These threat actors have been then in the position to steal AWS session tokens, the non permanent keys that allow you to request short term qualifications towards your employer??s AWS account. By hijacking active tokens, the attackers were capable of bypass MFA controls and achieve use of Harml