All news in category "Vendor and Hyperscaler Watch"

AWS API MCP Server v1.0.0 enables natural API control

🧭 The AWS API MCP Server v1.0.0 enables foundation models to interact with AWS APIs via natural language by generating and executing syntactically correct CLI commands. This release reduces startup time and removes local dependencies by converting the suggest_aws_command tool into a remote service, and adds streamable HTTP transport alongside stdio. Security and governance are strengthened with improved secure file system controls, better input validation, configurable denials, and options to require human oversight for mutating actions. Observability is improved through CloudWatch agent log collection, and an experimental get_execution_plan tool (enabled by EXPERIMENTAL_AGENT_SCRIPTS) offers prescriptive workflows; the server is available as a container and open-source on the AWS Labs GitHub repository.

Microsoft Media Creation Tool Fails on Windows 11 ARM64

⚠️ Microsoft has confirmed that the Windows 11 Media Creation Tool (version 26100.6584), released on September 29, 2025, may not run on devices with Arm64 processors after the Windows 11 25H2 rollout. Affected users report an error that reads, "We're not sure what happened, but we're unable to run this tool on your PC," blocking creation of bootable installation media. Microsoft says the tool does not support creating media for Arm64 devices and that the normally available ability for Arm64 systems to produce x64 media is also failing. As a temporary workaround, Microsoft recommends using a PC with an AMD64 processor to create installation media while it investigates and prepares a fix.

Amazon Detective Adds AWS PrivateLink VPC Endpoint Support

🔒 Amazon Detective now supports VPC endpoints via AWS PrivateLink, allowing you to initiate Detective API calls from inside your VPC without Internet traversal. The capability is available in all AWS Regions where Detective is offered. Create a VPC endpoint through the VPC console, API, or SDK; this provisions an elastic network interface with a private IP in your chosen subnets as the entry point. Detective continues to ingest and correlate logs and findings to power investigations.

VirusTotal Crowdsourced AI Adds Exodia Labs for .CRX

🔍 VirusTotal has added Exodia Labs to its Crowdsourced AI lineup to provide automated analysis of Chrome extension (.CRX) files. The new contributor issues a clear verdict — benign, suspicious, or malicious — alongside a behavioral narrative to complement existing AI streams such as Code Insight. Exodia Labs results are indexed in VirusTotal Intelligence with dedicated search operators and surface in the web UI to help analysts rapidly triage extension-related threats.

CrowdStrike Fall 2025 Release: Agentic SOC & AI Security

🔒 CrowdStrike’s Fall 2025 release introduces the Falcon agentic security platform, redefining SOC operations by pairing analysts with AI agents that reason, act, and continuously learn. The release centers on the Enterprise Graph data layer and Charlotte AI AgentWorks for no-code agent creation, plus seven mission-ready agents and Threat AI for autonomous hunting and response. It also expands identity, data protection, patching, and MDR capabilities, integrates Pangea and Onum, and launches AI Detection and Response (AIDR) to secure AI workflows.

AWS DataSync Supports VPC Endpoint Policies and FIPS

🔒 AWS DataSync now supports VPC endpoint policies, enabling administrators to control access to DataSync API operations through VPC service endpoints, including FIPS 140-3 enabled endpoints. You can restrict specific actions such as CreateTask, StartTaskExecution, or ListAgents and combine these controls with identity-based and resource-based policies. The capability is available in all AWS Regions and helps strengthen security posture and compliance when accessing DataSync via VPC endpoints.

AWS Cloud WAN Now Available Across AWS GovCloud Regions

🛰️ AWS has made AWS Cloud WAN available in AWS GovCloud (US-West) and AWS GovCloud (US-East) as of Oct 1, 2025. The service provides a central dashboard and policy-driven networking to create a global network that spans VPCs, Transit Gateways, and on-premises locations. It supports BGP-based global route exchange and connectivity via Site-to-Site VPN, Direct Connect, or third-party SD-WAN solutions. The dashboard offers consolidated visibility into network health, security, and performance to simplify operations.

How CISOs Identify and Reject Poor Security Products

🔍 CISOs increasingly face a torrent of vendor pitches and must probe beyond marketing to find tools that genuinely improve security. Experienced security leaders recommend five core questions about business fit, operational impact, integration and maintenance, update cadence, and concrete use cases. They emphasize live demos and practitioner testing so teams can spot technical gaps and avoid products that merely add noise. Be wary of vague claims, fearmongering, buzzword-heavy pitches, or vendors who resist feedback.

