A senior researcher at the Citizen Lab has revealed that scammers have been uploading PDFs containing links to multiple government and university websites. Some of the PDFs have been found to contain links to websites offering hacking services for Instagram, Facebook, and Snapchat accounts.
It's also thought possible that some of the uploaded PDFs could have malicious content. It’s been suggested that scammers have been able to exploit a flaw (an out-of-date plugin module) in the Kentico CMS to upload the documents and it’s been reported that the U.S. cybersecurity agency, CISA, is working with affected websites to ensure these PDFs are removed.