These threat actors have been then in the position to steal AWS session tokens, the non permanent keys that permit you to request momentary qualifications towards your employer??s AWS account. By hijacking active tokens, the attackers had been capable to bypass MFA controls and get usage of Safe Wallet ??s AWS account. By timing their attempts to