These menace actors had been then capable of steal AWS session tokens, the non permanent keys that enable you to ask for momentary credentials to the employer??s AWS account. By hijacking active tokens, the attackers have been in a position to bypass MFA controls and gain use of Safe and sound