< ciso
brief />
Vendor and Hyperscaler Watch Banner

All news in category “Vendor and Hyperscaler Watch

4607 articles · page 12 of 231

Amazon Cognito adds customer managed KMS keys

🔐 Amazon Cognito now supports customer managed keys in AWS Key Management Service (KMS) to encrypt user pool data at rest. While AWS-owned keys remain the default, customer managed keys let organizations control key lifecycle and access policies to meet governance requirements. You can set a key when creating a new user pool or update an existing one, and audit key usage via AWS CloudTrail. Available in Essentials and Plus tiers with standard AWS KMS charges.
read more →

Amazon Bedrock adds automated policy refinement workflows

🔧 AWS announced automated refinement workflows for Automated Reasoning checks in Amazon Bedrock Guardrails. These checks use formal logic to validate generative AI responses against user-defined policies to detect hallucinations and provide verifiable explanations. The new workflows — iterative policy improvement and ambiguity reduction — help customers refine policies with less manual effort. Both workflows are accessible via the Amazon Bedrock APIs and the AWS Management Console.
read more →

Unified SQL Analytics for Logs and Traces on Google Cloud

🛠️ Google Cloud announced enhancements to its Observability suite, rebranding Log Analytics as Observability Analytics and bringing trace data and the Observability API to general availability. The update unifies logs and traces, enables SQL queries across telemetry, and allows in-place analysis without duplicating data. Use cases include diagnosing AI agent tool failures and correlating latency with customer impact. Users can link observability buckets to BigQuery and run cross-dataset analytics directly in the Cloud console.
read more →

Google Cloud advances Confidential Computing for AI

🔒 Google Cloud announces expanded Confidential Computing capabilities to protect data in use for AI workloads. The update includes Confidential G4 VMs with NVIDIA RTX PRO 6000 Blackwell GPUs, open-source Prompt Encryption SDKs, Intel TDX on C4 machines, and broader Confidential Space enhancements. These innovations aim to provide verifiable attestation, end-to-end encrypted inference, and support for multi-party collaboration while preserving performance and scalability.
read more →

Stonehenge as a Model for Cybersecurity Architecture

🪨 The author uses Stonehenge as a metaphor for designing resilient cybersecurity architectures, arguing organisations must move from fragmented point solutions to a modular, platform-based approach. Palo Alto Networks emphasises a unified cyber data layer, Precision AI integration, and an Autonomous SOC to enable real-time detection and response across IT, OT, cloud, and edge. The piece highlights identity security, AI runtime protection, and supply-chain risks as critical pillars for long-term resilience.
read more →

Agentic cloud operations: insight to governed action

🧭 Agentic cloud operations use AI-powered agents to turn continuous observability into governed, auditable actions across the cloud lifecycle. Microsoft describes how Azure Copilot’s observability agent—now generally available—analyzes telemetry, traces dependencies, and surfaces grouped signals and contextual recommendations to speed incident resolution and reduce noise. Built-in governance and policy guardrails ensure actions respect controls and remain human-reviewed, while cost and usage intelligence integrate into developer tools to enable continuous optimization.
read more →

CloudWatch OTel Container Insights for Amazon EKS

🚀 Amazon CloudWatch now offers OTel Container Insights for Amazon EKS, collecting infrastructure metrics at 30-second granularity using open-source receivers like cAdvisor, Kube State Metrics, and NVIDIA DCGM. Each metric includes OpenTelemetry semantic conventions and Kubernetes labels to simplify correlation across nodes, pods, and workloads with a single PromQL query. Pre-built dashboards provide immediate visibility into cluster health, node performance, and pod-level resource usage, and the CloudWatch PromQL endpoint enables direct connection of existing Prometheus and Grafana dashboards. Enable the feature from the EKS console, the CloudWatch Observability add-on (v6.2.0+), Helm, or CloudFormation; it is available in all commercial AWS Regions except UAE, Bahrain, and Israel (Tel Aviv).
read more →

GitHub updates actions/checkout to block pwn requests

🔒 GitHub is updating the official actions/checkout action to refuse common pwn request patterns by default, effective June 18, 2026, with backports planned for July 16, 2026. The change prevents checking out forked pull request head or merge commits in pull_request_target and certain workflow_run events unless authors explicitly set allow-unsafe-pr-checkout to true. This aims to reduce attacks that exploit privileged workflows to steal secrets or the GITHUB_TOKEN.
read more →

OpenAI expands Daybreak with GPT-5.5-Cyber release

🔒 OpenAI has expanded its Daybreak cyber-defense program, advancing patch automation with the full release of GPT-5.5-Cyber, updates to Codex Security, and a new open-source patching initiative. Access to the model is limited to verified defenders and paired with enhanced monitoring. OpenAI reports improved vulnerability reproduction and exploit-writing scores, while emphasizing human oversight and partnerships with vendors and governments.
read more →

Webinar: Automating email security with behavioral AI

📢 On July 8, 2026, BleepingComputer will present a live webinar titled "Stop chasing alerts: Automating email security with behavioral AI" featuring speakers from Abnormal AI and Novant Health. The session will examine why phishing, BEC, and ATO attacks still generate overwhelming alerts and how behavioral AI can automate detection, investigation, and remediation. Attendees will learn practical techniques to reduce manual workloads, prioritize high-risk incidents, and improve response times across email security operations.
read more →

