These threat actors had been then able to steal AWS session tokens, the temporary keys that permit you to request non permanent credentials for your employer??s AWS account. By hijacking active tokens, the attackers were being ready to bypass MFA controls and attain usage of Protected Wallet ??