Hello everyone. I have a zoho mail linked to an Amazon AWS account via token. Recently it was hacked via SMTP (I believe) and was sending out spam to scam other people.

1. How can I confirm if this hacking was done via my Amazon AWS?

2. If I enable 2-factor authentication, I can't seem to link it with my Amazon AWS. Is there a better way to navigate around this? I just want to secure my email account properly.