These threat actors had been then capable of steal AWS session tokens, the short term keys that enable you to ask for momentary qualifications on your employer??s AWS account. By hijacking Lively tokens, the attackers ended up in the position to bypass MFA controls and attain usage of Harmless