These danger actors were being then in a position to steal AWS session tokens, the short-term keys that let you ask for temporary credentials for your employer??s AWS account. By hijacking active tokens, the attackers had been capable of bypass MFA controls and achieve use of Safe and sound Wal