These danger actors were then in the position to steal AWS session tokens, the non permanent keys that allow you to ask for short term credentials to your employer??s AWS account. By hijacking Energetic tokens, the attackers were able to bypass MFA controls and gain use of Secure Wallet ??s AWS