These danger actors were being then able to steal AWS session tokens, the short-term keys that allow you to request short term qualifications on your employer??s AWS account. By hijacking active tokens, the attackers had been capable of bypass MFA controls and attain usage of Protected Wallet ?