic content and malicious material, due to exploitation by scammers. This alarming situation highlights vulnerabilities in the system management of these institutions.
Among the affected universities are the University of California at Berkeley, Columbia University, and Washington University in St. Louis, with their respective domains, berkeley.edu, columbia.edu, and washu.edu. Scammers have manipulated subdomains such as hXXps://causal.stat.berkeley.edu/ymy/video/xxx-porn-girl-and-boy-ej5210.html, hXXps://conversion-dev.svc.cul.columbia[.]edu/brazzers-gym-porn, and hXXps://provost.washu.edu/app/uploads/formidable/6/dmkcsex-10.pdf to serve explicit content and scams. Alarmingly, one of these subdomains even hosts a deceitful warning about a fake malware infection, urging users to pay for non-existent malware removal services.
A handful of hacked columbia.edu subdomains listed by Google
One of the sites redirected by a UC Berkeley subdomain.
Hijacking the Reputation of a University
The root of the issue lies in the oversight by the administrators of these prestigious institutions. According to Alex Shakhov, founder of SH Consulting, the scammers have capitalized on what amounts to a clerical oversight. When universities order subdomains like provost.washu.edu, they create a CNAME record, linking the subdomain to a “canonical” domain. Over time, when these subdomains are no longer in use, the records are often not properly deleted, leaving them vulnerable to exploitation by groups such as Hazy Hawk.
This exploitation allows scammers to hijack these subdomains. Due to the reputable nature of these institutions, search queries related to these hijacked pages rank highly on Google. This not only tarnishes the esteemed reputation of these universities but also poses a significant risk to users who may inadvertently visit these illicit sites.
For more detailed information on this security issue, visit the original source Here.
“`
