[The Library] Did Someone Hack CBSNews and Army.mil?

Hey Guys, Odin's Back.

Sorry about the downtime, I've been busy with work and research in other domains.

Last night I was contacted by my associate A of Anonymous offshoot AlphabetSec who said that someone was about to dump something big. I mean... real big. They linked me to Twitter user GatorLeague, an Anonymous offshoot that hasn't been in the spotlight for a while.

Let's rewind to December of 2014. The media was in a frenzy over the first war (of words) to occur between two nations over a cinematic feature. North Korea was furious over the impending release of the comedy-action movie The Interview. Sony Pictures, the studio in charge of production of the film, suffered a breach, one that lead to wiper malware erasing important files on internal Sony Networks and very embarrassing emails were released from their internal servers.

All of this culminates in... the film being released anyways.

All hell breaks loose, and the world is left wondering if the North Koreans were ballistic enough (not sorry for the pun) to launch a physical strike in reaction to a Seth Rogan flick. 

Enter... Gator League (maybe?), a lesser-known hacktivist offshoot of Anonymous. They claimed to have taken North Korea off the face of the web, causing a total web blackout of the country for 9.5 hours. They then began a vote on Twitter, as part of a Christmas Giveaway: take IS offline, or take down GCHQ, the British version of the NSA.

The GCHQ went down... and the group disbanded. There was a lot of speculation after the fact that they went dark because the GCHQ were after them, or because they wanted to lay low and avoid the heat that inevitably comes from taking down an intelligence agency.

Gator League came back in 2015 but have been relatively inactive until last night.

Gator League claimed to have something big, and posted two links (one, and two) to pastes on popular doxing website hastebin.com. The dumps were output from bruteforce scans of the army[.]mil website and cbsnews[.]com website.

There was honestly not too much of note in these dumps.

The first dump, a scan and brute force attack against the US Army's website, didn't show much. There were the usual open ports that one would expect in any website, but it seems like Hydra (a popular website brute forcing tool) may have caught a login to an administrative account on the Army website. 

It's unknown what, exactly, the administrative login may have given the Gator League hackers access to. 

The CBSNews dump was very unexciting, as it was just a vulnerability scan on the site. It would appear as if Gator League didn't gain any access to the site, but they promised that more would come on this target.

I messaged a Gator League member, Twitter user Gh0sT, who said the group had much bigger plans. 

"Last night was the least of what's yet to come hahaha."

When I commented on one of their targets being a .mil address, Gh0sT had this to say

"[The target is] Not a .mil, much bigger :) and multiple 0days lol."

Is this a bluff? Or is there a new hacktivist crew on the block planning to blow 0days on a high-profile target? Follow me on Twitter or Steemit and follow the Gator League to get quick updates.