< ciso
brief />
Vendor and Hyperscaler Watch Banner

All news in category “Vendor and Hyperscaler Watch

4624 articles · page 46 of 232

Public Sector Momentum and Mission Impact at Next '26

🤖 At Google Cloud Next '26, public sector leaders and academics demonstrated how the agentic era is moving from experimentation to enterprise-scale adoption across government, transportation, healthcare, and research. Featured speakers — including leaders from Google Public Sector, the City of Los Angeles, the FDA, and the Department of Transportation — shared blueprints for scaling AI and treating agents as force multipliers to improve productivity and mission outcomes. Hands-on demos, 28 Mission Talks and an interactive Public Sector Hub enabled attendees to create and test hundreds of agents across diverse use cases. Google invited organizations to continue engagement through follow-up webinars and partner pathways to accelerate adoption.
read more →

AI Traffic Analysis Dashboards for AWS WAF and Bot Control

🔍 The AWS blog announces AI Traffic Analysis dashboards for AWS WAF, adding AI-specific visibility into bot and agent activity across web ACLs. The dashboards extend WAF Bot Control detection to more than 650 named bots and provide identity, intent classification, organization breakdowns, top paths, and 14‑day temporal trends. Data is emitted to Amazon CloudWatch and is queryable via the GetTopPathStatisticsByTraffic API for custom dashboards, alerting, and automation. A reference sample demonstrates per-path monetization with CloudFront and Lambda@Edge, with usage guidance and cost warnings.
read more →

SAM CLI Adds BuildKit Support for Lambda Container Builds

🛠️The SAM CLI now supports BuildKit for building container images from Dockerfiles, enabling faster, more efficient Lambda container builds. You can use multi-stage builds to produce smaller final images, improved caching to reduce rebuild times, and parallelized build steps for faster overall builds. BuildKit also enables cross-architecture targets (x86_64 and arm64) and secure build-time use of Docker secrets. To use it, update to SAM CLI v1.159.0+ and run sam build with the --use-buildkit flag; the feature works with both Docker and Finch.
read more →

AWS SAM Adds Native WebSocket API Support for API Gateway

🚀AWS Serverless Application Model (AWS SAM) now supports WebSocket APIs for Amazon API Gateway, enabling developers to declare complete WebSocket APIs with minimal configuration in a SAM template. SAM automatically generates the necessary resources and permissions, reducing the manual CloudFormation work and common IAM debugging issues. The new AWS::Serverless::WebSocketApi resource offers parity with API Gateway WebSocket features — including IAM and Lambda authorization, custom domains, RouteSettings, Models, StageVariables, and Globals support. Define routes by assigning Lambda handlers for $connect, $disconnect, $default, and custom routes; SAM wires up integrations and permissions automatically.
read more →

ElastiCache adds CloudWatch diagnostics for node metrics

🔍 Amazon ElastiCache now publishes thirteen new Amazon CloudWatch metrics for node-based clusters to surface network throttling, memory fragmentation, and connection exhaustion without running INFO commands or manual baselining. The host- and engine-level diagnostics include network baseline percentages, allocator fragmentation, OS page-faults, connection rejects, pub/sub channel counts, and command throughput. Metrics are available in all commercial, China, and GovCloud regions at no additional cost and can be viewed in the ElastiCache monitoring tab or the AWS/ElastiCache namespace in CloudWatch.
read more →

Amazon WorkSpaces Enables Secure AI Agent Desktop Access

🤖 Amazon WorkSpaces now lets AI agents securely access and operate desktop applications within managed, enterprise-grade WorkSpaces environments. Agents built on any framework and running in cloud, on-premises, or hybrid deployments can connect with minimal code using the industry-standard MCP integration, while IT retains centralized permissions, logging, and auditing identical to human desktops. Observability includes screenshots and metrics for full visibility, and pay-as-you-go pricing supports elastic scale.
read more →

