These threat actors were being then capable to steal AWS session tokens, the short-term keys that let you request short-term qualifications in your employer??s AWS account. By hijacking active tokens, the attackers have been able to bypass MFA controls and acquire access to Safe Wallet ??s AWS