These threat actors have been then able to steal AWS session tokens, the non permanent keys that let you ask for temporary qualifications towards your employer??s AWS account. By hijacking active tokens, the attackers ended up able to bypass MFA controls and achieve usage of Safe and sound Wall