These menace actors were being then in a position to steal AWS session tokens, the short term keys that assist you to request short-term credentials to the employer??s AWS account. By hijacking active tokens, the attackers have been in the position to bypass MFA controls and acquire entry to Sa