These danger actors have been then in a position to steal AWS session tokens, the non permanent keys that enable you to request momentary credentials towards your employer??s AWS account. By hijacking Energetic tokens, the attackers were in the position to bypass MFA controls and achieve access