New variant of SAML attack technique
Security researchers have discovered a new variant of the infamous Golden SAML attack technique, which the team has named “Silver SAML.” With Silver SAML, threat actors can abuse the Security Assertion Markup Language authentication protocol to launch attacks from an identity provider such as Entra ID against applications that use SAML for authentication, such as Salesforce. Golden SAML was used in the 2020 Solarwinds cyberattack, the most sophisticated nation-state hack in history to date. The hacker group Nobelium, also known as Midnight Blizzard or Cozy Bear, has inserted malicious code into the IT management software Orion…