These danger actors had been then ready to steal AWS session tokens, the short term keys that allow you to request non permanent credentials on your employer??s AWS account. By hijacking active tokens, the attackers ended up able to bypass MFA controls and achieve access to Risk-free Wallet ??s