These risk actors were then able to steal AWS session tokens, the temporary keys that permit you to ask for momentary qualifications in your employer??s AWS account. By hijacking active tokens, the attackers had been ready to bypass MFA controls and attain usage of Safe Wallet ??s AWS account.