These threat actors were being then capable to steal AWS session tokens, the short-term keys that allow you to request short-term credentials to your employer??s AWS account. By hijacking active tokens, the attackers were ready to bypass MFA controls and attain usage of Harmless Wallet ??s AWS account. By timing their endeavours to coincide Along