These menace actors ended up then capable to steal AWS session tokens, the short-term keys that let you request temporary credentials for your employer??s AWS account. By hijacking active tokens, the attackers had been ready to bypass MFA controls and acquire access to Protected Wallet ??s AWS