AWS IoT Core Device Location: Confidence & Metadata

📍 AWS IoT Core for Device Location now lets developers specify a confidence level (50–99%) for Cell ID, Wi‑Fi, and Cell+Wi‑Fi solvers when resolving device positions via HTTP, trading radius size for statistical certainty. It also adds a measurement type field in resolved metadata to indicate GNSS, Wi‑Fi, or BLE sources, improving data quality assessment and debugging. These enhancements are available in all supported regions.
read more →

Amazon MQ adds in-place upgrades to RabbitMQ 4.2 for brokers

🔄 Amazon MQ now supports in-place upgrades for RabbitMQ brokers, enabling upgrades from 3.13 to 4.2 without provisioning a new broker or migrating data. The upgrade preserves broker configuration, queues, exchanges, bindings, users, and policies. Eligible brokers must run on M7G (Graviton) instance types and must not use classic mirrored queues; a migration tool is available to convert those to quorum queues. Major-version upgrades will render the broker unavailable while Amazon MQ performs the operation.
read more →

Amazon Quick Integrates New Relic AI Agents for Observability

🤖 Amazon Quick now integrates with New Relic's AI agents, enabling on-call engineers, SREs, and engineering leaders to investigate incidents, run NRQL queries, and generate evidence-backed RCAs directly within the Quick workspace. After connecting to New Relic’s remote model context protocol (MCP) server, users can invoke alert insights, log analysis, transaction diagnostics, and user-impact assessments from a conversational prompt. Quick Flows can automate recurring triage runbooks or escalation steps, and responses are surfaced alongside enterprise knowledge in Spaces for context-aware outcomes. The integration is available in all AWS Regions where Amazon Quick operates.
read more →

EC2 Instance Store CSI Driver Now Available as EKS Add-on

💾 Amazon EKS now supports the EC2 Instance Store CSI driver as an EKS add-on, and you can install and manage it via the EKS console or AWS CLI. The driver exposes ephemeral NVMe-based instance store volumes as Kubernetes persistent volumes and manages their lifecycle on EC2 hosts. This feature simplifies attaching local instance storage to EKS clusters and is available in all commercial regions.
read more →

Five Guides to Production-Ready AI Agents at Scale

🤖 At Google Cloud Next '26, Google introduced the Gemini Enterprise Agent Platform to help teams build, deploy, scale, govern, and optimize autonomous AI agents in production. The series highlights long-running state management in Agent Runtime, a layered Agent Governance Stack, orchestration patterns in the Agent Development Kit (ADK), integration standards, and prebuilt blueprints in Agent Garden.
read more →

Google Agent Gateway: ISV Ecosystem for AI Security

🔒 Google announced Agent Gateway, part of the Gemini Enterprise Agent Platform, to provide a programmable, secure connectivity plane for user-to-agent, agent-to-agent, and agent-to-tools interactions. The Gateway enables teams to inject custom logic and third-party security controls directly into the request path without changing application code. Google highlighted integrations with vendors such as Broadcom (Symantec DLP), Check Point, Cisco, CrowdStrike, Palo Alto Networks, and others to deliver runtime DLP, prompt-injection mitigation, identity governance, and behavioral analytics.
read more →

Oracle moves to monthly security patches to counter AI

🔔 Oracle will issue monthly Critical Security Patch Updates (CSPUs) for its ERP, database and other software, shifting from a quarterly cadence to address faster AI-driven vulnerability discovery. The first monthly CSPU will arrive May 28, then releases will follow on the third Tuesday of each month (June 16, July 21, August 18). Oracle will still publish a cumulative quarterly Critical Patch Update and will auto-apply fixes for customers in Oracle-managed cloud environments. The change primarily affects customers running Oracle software on premises or in third-party hosting.
read more →

