These threat actors were then in the position to steal AWS session tokens, the short term keys that permit you to ask for short term credentials towards your employer??s AWS account. By hijacking active tokens, the attackers were capable to bypass MFA controls and get use of Risk-free Wallet ??