These risk actors have been then capable to steal AWS session tokens, the momentary keys that help you ask for non permanent qualifications to your employer??s AWS account. By hijacking Energetic tokens, the attackers ended up in the position to bypass MFA controls and attain usage of Safe Wall