These threat actors were then in the position to steal AWS session tokens, the non permanent keys that help you request short-term credentials towards your employer??s AWS account. By hijacking Lively tokens, the attackers ended up capable to bypass MFA controls and acquire usage of Safe and so