All news in category “Vendor and Hyperscaler Watch”

🔍 AWS Security Incident Response now offers an agentic AI investigative capability that automatically gathers, correlates, and summarizes evidence across AWS data sources. The investigative agent assesses new cases, asks submitters clarifying questions for missing indicators or timeframes, and collects logs from AWS CloudTrail, AWS Identity and Access Management (IAM), Amazon EC2, and AWS Cost Explorer. Findings are presented as clear, actionable summaries, and the feature is enabled automatically at no extra cost in supported Regions.

🧭 AWS announced the Address Form Solution Builder for Amazon Location Service, a no-code tool that creates customizable address forms with predictive suggestions, autofill for fields like postal code, and an integrated map view. Developers can generate a ready-to-use application in minutes and download a developer package in React JavaScript, React TypeScript, or standalone HTML/JavaScript. The builder aims to speed address entry, reduce errors, and improve delivery and fraud outcomes for enterprise applications.

🚀 The AWS Transfer Family Terraform module now supports provisioning Transfer Family servers with a custom identity provider (IdP), enabling integration with existing authentication systems and centralized access control. This update automates deployment of SFTP, FTPS, FTP, AS2 and browser-based endpoints using Terraform, removing repeated manual configuration. The module is built on the open source Custom IdP solution and includes an Amazon Cognito example to help teams get started quickly.

🔍 AWS Cost Anomaly Detection now uses an enhanced algorithm that analyzes spend in rolling 24-hour windows, comparing current costs to equivalent time periods from previous days whenever AWS receives updated cost and usage data. This removes delays from incomplete calendar-day comparisons and aligns analysis to similar times of day, improving accuracy for workloads with distinct morning and evening patterns. The result is faster, more precise anomaly identification with fewer false positives; the enhancement is available in all AWS Regions except the AWS GovCloud (US) Regions and the China Regions.

✨ Amazon SageMaker now offers one-click onboarding of existing AWS datasets into Amazon SageMaker Unified Studio, letting customers begin data work in minutes while retaining their current IAM roles and permissions. The feature provisions a pre-configured serverless notebook with a built-in AI agent that supports SQL, Python, Spark, and natural language. Users can start from SageMaker, Amazon Athena, Amazon Redshift, or Amazon S3 Tables consoles and the setup imports permissions from AWS Glue Data Catalog, Lake Formation, and S3 to accelerate first use.

🤖 Amazon SageMaker Data Agent is a built-in AI agent in the new notebook experience that accelerates analytics and ML development. It translates natural-language prompts into detailed execution plans and generates SQL and Python code, while staying aware of notebook context and data catalog metadata. Available in multiple AWS regions, it speeds common tasks like data transformation, statistical analysis, and model prototyping.

🛡️ Avast has integrated its new AI-powered Scam Guardian into Avast Free Antivirus, offering free, continuous protection against increasingly sophisticated, AI-enhanced scams worldwide. The feature analyzes website content, code, links, SMS and email context to flag deceptive intent and neutralize hidden threats. A premium Scam Guardian Pro in Avast Premium Security adds an Email Guard for contextual email scanning across devices. The rollout aims to democratize AI-based scam defense and give users clear, actionable guidance.

🔒AWS Control Tower now supports 279 additional managed AWS Config rules and seven new compliance frameworks in the Control Catalog. You can search, discover, enable, and manage these rules directly from the AWS Control Tower console or via the ListControls, GetControl, and EnableControl APIs. The ListControlMappings API has been enhanced to show relationships between controls — complementary, alternative, or mutually exclusive — helping map detection (Config rules) to prevention (Service Control Policies). These features are available in Regions where Control Tower is offered, including AWS GovCloud (US).

📦 AWS License Manager now offers license asset groups, a centralized capability to manage commercial software licenses across AWS regions and accounts in an organization. The enhancement delivers organization-wide visibility with customizable grouping and automated reporting so customers can track expiry dates, streamline audit responses, and take data-driven renewal actions. The feature is available in all commercial regions where License Manager is offered.

🔍 Amazon CloudWatch Database Insights now supports cross-account and cross-region monitoring, enabling teams to observe and manage database fleets across multiple AWS accounts and regions from a single console. The feature centralizes performance metrics and troubleshooting workflows so teams can correlate incidents across distributed environments. It is intended to reduce operational overhead and improve mean time to resolution by enforcing consistent monitoring standards.