Google expands EU financial advertiser verification

🔒 Google is expanding its financial services advertiser verification program to cover all EU and EEA member states, adding 24 countries to its rollout. The program builds on existing advertiser identity checks and Gemini-powered defenses to block harmful or unauthorized ads. Advertisers must complete verification against national registries within 30 days or face restrictions on financial ads. This aims to increase trust in online financial advertising and reduce scams.
read more →

Anthropic launches Claude Tag for team collaboration

🤖 Anthropic has introduced Claude Tag, a channel-based assistant starting with Slack, now available in beta to AWS customers who purchase Claude Enterprise via AWS Marketplace. Teams can grant Claude scoped access to selected channels, connect it to tools, data, and codebases, and use multiplayer tagging to delegate tasks. Claude Tag maintains channel context, plans future tasks, and employs per-channel identities, spend controls, and ambient mode off by default for governance. The AWS Marketplace experience mirrors first-party Claude Enterprise with consumption-based pricing, org-wide budget visibility, and per-channel limits.
read more →

AI-assisted Migration Assistant for OpenSearch Service

🚀 Migration Assistant for Amazon OpenSearch Service now includes an AI-assisted experience that simplifies moving self-managed Apache Solr, Elasticsearch, or OpenSearch deployments to OpenSearch Serverless or Managed Clusters. The assistant integrates with AI tools like Kiro and Claude Code to plan migrations, deploy infrastructure, and execute both historical and live traffic migration. It also adds live traffic capture and replay support for Solr and is available in all commercial AWS Regions and AWS GovCloud (US) Regions where OpenSearch Service is offered.
read more →

AWS launches EC2 G7e for SageMaker Studio

🚀 Amazon EC2 G7e instances deliver up to 8 NVIDIA RTX PRO 6000 Blackwell Server Edition GPUs, 96 GB per GPU, 5th Gen Intel Xeon CPUs, up to 192 vCPUs and 1600 Gbps EFA networking. They support NVIDIA GPUDirect P2P and GPUDirect RDMA with EFAv4 for reduced latency in multi-node and multi-GPU workloads. G7e instances target LLMs, agentic and multimodal generative AI, spatial computing, and workloads needing combined graphics and AI acceleration. G7e is now available for SageMaker Studio notebooks in US East (N. Virginia, Ohio) and US West (Oregon).
read more →

GitHub hardens Actions checkout to block pwn requests

🔒 GitHub has updated actions/checkout to v7 to automatically block and fail workflows that attempt to fetch unreviewed fork pull request code when run under pull_request_target or workflow_run events. The change enforces a secure-by-default behavior, with an explicit opt-out allow-unsafe-pr-checkout available for developers who need it. Backports to supported major versions are planned beginning July 16; pinned SHAs and specific versions must be updated manually.
read more →

AWS HealthOmics Adds Nextflow Profile Support

🧬 AWS HealthOmics now supports Nextflow profiles, letting users activate predefined execution settings at run time. This allows separation of platform-specific configuration from core workflow logic and enables switching between development and production settings without editing workflow source code. The feature reduces errors, improves portability, and supports nf-core built-in and institutional profiles. It is available in all AWS HealthOmics Regions listed.
read more →

AWS launches Lambda MicroVMs for isolated serverless

🚀 AWS announces Lambda MicroVMs, a new serverless compute primitive delivering VM-level isolation, near-instant launch and resume speeds, and up to 8 hours of state preservation. Built on Firecracker, MicroVMs let developers provide each user or job a dedicated, secure execution environment without managing virtualization infrastructure. MicroVM images are created from Dockerfiles and support HTTP/2, gRPC, and WebSockets, with regional availability and pay-for-use pricing.
read more →

Defending AI Memory: Microsoft’s Multi‑Layer Strategy

🔒 Microsoft outlines a defense-in-depth approach to protect AI memory across storage, retrieval, model interaction, and user control. The post explains how memory transforms AI from stateless tool to learning collaborator, increasing attack surface and enabling staged attacks that persist beyond initial prompts. It summarizes protections in M365 Copilot including prompt-injection classifiers, Task Adherence checks, tenant policy controls, unified compliance, and audit logging integrated with Defender and Sentinel.
read more →

Race condition in hyper caused truncated image responses

🛠️ Cloudflare’s Images service, built in Rust on Workers, encountered intermittent truncation of larger transformed images after a 2025 rearchitecture that connected Workers to Images via a local binding. The failure returned HTTP 200 with a shortened body and no logged errors, appearing only under production concurrency and reproducible as a timing-dependent race in the hyper HTTP library. Instrumentation, strace, and controlled reproductions identified premature shutdown calls from the Images service that left most response bytes in hyper’s internal buffer; a four-line change ultimately fixed the issue.
read more →

Microsoft confirms Windows 11 version 26H2 release

📰 Microsoft confirmed Windows 11 version 26H2 as the next feature update and has begun testing with Windows Insiders in the Dev Channel. The company says devices running Windows 11 24H2 and 25H2 can upgrade via a small 174 KB enablement package, while systems on 23H2 or older will need the full 6.5 GB update. Microsoft also published a whitepaper explaining the shared servicing model for these releases.
read more →