These threat actors ended up then capable to steal AWS session tokens, the short term keys that enable you to request short term credentials towards your employer??s AWS account. By hijacking Energetic tokens, the attackers ended up in the position to bypass MFA controls and obtain usage of Risk-free Wallet ??s AWS account. By timing their efforts