< ciso
brief />
Vendor and Hyperscaler Watch Banner

All news in category “Vendor and Hyperscaler Watch

4625 articles · page 49 of 232

Spatial Data Management on AWS: Connectors and Installer

🔧SDMA on AWS now supports custom transformation connectors and a unified desktop installer. Custom connectors enable submission of compute‑intensive jobs—such as format conversion, 3D rendering, image tiling, and metadata extraction—to AWS Deadline Cloud using Open Job Description templates, and can extend SDMA's built-in content analysis with bespoke verification or transformation logic. Connectors run in isolated compute environments and automatically ingest declared outputs back into SDMA's governed asset repository, allowing automated, chained processing across spatial data pipelines. The SDMA desktop application now offers a standalone installer that bundles required dependencies, removing the need to install the CLI or other components separately.
read more →

Criminal IP and Securonix Integrate Threat Intel Operations

🔗 Criminal IP and Securonix have integrated Criminal IP’s exposure-based threat intelligence into ThreatQ, enabling organizations to enrich IP indicators with contextual data such as maliciousness scoring, VPN/proxy detection, exposed services, open ports, and known vulnerabilities. The integration leverages APIs and ThreatQ’s orchestration engine to automate continuous enrichment and evaluation of incoming indicators, reducing manual analyst effort. Analysts can perform on-demand lookups and view expanded investigation graphs within ThreatQ, improving prioritization and response workflows.
read more →

Amazon EKS Adds Dynamic Resource Allocation for EFA

🚀Amazon EKS now supports Dynamic Resource Allocation (DRA) for Elastic Fabric Adapter (EFA), simplifying RDMA and high-performance inter-node communication for AI/ML and HPC workloads. The EFA DRA driver, based on the upstream DRANET project, enables topology-aware allocation and EFA interface sharing so network traffic uses the closest NIC to GPUs, Trainium, or Inferentia. It’s recommended for new EKS deployments on Kubernetes 1.34+ and is available in all AWS Regions; the existing EFA device plugin remains supported and is still recommended for use with Karpenter and Amazon EKS Auto Mode.
read more →

Dynamic Workflows: Durable Execution Following Tenants

🚀 Cloudflare announced Dynamic Workflows, a compact TypeScript library that lets a single Worker Loader route durable Workflows to per-tenant code at runtime. It wraps the WORKFLOWS binding so tenant-created workflows persist, resume, and execute in the correct tenant sandbox. Built on Dynamic Workers, it supports per-tenant caching, hibernation, and minimal dispatch overhead.
read more →

Microsoft lets admins pick preinstalled Store apps to remove

🛠️ Microsoft expanded its in-box app removal policy for Windows 11 to add a dynamic list that allows IT admins to specify which preinstalled Microsoft Store apps to uninstall by Package Family Name (PFN). The RemoveDefaultMicrosoftStorePackages policy can be applied via Group Policy or a custom OMA-URI for MDM and requires the April 2026 non-security update (Insiders can get it with the March 13, 2026 Dev/Beta builds). Intune support for the dynamic list will arrive in the coming months.
read more →

RDS for SQL Server: Read Replicas Support ASV Storage

🔁 Amazon RDS for SQL Server now supports creating read replicas for database instances that use additional storage volumes. Additional volumes let customers scale database storage up to 256 TiB by attaching up to three additional volumes of up to 64 TiB each, and replicas preserve the source instance's storage layout on creation. After the initial copy, administrators can manage additional volume configurations independently on source and replica instances. The feature is available in all AWS commercial Regions and AWS GovCloud (US) and can be accessed via the AWS Management Console, AWS CLI, or AWS SDKs.
read more →

RDS for SQL Server: Cross-Account Snapshot Sharing

🔁 Amazon RDS for SQL Server now supports cross-account snapshot sharing for instances configured with additional storage volumes, allowing snapshots to preserve the original storage layout when shared, copied, or restored across accounts. This capability helps teams create isolated backup environments for compliance and to perform diagnostics by restoring snapshots in separate accounts. The feature is available today in all AWS commercial Regions via the Console, CLI, and SDKs.
read more →

Amazon SageMaker AI adds prioritized instance fallback

🚀 Amazon SageMaker AI endpoints now support prioritized instance pools for flexible provisioning. When your preferred instance type has insufficient capacity, SageMaker AI automatically provisions from the next option in your prioritized list for endpoint creation, updates, and autoscaling — keeping endpoints reliable without manual intervention. You can specify hardware-optimized model artifacts per instance type and monitor per-instance-type CloudWatch metrics for latency, throughput, GPU utilization, and instance counts.
read more →

AWS Payment Cryptography: Physical Key Exchange Support

🔐 AWS Payment Cryptography now offers Physical Key Exchange, a PCI PIN and P2PE-compliant option that enables paper-based cryptographic key exchange without customers having to maintain their own secure key-loading infrastructure. Paper key components are shipped to trained AWS key custodians, who perform key ceremonies in AWS-operated secure facilities meeting the required physical and logical controls. Once loaded, keys are available to the managed service for cryptographic operations, helping organizations accelerate migration when partners do not support electronic key exchange.
read more →

Amazon EKS adds one-click cluster access via CloudShell

☁️ Amazon Elastic Kubernetes Service (EKS) now offers one-click cluster access from the AWS Management Console via AWS CloudShell, eliminating the need to install or configure kubectl, AWS CLI, or kubeconfig files locally. From the EKS console, selecting Connect launches a CloudShell session with kubectl pre-configured for the chosen cluster so you can run commands immediately. The feature supports clusters with both public and private API server endpoints and each session also includes the AWS CLI and standard CloudShell utilities for troubleshooting and management.
read more →

