These risk actors were being then capable of steal AWS session tokens, the non permanent keys that permit you to ask for temporary credentials for your employer??s AWS account. By hijacking Energetic tokens, the attackers were being in a position to bypass MFA controls and get access to Protect