Amazon Connect Cases Supports Customer Identity Resolution

🔁 Amazon Connect Cases now automatically reassociates cases when duplicate customer profiles are merged by Amazon Connect Customer Profiles Identity Resolution, ensuring agents see a consolidated interaction history. When customers have multiple profiles from different channels or with different contact details, Identity Resolution detects and merges those duplicates and Cases brings all associated cases together under the unified profile. This reduces manual searching and the risk of incomplete context. The capability is available in multiple AWS regions.
read more →

Five Ways to Use Kiro and Amazon Q for AWS Security

🔐 AWS security teams can accelerate triage and remediation using Kiro and Amazon Q Developer. The post outlines five techniques—embedding persistent security context, accelerating Security Hub triage, remediating infrastructure-as-code, performing Well-Architected security reviews, and drafting Service Control Policies—aligned to the AWS Well-Architected Security Pillar. It highlights steering files and .amazonq/rules to codify standards, recommends staged testing and human validation, and proposes measurable metrics to track reduced time-to-triage and improved compliance.
read more →

Amazon Bedrock AgentCore arrives in AWS GovCloud US-West

🔒 Amazon announces that Bedrock AgentCore is now available in the AWS GovCloud (US-West) Region, bringing enterprise-grade agentic AI to workloads with elevated compliance and data residency requirements. AgentCore is a managed platform for building, deploying, and operating AI agents at scale without customers managing infrastructure. Core capabilities include AgentCore Runtime for session-isolated, long-running agents; AgentCore Gateway, which uses the Model Context Protocol to convert APIs and Lambda functions into agent-ready tools with controlled access to enterprise services; AgentCore Identity for integrated authentication and permission delegation; and AgentCore Observability and Evaluations for real-time monitoring and continuous quality assessment in production.
read more →

Amazon Bedrock AgentCore Launches in AWS GovCloud (US)

🔒 Amazon announced AgentCore availability in the AWS GovCloud (US-West) region, bringing enterprise-grade agent capabilities to workloads with elevated compliance needs. AgentCore is a managed platform for building, deploying, and operating AI agents at scale without customers managing infrastructure. Its composable services—including Runtime, Gateway, Identity, Observability, and Evaluations—enable session isolation, long-running workloads, secure access to enterprise data via the Model Context Protocol, and integration with existing identity providers.
read more →

OAuth Backdoor: Persistent Tokens and Enterprise Risk

🔒 Every AI tool, workflow automation, or productivity app that employees connect to Google or Microsoft can leave a persistent OAuth token that does not expire, is not centrally tracked, and bypasses perimeter controls and MFA. Material Security's research shows many organizations are aware but lack effective remediation: some do nothing and others rely on manual spreadsheets. The article argues for continuous behavioral monitoring, blast-radius assessment, and graduated automated responses to revoke risky tokens before they’re weaponized.
read more →

Google boosts top Android exploit rewards to $1.5M

🔐Google updated its Android and Chrome vulnerability rewards, increasing top-tier payouts for the most difficult exploits while lowering awards for issues AI has made easier to find. The highest Android prize is $1.5 million for zero-click, full-chain persistent exploits against a Pixel Titan M2 security chip, with $750,000 for non-persistent variants. For Chrome, full-chain browser process exploits pay up to $250,000 plus a $250,128 bonus for exploiting MiraclePtr-protected allocations; Google also narrows Android scope to Linux kernel bugs in Google-maintained components unless concrete device exploitability is shown.
read more →

Amazon OpenSearch Cluster Insights Expands Coverage

🔍 Amazon OpenSearch Service expanded Cluster Insights to support OpenSearch 1.0 and later and Elasticsearch 6.8 and later, providing proactive cluster health and performance visibility via the Console. A new Unused Index insight identifies indices with zero search or indexing activity in the last 30 days and recommends migrating them to warm or cold storage to reduce costs. These insights surface through the Console, OpenSearch UI, OpenSearch Service Notifications, and Amazon EventBridge, and are available at no additional cost in all Regions where the service runs.
read more →