AWS Outposts adds LagStatus CloudWatch metric globally

🔔 AWS Outposts racks now publish the LagStatus Amazon CloudWatch metric so operators can monitor Link Aggregation Group (LAG) connectivity directly from CloudWatch. A metric value of 1 denotes the LAG is operational and forwarding traffic, while 0 indicates it is down. The metric is available in all AWS commercial Regions and both AWS GovCloud (US-East and US-West) Regions where Outposts racks are supported. Use it with existing VifConnectionStatus and VifBgpSessionState metrics to isolate LAG, VIF, or BGP problems quickly.
read more →

Amazon ECS Managed Instances Adds NVIDIA GPU Metrics

🖥️ Amazon ECS Managed Instances now exposes NVIDIA GPU metrics through CloudWatch Container Insights with enhanced observability. Customers can monitor GPU capacity, utilization, memory usage, device-level hardware health, and thermal conditions for containerized workloads. The metrics are available in all commercial AWS Regions; to use them, enable Container Insights with enhanced observability and launch GPU-accelerated EC2 instance types via an ECS Managed Instances capacity provider.
read more →

Amazon MQ for RabbitMQ Adds Native Prometheus Metrics

📈 Amazon MQ for RabbitMQ now includes the Prometheus plugin on RabbitMQ 4.2 brokers, providing a native Prometheus-compatible metrics endpoint. You can scrape broker, queue, and connection metrics from the /metrics, /metrics/detailed, and /metrics/memory-breakdown endpoints in Prometheus text format. AWS also publishes a curated subset of these metrics to CloudWatch. The plugin is enabled by default in all Regions where Amazon MQ is available.
read more →

AWS IoT Core Adds Custom Domains for GovCloud (US)

🔒 AWS announced that AWS IoT Core now supports customer managed domains in the AWS GovCloud (US) Regions. Customer managed domains let you configure custom domain names, use server certificates stored in AWS Certificate Manager, attach custom authorizers, and create multiple data endpoints. This provides stable TLS behavior and simplifies migration of existing devices without changing device credentials or CA certificates.
read more →

Azure Integrated HSM Open-sourced to Increase Trust

🔐 Microsoft is open-sourcing the firmware, drivers, and software stack for the Azure Integrated HSM, a tamper-resistant hardware security module built into new Azure servers and engineered to meet FIPS 140-3 Level 3. The move, announced at the OCP EMEA Summit, includes publishing validation artifacts and launching an OCP workgroup to guide ongoing development. Azure says the HSM protects keys in hardware so they never appear in host or guest memory, reducing classes of exfiltration attacks, and will be available in Azure V7 VMs globally in the coming weeks.
read more →

Amazon Bedrock AgentCore Identity Adds OBO Token Exchange

🔐 Amazon Bedrock AgentCore Identity now supports On-Behalf-Of (OBO) token exchange, enabling developers to build agents that securely access protected resources on behalf of authenticated users without additional consent flows. The OBO exchange issues a new, scoped-down access token that carries both the user and agent identities, granting just-in-time, least-privilege access to outbound services. This capability is generally available in 14 AWS Regions.
read more →

Cloud CISO Perspectives: Multicloud and Multi‑AI Security

🔒 At Next '26 Francis deSouza framed Google Cloud's direction as preparing enterprises for an agentic future, positioning the platform as AI‑native, open, and secure. He argued that multicloud and multi‑AI are essential for resilience and highlighted AI-driven SOC automation outcomes including a 90% reduction in mitigation time and Triage and Investigation tasks collapsed from 30 minutes to 60 seconds using Gemini. The integration of Wiz was presented as a way to secure self‑hosted and multicloud AI lifecycles, while a new whitepaper and the Gemini Enterprise Agent Platform outline governance, prompt sanitization, and agent identity controls.
read more →

Microsoft Security: New Agent 365 and Defender Integrations

🔒 Microsoft previewed new Microsoft Defender capabilities within the Agent 365 tooling gateway to give security teams near real-time visibility and control over agentic workflows, using webhook-based evaluation to detect, block, and investigate anomalous agent actions before execution. Separately, Microsoft Defender for Cloud now integrates with GitHub Advanced Security generally available to map code changes to production, prioritize alerts using runtime context, and enable coordinated remediation. A hands-on Microsoft Purview demo demonstrates AI-powered data security investigations across the data estate.
read more →

AWS Payment Cryptography Adds Multi-Party Approval

🔐 AWS Payment Cryptography now supports Multi-party approval (MPA) for importing root certificates, adding an extra governance layer to critical key management operations. Organizations using X.509 and PKI with asymmetric keys (RSA, ECC) can require two or more authorized approvers even if the requester holds IAM permissions. The capability integrates with AWS IAM Identity Center so teams can review and act on pending requests through a managed approval portal, and it is available in all regions where the service runs with no additional charge beyond standard API rates.
read more →

Amazon Bedrock AgentCore launches optimization preview

🔧 Amazon announced a preview of optimization features for Bedrock AgentCore, adding automated recommendations plus batch evaluations and controlled A/B tests. These capabilities complete the observe–evaluate–improve loop by converting evaluation outputs and production traces into suggested system prompts and refined tool descriptions tailored to specific workloads. Batch evaluations validate recommendations against predefined test cases, while A/B tests measure impact on held-out or live traffic with statistical significance before changes are promoted and only after user approval.
read more →