These threat actors were being then in the position to steal AWS session tokens, the short term keys that permit you to ask for momentary credentials to your employer??s AWS account. By hijacking Lively tokens, the attackers have been in a position to bypass MFA controls and gain use of Protect