Recent findings reveal that websites of several top universities, including the University of California, Berkeley, Columbia University, and Washington University in St. Louis, are serving explicit pornography and malicious content due to exploitation by scammers. Researcher Alex Shakhov from SH Consulting identified that hundreds of subdomains from at least 34 universities have been compromised. The attackers, linked to a group known as Hazy Hawk, take advantage of poor record-keeping practices by university administrators. When a subdomain is decommissioned, the corresponding CNAME record is often left intact, allowing scammers to register the expired domain and redirect it to explicit content or scam sites. This issue has resulted in thousands of hijacked pages appearing in search engine results, raising concerns about the reputation and security of these prestigious institutions.