🚀 Amazon Web Services has expanded OR2 and OM2 OpenSearch Optimized instances into additional global regions, delivering higher indexing throughput and S3-based managed storage for indexing-heavy workloads. In AWS internal benchmarks OR2 showed up to 26% higher indexing throughput vs OR1 (70% vs R7g) and OM2 up to 15% vs OR1 (66% vs M7g). Both families include local instance caching, S3-managed storage, pay-as-you-go and reserved pricing, and a range of sizes to fit different compute and memory needs.

🧭 AWS CloudFormation StackSets now supports deployment ordering in auto-deployment mode, allowing you to define the sequence in which stack instances deploy across accounts and regions. You can specify up to 10 dependencies per stack instance using the new DependsOn parameter in AutoDeployment to orchestrate foundational and dependent stacks. StackSets performs cycle detection to prevent circular dependencies and returns clear error messages to aid troubleshooting. This capability is available in all Regions where StackSets is offered and can be configured via the CLI, SDK, or CloudFormation Console at no extra charge.

🔔 AWS Organizations now supports an upgrade rollout policy for Amazon Aurora and Amazon RDS, enabling staggered automatic minor version upgrades across accounts and resources. Administrators can define simple sequences (first, second, last) via account-level policies or resource tags so upgrades begin in development and progress to production only after validation. AWS Health notifications between phases, built-in validation periods, and the ability to pause progression provide control and observability. The feature is available in all commercial Regions and AWS GovCloud (US); RDS for Oracle support applies to engine versions released after January 2026.

🔔 Amazon EKS and ECS now offer fully managed MCP servers in preview, providing a cloud-hosted Model Context Protocol endpoint to enrich AI-powered development and operations. These servers remove local installation and maintenance, and deliver enterprise features such as automatic updates and patching, centralized security via AWS IAM, and audit logging through AWS CloudTrail. Developers can connect AI coding assistants like Kiro CLI, Cursor, or Cline for context-aware code generation and debugging, while operators gain access to a knowledge base of best practices and troubleshooting guidance.

🚀 Amazon EKS introduced Provisioned Control Plane, letting customers select pre-defined control plane capacity tiers for new or existing clusters via APIs, the AWS Console, or infrastructure-as-code. The feature pre-provisions capacity to deliver predictable, low-latency control plane performance during traffic spikes and unpredictable bursts. It unlocks higher cluster scalability for ultra-scale workloads such as AI training, high-performance computing, and large data processing, and helps align development, staging, production, and disaster recovery behavior.

🛠 AWS Compute Optimizer introduces automation rules to optimize Amazon Elastic Block Store (EBS) volumes at scale. The feature can automatically clean up unattached volumes and upgrade volumes to the latest-generation types on a recurring schedule, using filters such as AWS Region and Resource Tags. A new dashboard summarizes automation events, shows step history and estimated savings, and supports action reversal.

🔐 Amazon ECR now offers managed container image signing to simplify and standardize container provenance. Using a few clicks in the ECR Console or a single API call, you create a signing rule that references an AWS Signer signing profile (signature validity, target repositories), and ECR automatically signs images when they are pushed using the pusher's identity. AWS Signer handles key and certificate lifecycle, and all signing operations are logged to CloudTrail. The feature is available in all Regions where AWS Signer is offered.

🔒 AWS launched VPC Encryption Controls to simplify auditing and enforcement of encryption in transit within and across Amazon Virtual Private Clouds. You can enable it on existing VPCs to monitor encryption status of traffic flows, identify resources that permit plaintext, and generate audit logs for compliance. The feature can also transparently enable hardware-based AES-256 encryption on traffic between supported resources such as AWS Fargate, Network Load Balancers and Application Load Balancers.

🔐 AWS has announced general availability of the Amazon EKS add-on for the AWS Secrets Store CSI Driver provider, enabling clusters to mount secrets from AWS Secrets Manager and parameters from AWS Systems Manager Parameter Store as files on Kubernetes workloads. The add-on installs and manages the AWS provider component and supports automated setup and lifecycle management for new and existing Amazon EKS clusters. It is available in all AWS commercial and AWS GovCloud (US) Regions.

📡 Google updated Quick Share to interoperate with Apple's AirDrop, enabling direct file transfers between Pixel 10 devices and iPhone, iPad, and macOS. Transfers require the Apple device to be discoverable to Everyone for 10 minutes, while Android users must set Quick Share visibility to Everyone or use Receive mode. Google said the implementation is built in memory-safe Rust, avoids routing data through servers, and was independently assessed and hardened after a low-severity information-disclosure issue was fixed.