These threat actors ended up then in a position to steal AWS session tokens, the momentary keys that allow you to request non permanent credentials on your employer??s AWS account. By hijacking active tokens, the attackers have been ready to bypass MFA controls and obtain use of Safe Wallet ??s