< ciso
brief />
Vendor and Hyperscaler Watch Banner

All news in category “Vendor and Hyperscaler Watch

4625 articles · page 116 of 232

Centralized vs Decentralized Secrets Management on AWS

🔐 This post compares centralized and decentralized approaches to secrets management across four lifecycle domains: creation, storage, rotation, and monitoring. It explains how platform engineering and golden paths can centralize creation to enforce naming, tagging, and least-privilege checks while acknowledging the resource cost and maintenance burden. The article contrasts centralized storage (simplified monitoring but higher cross-account complexity and KMS costs) with storing secrets in workload accounts (better isolation, delegated ownership). Finally, it recommends centralizing auditing and observability while allowing hybrid architectures that balance control, speed, and operational scale.
read more →

EC2 Auto Scaling: group deletion protection and IAM control

🔒 EC2 Auto Scaling introduces the condition key autoscaling:ForceDelete and group-level deletion protection to reduce accidental Auto Scaling group (ASG) deletions. Use the new autoscaling:ForceDelete condition in IAM policies to control whether the ForceDelete parameter can be used with DeleteAutoScalingGroup. Set deletion protection on ASGs at creation or update to add layered safeguards for critical workloads. Available in all AWS Regions and AWS GovCloud (US).
read more →

NETSCOUT Recognized for Leadership in NDR 2025 by Quadrant

🔒 NETSCOUT was named a leader in Quadrant Knowledge Solutions' 2025 SPARK Matrix for Network Detection and Response, emphasizing its packet-level approach to security. Its Omnis Cyber Intelligence platform and proprietary Adaptive Service Intelligence (ASI) apply patented deep packet inspection at scale to produce enriched Layer 2–7 metadata. Continuous packet capture enables retrospective forensics independent of detection, and the vendor promotes a "Visibility Without Borders" model to cover physical, virtual, and cloud environments.
read more →

Selective Decryption for Scalable Encrypted DDoS Defense

🔒 Encrypted internet traffic and TLS 1.3 are now the norm, creating inspection blind spots that threat actors exploit to hide DDoS attacks. NETSCOUT’s Arbor Edge Defense (AED) is presented as a selective-decryption, edge-deployed solution that prioritizes blocking suspicious encrypted sessions and decrypts only when validation or deeper analysis is needed. By combining handshake inspection, rate and connection controls, and targeted decryption, AED aims to preserve capacity while improving detection and mitigation of encrypted threats.
read more →

Cloud Composer Preview Adds Apache Airflow 3.1 Support

🚀 Cloud Composer now supports Apache Airflow 3.1 in preview, marking the first time a hyperscaler offers this release. Built on Airflow 3's decoupled architecture and DAG versioning, the Composer update brings Human-in-the-Loop approvals, Deadline Alerts, and native internationalization across 17 languages. Additional developer-focused enhancements include a React plugin system and an inference execution streaming API. The preview is available now.
read more →

Amazon EVS Adds Support for Multiple NSX Tier-0 Gateways

🌐 Amazon EVS now supports deploying multiple VMware NSX Tier-0 Gateways inside an SDDC, enabling enhanced network segmentation and more flexible routing. Multiple Tier‑0 gateways distribute traffic across NSX Edge Clusters to improve performance and scale. Customers can isolate workloads, maintain separate security policies, and conduct upgrades or testing with minimal production impact.
read more →

Datadog Adds Automatic Observability for Google ADK

🔍 Datadog LLM Observability now automatically instruments Google’s Agent Development Kit (ADK), giving teams instant visibility into multi-step agent workflows without code changes. The integration traces planner decisions, tool calls, token usage, latency, and branching on a single timeline to simplify debugging and cost analysis. Built-in and custom evaluators detect hallucinations, PII leaks, and prompt injections, while replay and experiment features let teams iterate on prompts, models, and parameters before deployment.
read more →

Amazon EC2 M4 Max Mac Instances Now Generally Available

🚀 Amazon Web Services announced general availability of Amazon EC2 M4 Max Mac instances, powered by the latest Mac Studio hardware. These next‑generation Mac instances deliver up to 25% better application build performance versus Amazon EC2 M1 Ultra Mac and target demanding build and test workloads for Apple platforms. They run on Apple M4 Max silicon (16‑core CPU, 40‑core GPU, 16‑core Neural Engine, 128 GB unified memory), use the AWS Nitro System, and offer up to 10 Gbps network and 8 Gbps EBS bandwidth; availability begins in US East (N. Virginia) and US West (Oregon).
read more →

Amazon RDS for Oracle Adds Multi-Tenant Replica Support

🔁 Amazon RDS for Oracle now supports database replicas for instances configured in Oracle multi-tenant (CDB/PDB) environments. You can create replicas in mounted or read-only modes via the AWS Management Console, CLI, or SDK, with Amazon RDS managing asynchronous physical replication using Oracle Data Guard. Replicas can scale read workloads, be promoted for disaster recovery, or be configured as cross-Region copies; licensing requirements differ by mode and should be reviewed before deployment.
read more →

Outlook for iOS Crashes and Freezes on iPad After Update

⚠️ Microsoft confirmed a coding error in Outlook for iOS (version 5.2602.0) that can cause the app to crash or freeze on iPad devices. Affected users can work around the issue by launching Outlook in Airplane Mode and then re-enabling Wi‑Fi or cellular. Microsoft has developed a fix, though the updated app may take up to 24 hours to appear in the App Store while Apple processes the release.
read more →

