< ciso
brief />
Vendor and Hyperscaler Watch Banner

All news in category “Vendor and Hyperscaler Watch

4607 articles · page 15 of 231

New PCI Rules Force Runtime Script Controls

🔒 An independent PCI assessor evaluated Reflectiz against the updated PCI DSS requirements and found it effectively supports merchant compliance. Modern checkouts load many third-party scripts, any of which can be turned into skimmers, and PCI DSS v4.0.1 introduces controls to inventory, authorize, and detect tampering of payment-page scripts. The QSA highlighted Reflectiz’s behavior-based detection, agentless deployment, and one-click QSA-ready evidence as key strengths, while SAQ A exemptions remain limited for iframe integrations.
read more →

Amazon GameLift Servers adds container fleet controls

🛠️ Amazon GameLift Servers introduces two container fleet improvements to improve flexibility and inter-container communication for game server deployments. You can now customize Linux capabilities in container group definitions to grant specific permissions such as NET_RAW or SYS_PTRACE, and call the new ListContainersNetworkInfo() server SDK action to discover co-located containers' names, IDs, local IPs, and group types. These features are exposed via the console, AWS CLI, SDK, and CloudFormation and supported in server SDK 5.x for Go, C++, and C#, plus Unreal and Unity plugins, available in all GameLift regions except China.
read more →

Amazon WorkSpaces Adds Ubuntu 24.04 in China

🖥️ AWS now offers Ubuntu 24.04 LTS bundles for Amazon WorkSpaces Personal in the AWS China (Ningxia) Region operated by NWCD. The new bundles let customers launch Ubuntu WorkSpaces with updated packages, toolchains, and security improvements from Ubuntu 24.04. It also provides a migration path for Amazon Linux 2 WorkSpaces customers seeking extended upstream maintenance and support.
read more →

RDS for SQL Server raises gp3 volume limits

🔔 Amazon RDS for SQL Server now supports larger General Purpose (gp3) volumes, increasing maximum size to 64 TiB, peak IOPS to 80,000, and throughput to 2,000 MiB/s. These enhancements enable larger SQL Server databases and improved performance for I/O-intensive workloads like OLTP and large-scale analytics on a single volume. Customers can also attach up to three gp3 or io2 volumes per DB instance for total capacity up to 256 TiB, with no changes to base pricing.
read more →

Google to use IPs for ad personalization in EEA, UK

🔒 Google has notified advertisers it will begin using IP addresses to identify devices for ad measurement and personalization across the EEA, UK and Switzerland on or shortly after August 3, 2026. The change repurposes IPs — already transmitted to route traffic and deliver ads — for purposes that trigger consent requirements under UK and EU law. Google will register for IAB Europe TCF Feature 3 and says it will rely on privacy-enhancing technologies while offering later user choices on its properties. Advertisers remain responsible for obtaining valid consent under Google’s EU User Consent Policy.
read more →

Cloudflare Agents SDK and Flue for production agents

🛠️ Cloudflare describes how the Agents SDK provides durable execution, dynamic code execution, a durable filesystem, and dynamic workflows as platform primitives to run agent harnesses in production. The new Flue framework (1.0 Beta) builds on the Pi harness and targets Cloudflare Durable Objects to offer declarative agent development, integrations with Slack/GitHub/Discord, headless UI hooks, and Durable Streams for reliable checkpointing. Flue uses runFiber(), stash(), onFiberRecovered(), @cloudflare/codemode, and @cloudflare/shell to securely execute LLM-generated code, provide a virtual filesystem, and enable durable, resumable agent turns at low cost.
read more →

Advancing Enterprise Security with AI-Driven Scanning

🛡️ Microsoft Security describes codename MDASH, a multi-model agentic scanning system built to discover, validate, and help remediate software vulnerabilities at enterprise scale. The system orchestrates specialized AI agents in a structured pipeline and integrates findings into Microsoft Defender, GitHub, and Azure DevOps workflows so issues become actionable engineering work. Early use across Windows, Azure, and identity teams uncovered numerous high-severity vulnerabilities before exploitation and helped raise CyberGym benchmark performance to 96.5%. The post reviews deployment lessons, failure modes, and planned improvements like fuzzing integration and broader artifact support.
read more →

Cloud Network Insights: Cross-Cloud Network Observability

🔍 Cloud Network Insights is now generally available as a Google Cloud-native solution, delivered in partnership with Broadcom AppNeta, to provide end-to-end visibility across multi-cloud and hybrid networks. It uses lightweight Monitoring Points and active synthetic probes to measure RTT, packet loss, jitter, and application-level metrics like DNS and page-load times. The service integrates with Cloud Monitoring, Cloud Logging, and supports OpenTelemetry, enabling proactive alerting, SLA validation, and rapid root-cause analysis.
read more →

AWS Glue Interactive Sessions Add Spark Connect

🧭 AWS Glue Interactive Sessions now supports Apache Spark Connect, enabling development and execution of Spark applications from managed notebooks like Amazon SageMaker Unified Studio or IDEs such as Jupyter and VS Code while running on AWS Glue's serverless infrastructure. The thin client architecture decouples client dependencies from the server-side Spark runtime, enabling ad hoc exploration, iterative debugging, and incremental PySpark development. Observability includes real-time Spark UI monitoring, History Server tracking, and session management via the AWS Glue API, CLI, or SDK. This capability is available across multiple AWS regions.
read more →

Microsoft named Leader in Forrester XDR Wave 2026

🛡️ Microsoft has been named a Leader in The Forrester Wave™: Extended Detection and Response Platforms, Q2 2026, earning the top Strategy and Vision scores. The report highlights Microsoft Defender and Microsoft Threat Intelligence for high marks across identity detection, cloud detection, SIEM replacement, threat hunting, and more. Microsoft emphasizes an XDR foundation that unifies signals across identities, endpoints, email, SaaS, and cloud workloads to enable coordinated, AI-assisted attack disruption and faster SOC operations.
read more →

