These menace actors were then in a position to steal AWS session tokens, the non permanent keys that permit you to request short term credentials on your employer??s AWS account. By hijacking Lively tokens, the attackers ended up in a position to bypass MFA controls and acquire access to Secure Wallet ??s AWS account. By timing their efforts to co