These threat actors had been then able to steal AWS session tokens, the short-term keys that let you request short-term credentials in your employer?�s AWS account. By hijacking active tokens, the attackers were in the position to bypass MFA controls and obtain usage of Safe Wallet ?�s AWS account. By timing their efforts to coincide with the