These menace actors had been then able to steal AWS session tokens, the short-term keys that let you request momentary credentials for your employer?�s AWS account. By hijacking active tokens, the attackers had been in the position to bypass MFA controls and get entry to Protected Wallet ?�s AWS account. By timing their initiatives to coincide