These threat actors were then ready to steal AWS session tokens, the short term keys that help you ask for short term credentials to your employer??s AWS account. By hijacking active tokens, the attackers had been in the position to bypass MFA controls and obtain access to Secure Wallet ??s AWS