These danger actors had been then capable of steal AWS session tokens, the short term keys that permit you to request momentary qualifications on your employer??s AWS account. By hijacking Energetic tokens, the attackers have been capable to bypass MFA controls and acquire use of Safe and sound