These menace actors ended up then in the position to steal AWS session tokens, the non permanent keys that allow you to ask for momentary qualifications to the employer??s AWS account. By hijacking Energetic tokens, the attackers have been in the position to bypass MFA controls and obtain entry