Amazon Connect Adds Conditional Logic and Live Updates

🚀 Managers can now build dynamic, adaptive guided experiences with Amazon Connect Step-by-Step Guides. Conditional interface logic lets supervisors show or hide fields, change default values, and adjust which inputs are required based on prior responses to create scenario-specific workflows. Guides can also auto-refresh data from Connect resources such as flow modules at configurable intervals so agents work with current information. The feature is available across multiple AWS regions.
read more →

Amazon EC2 C8i Instances Now Available in London Region

🚀 Amazon EC2 C8i instances are now available in the Europe (London) region, powered by custom Intel Xeon 6 processors exclusive to AWS. They deliver up to 15% better price-performance and 2.5x more memory bandwidth versus previous-generation Intel-based instances, and up to 20% higher performance compared with C7i. AWS cites workload-specific gains — up to 60% faster NGINX, 40% faster AI recommendation models, and 35% faster Memcached — and offers 13 sizes including two bare metal options and a new 96xlarge. Customers can purchase via Savings Plans, On-Demand, or Spot instances.
read more →

Amazon EC2 C8i and C8i-flex Now in Sydney and Frankfurt

🚀 Amazon Web Services has added EC2 C8i and C8i‑flex instances to the Asia Pacific (Sydney) and Europe (Frankfurt) regions. These instances are built on custom Intel Xeon 6 processors available only on AWS and deliver up to 15% better price-performance and 2.5x greater memory bandwidth versus prior Intel-based generations. AWS cites up to 20% higher overall performance versus C7i families and workload-specific gains—up to 60% for NGINX, 40% for deep-learning recommendation models, and 35% for Memcached. C8i‑flex targets common compute sizes (large to 16xlarge) while C8i targets memory-intensive use cases with 13 sizes including 96xlarge and bare-metal; customers can buy On-Demand, Spot, or via Savings Plans.
read more →

What the Alien Franchise Taught About Cybersecurity

🚀 The author uses the Alien films to illustrate modern SOC challenges, arguing that threats enter unseen, tools create noise, and visibility gaps are lethal. The post highlights Unit 42 findings on faster exfiltration and critiques legacy SIEMs, advocating for a unified data foundation and AI-driven platforms like Cortex XSIAM. It recommends automation to accelerate response while preserving human expertise.
read more →

AWS Config Adds 13 Managed Rules for Governance & Compliance

🔒 AWS announced 13 new managed Config rules to help govern security, durability, and operations across AWS environments. You can discover, enable, and manage these rules directly from AWS Config, and apply them at the account or organization level. Use Conformance Packs to group and deploy these controls across multiple accounts for consistent governance.
read more →

Amazon Neptune Analytics Generally Available in New Regions

🚀 Amazon Neptune Analytics is now generally available in additional AWS regions, including US West (N. California), Asia Pacific (Seoul, Osaka, Hong Kong), Europe (Paris, Stockholm), and South America (São Paulo). The serverless Amazon Neptune graph database scales automatically and supports advanced graph analytics and fully managed GraphRAG capabilities. Neptune models data as a graph to capture context that improves accuracy and explainability for AI applications, and integrates with Amazon Bedrock, Strands AI Agents SDK, and common agentic memory tools. Create and manage Neptune Analytics graphs via the AWS Management Console or AWS CLI; refer to the Neptune pricing page and AWS Region Table for pricing and availability.
read more →

AlloyDB Introduces Managed Connection Pooling for PostgreSQL

🔌 AlloyDB now offers managed connection pooling for PostgreSQL as a generally available capability, reducing connection overhead and improving scalability. The service-managed pooler listens on port 6432 and reuses backend connections to cut latency and resource churn, while Google Cloud handles setup, configuration, and maintenance. Choose Transaction or Session pooling based on compatibility needs and configure sizes via Console, gcloud, or API. Customers report support for 3x more clients and up to 5x higher transactional throughput.
read more →

Beyond Boundaries: Azure Storage Roadmap for 2026.

🚀 Azure Storage outlines strategic investments for 2026 focused on accelerating AI and agentic workloads. The post highlights expanded scale for model training and inference, including Blob scaled accounts, Azure Managed Lustre (AMLFS) with Preview support for 25 PiB and high throughput, and deeper integrations with frameworks like Foundry, Ray, and LangChain. It also emphasizes block storage advances such as Elastic SAN, the Kubernetes-native ACStor operator and open sourcing, plus performance and availability improvements for mission‑critical SAP and trading platforms. The roadmap stresses energy and supply-aware efficiency, curated AI dataset experiences, and partner co‑engineering to lower TCO and accelerate customer adoption.
read more →

Amazon Bedrock AgentCore: Custom Chrome Extensions

🔧 Amazon Bedrock AgentCore Browser now supports Chrome-compatible extensions uploaded to Amazon S3 for automatic installation into secure browser sessions. This capability builds on AgentCore secure browser features to enable complex automation workflows that standard browser automation cannot address alone. Typical uses include custom authentication flows, automated testing, and improved navigation or performance through ad blocking. The feature is available in nine AWS Regions where AgentCore is supported.
read more →

Microsoft Security Success Stories: Integrated AI Foundation

🔒 Three global organizations—Ford, Icertis, and TriNet—illustrate how embedding security into every layer of the stack enables safer AI adoption and operational agility. Each moved from fragmented point solutions to a unified, Zero Trust platform built on Microsoft Security technologies such as Defender, Sentinel, Purview, Entra, and Security Copilot, using AI-powered telemetry and automation to accelerate detection and response. The result: fewer incidents, faster triage, improved compliance, and measurable cost savings that position them to scale AI responsibly.
read more →