These danger actors had been then ready to steal AWS session tokens, the short term keys that assist you to ask for non permanent credentials to the employer??s AWS account. By hijacking active tokens, the attackers were in a position to bypass MFA controls and acquire usage of Harmless Wallet