These menace actors had been then ready to steal AWS session tokens, the temporary keys that permit you to request momentary credentials towards your employer??s AWS account. By hijacking Energetic tokens, the attackers have been in a position to bypass MFA controls and gain usage of Risk-free