These threat actors had been then capable of steal AWS session tokens, the short term keys that help you request short term credentials in your employer??s AWS account. By hijacking Energetic tokens, the attackers were in a position to bypass MFA controls and acquire usage of Harmless Wallet ??