These risk actors had been then in a position to steal AWS session tokens, the short term keys that enable you to ask for temporary qualifications for your employer??s AWS account. By hijacking active tokens, the attackers ended up in the position to bypass MFA controls and obtain use of Secure