I recommend to everyone to use a email alias at gmail or a similar service, different once for every site, instead of your actual email, as the login to Amazon and other services. That way the attackers can't guess your actual login, let alone your password.
https://qbix.com/blog/2021/01/25/no-way-to-prevent-this-says...
https://qbix.com/blog/2023/06/12/no-way-to-prevent-this-says...
And then of course there is this:
SIM swapping - someone can just steal your SIM and then get into a lot of accounts
https://www.bloomberg.com/news/features/2023-08-04/teen-game...
Amazon - someone can just take over your account
https://www.reddit.com/r/cybersecurity/comments/hsj4x8/my_am...
Apple and Amazon together, they can take over ALL YOUR ACCOUNTS (the most terrifying read):
https://www.wired.com/2012/08/apple-amazon-mat-honan-hacking...
I recommend to everyone to use a email alias at gmail or a similar service, different once for every site, instead of your actual email, as the login to Amazon and other services. That way the attackers can't guess your actual login, let alone your password.