Researcher Alex Shakhov found scammers commandeering stale CNAME records. They hijack university subdomains (eg. berkeley.edu, columbia.edu, washu.edu) and serve p0rn and scam pages.
Shakhov found hundreds of abused subdomains across at least 34 universities. He counted thousands of hijacked pages indexed by Google.
This isn't exotic but a cleanup failure.
What matters: Universities must enforce DNS deprovisioning and record cleanup to block subdomain takeover via stale CNAME entries.
