These threat actors ended up then in a position to steal AWS session tokens, the non permanent keys that let you request short term credentials to your employer??s AWS account. By hijacking Energetic tokens, the attackers were being capable to bypass MFA controls and gain entry to Harmless Wall