These danger actors had been then capable of steal AWS session tokens, the short term keys that let you request short term qualifications to your employer??s AWS account. By hijacking Energetic tokens, the attackers ended up capable to bypass MFA controls and acquire access to Secure Wallet ??s