A forum user over at Reddit claims to have discovered a pretty startling security flaw that could potentially make it easier for hackers to guess your Amazon password. By adding extra characters to a valid password with eight characters, some Amazon customers are still able to log in.
Let's say your password is "ILoveJan," which is a terrible password to begin with. If someone up to no good guesses "ILoveJan1932," Amazon may accept it. Wired, which says it confirmed the flaw , says the security SNAFU likely only affects older accounts. Newer passwords don't appear to be affected.
So what can you do? Wired says simply logging in and changing your password sidesteps the flaw, even if you end up changing it back to your original password.