These threat actors were being then capable to steal AWS session tokens, the short-term keys that allow you to request non permanent qualifications to your employer??s AWS account. By hijacking Lively tokens, the attackers ended up ready to bypass MFA controls and obtain use of Protected Wallet