A new report warns AWS administrators of a potential weakness in the cloud giant’s Identity and Access Management (IAM) service that could leave user accounts vulnerable to being hijacked by attackers.