AI-Driven Identity Security: Microsoft Entra Updates

🔒 AI is accelerating cyberattacks, increasing speed and scale across the attack chain while identity remains a primary entry point. Microsoft highlights integrated visibility and response through Microsoft Entra and Microsoft Defender, including a unified identity risk score and an updated Entra ID Protection experience. New features aim to reduce fragmentation, enable least-privilege response roles, and automate policy optimization to help teams prevent, detect, and respond faster.
read more →

AWS HealthOmics adds real-time engine log streaming

📡 AWS HealthOmics now streams workflow engine logs to Amazon CloudWatch in real time, enabling customers to monitor workflow execution progress as it happens. This HIPAA-eligible service helps healthcare and life sciences teams accelerate bioinformatics workflows with immediate access to orchestration events, task scheduling details, import/export activity, and full stack traces on errors. Streamed logs support CloudWatch alarms, dashboards, and integration with observability tooling for faster debugging and iterative development.
read more →

AWS Continuum: Machine‑Speed Code Vulnerability Security

🛡️ AWS announces Continuum for code vulnerabilities in gated preview, designed to manage the full lifecycle of code vulnerabilities at machine speed. The service reasons over structured AWS data and unstructured organizational context, is model‑agnostic, and operates in continuous phases from discovery to remediation. It begins in a human‑in‑the‑loop learn mode and can be graduated to enforce mode for automated remediation, and incorporates pen testing, code scanning, and threat modeling capabilities.
read more →

AWS extends RDS MySQL 5.7 support to 2029

🔔 Amazon Aurora MySQL-Compatible Edition and Amazon RDS for MySQL now offer RDS Extended Support for MySQL 5.7 through June 30, 2029, extending the previous end date of February 28, 2027. This extension covers Aurora MySQL version 2 (MySQL 5.7 compatibility) and RDS for MySQL 5.7, providing critical security patches, high-severity CVE fixes, operational bug patches, and AWS Support under existing SLAs. There is no price increase; customers remain on Year 3 pricing through June 30, 2029. AWS recommends upgrading to MySQL 8.0 or 8.4-compatible versions and provides upgrade paths including Blue/Green Deployments, in-place upgrades, or snapshot restore.
read more →

Amazon RDS adds M9g Graviton5 instances

🚀 Amazon RDS now supports M9g DB instances powered by AWS Graviton5 for PostgreSQL, MySQL, and MariaDB. These Graviton5-based instances deliver up to a 30% performance boost and up to a 23% improvement in price/performance versus Graviton4 equivalents, varying by engine, version, and workload. New 24xlarge and 48xlarge sizes provide up to 192 vCPUs, 100 Gbps enhanced networking, and 72 Gbps EBS bandwidth. Availability begins in US East (N. Virginia, Ohio), US West (Oregon), and Europe (Frankfurt); consult RDS documentation and pricing for engine support and regional details.
read more →

AWS DevOps Agent Adds Release Management Preview

🛠️ AWS DevOps Agent now includes a release management capability in preview that reviews code changes for release readiness and runs autonomous release testing to improve production deployments. The feature evaluates drift from internal standards, dependency impacts, and access controls, and maps cross-repository dependencies to surface breaking changes. It also generates and executes test plans for web and API applications in customer environments to catch regressions and integration issues. The preview is available in US East (N. Virginia) at no additional cost.
read more →

AWS Outposts adds AMD bmn-cx3a with CX7 NICs

🚀 AWS now supports bmn-cx3a instances on second-generation Outposts racks, introducing AMD-based instances with accelerated networking. These instances use 5th Gen AMD EPYC CPUs and NVIDIA ConnectX-7 NICs to deliver up to 800 Gbps of bare-metal network bandwidth. Offered in two sizes with up to 256 cores, 1.5 TB memory, and dual 8 TB NVMe storage, they include L2 multicast and hardware PTP for low-latency, high-throughput workloads. Availability aligns with regions that support second-generation Outposts racks.
read more →

AWS adds autonomous agents and cross-data analytics

🤖 Amazon Quick receives major updates including autonomous agents, multi-dataset analytics, and a redesigned activity feed. Quick connects to common business apps and learns workflows to automate recurring tasks and reduce manual notifications. The multi-dataset analytics lets users query across sources like Snowflake and relational databases using natural language while inheriting semantics from catalogs such as AWS Glue and Databricks Unity Catalog. The updated activity feed provides a conversational, personalized workspace for approvals, messaging, and sharing Quick applications externally.
read more →

Cloudflare releases Cloudflare One stack for Zero Trust

🛡️ Cloudflare announced the Cloudflare One stack, a pair of agent skills designed to automate planning, deploying, migrating, and managing Zero Trust environments. The toolkit packages Cloudflare’s institutional migration expertise into two skill files — cloudflare-one and cloudflare-one-migration — to assist with VPN replacement, Gateway policies, connectivity, vendor-to-vendor translation, and troubleshooting. When paired with the Cloudflare code mode MCP server, agents gain typed, controlled access to the Cloudflare API for live inventory, configuration inspection, and curated change workflows.
read more →

AWS Glue Data Catalog adds semantic search preview

🔍 Today AWS announced a preview of business context and semantic search for AWS Glue Data Catalog, enabling discovery of data by semantic meaning. You can enrich catalog tables with glossary terms, custom metadata fields, and add skills that provide agents with additional context. The new Glue Search API lets you find tables by both structure and attached business meaning, and MCP-compatible agents can use the aws-data-analytics plugin to integrate with minimal setup.
read more →