These threat actors had been then capable to steal AWS session tokens, the short-term keys that let you request temporary credentials to your employer??s AWS account. By hijacking Lively tokens, the attackers have been capable to bypass MFA controls and get usage of Safe Wallet ??s AWS account.