These menace actors have been then in the position to steal AWS session tokens, the short term keys that let you request non permanent qualifications for your employer??s AWS account. By hijacking active tokens, the attackers had been able to bypass MFA controls and attain use of Secure Wallet