Amazon SageMaker Managed MLflow Now in AWS GovCloud

🛡️ Amazon SageMaker managed MLflow is now available in both AWS GovCloud (US-West) and AWS GovCloud (US-East) regions. The managed service integrates MLflow experiment tracking with SageMaker capabilities, streamlining AI experimentation and accelerating GenAI development from idea to production. It provides end-to-end observability to help reduce time-to-market and simplify compliance and operational oversight for government workloads.

Windows 11 25H2 (2025 Update) Now Generally Available

ℹ️ Windows 11 25H2 (2025 Update) is now generally available. The minor release shares the same platform as 24H2 and is rolled out gradually, with devices on 24H2 updated via small enablement packages (<200 KB) while systems on 23H2 receive a full OS swap. Enterprise-focused changes include Wi‑Fi 7 support, improved vulnerability detection, and an optional Group Policy to remove select preinstalled Store apps. Microsoft also removed legacy tools such as PowerShell 2.0 and WMIC.

CloudWatch & OpenSearch Integrated Analytics Expands

📈 Amazon has expanded the CloudWatch and OpenSearch Service integrated analytics experience to five additional commercial regions: Asia Pacific (Osaka and Seoul), Europe (Milan and Spain), and US West (N. California). CloudWatch Logs customers can now query logs with SQL or OpenSearch PPL in addition to CloudWatch Logs Insights QL, including JOINs, subqueries, and rich JSON, mathematical, datetime and string functions. With a few clicks, users can create OpenSearch dashboards for VPC, WAF, and CloudTrail logs and analyze data in-place without copying logs or building ETL pipelines.

AI Forecasting and Conversational Analytics in BigQuery

🔎 Google added two BigQuery tools—ask_data_insights and BigQuery Forecast—to the MCP Toolbox and the Agent Development Kit (ADK) to enable conversational analytics and time-series predictions for agents. ask_data_insights uses the Conversational Analytics API to interpret plain-English questions, generate and run queries, and return summarised answers with a step‑by‑step log for transparency. BigQuery Forecast leverages BigQuery ML’s TimesFM model via AI.FORECAST so agents can run forecasting jobs directly inside BigQuery without separate ML infrastructure.

AWS Direct Connect 100G and 10G with MACsec in Bogota

🔌 AWS expanded 10 Gbps and 100 Gbps Direct Connect dedicated connections with MACsec encryption at the Equinix BG1 data center near Bogota, Colombia. Customers can now provision private, direct network access from this location to all public AWS Regions (except China), AWS GovCloud Regions, and AWS Local Zones. The enhancement delivers more consistent, lower-latency and encrypted connectivity for enterprises and partners in the region.

AWS Direct Connect opens MAD3 location in Madrid data center

🔌 AWS has opened a new AWS Direct Connect location at the Digital Realty MAD3 data center near Madrid, Spain. The site provides dedicated 10 Gbps and 100 Gbps connections with optional MACsec encryption and enables private network access to all public AWS Regions (except China), AWS GovCloud Regions, and AWS Local Zones. This is the third Direct Connect site in Madrid and the fourth in Spain, offering a lower-variance networking option compared with the public internet. It joins more than 146 Direct Connect locations worldwide, expanding options for colocations and hybrid deployments.

Payload CMS on Cloudflare Workers with D1 and R2 Support

🧩 Deploy Payload to Cloudflare Workers in one click with a template that provisions D1 and R2 bindings. The Payload team ported the project to OpenNext and implemented custom adapters: a Drizzle-based adapter that maps D1 results for SQLite compatibility and an R2 storage adapter that uses bindings to avoid token management. They used Wrangler remote bindings for migrations and applied Hyperdrive and D1 read replicas to cut latency and improve global read performance.

Amazon SNS Adds FIPS 140-3 Endpoints in US and Canada

🛡️ Amazon Simple Notification Service (Amazon SNS) now supports additional FIPS 140-3 validated endpoints across several AWS Regions in the United States and Canada. These FIPS-compliant endpoints allow organizations, including federal contractors, to meet requirements to use validated cryptographic modules when encrypting sensitive data. The new endpoints support requests over dual-stack public and VPC endpoints and are available in US East (N. Virginia and Ohio), US West (N. California and Oregon), Canada (Central and Calgary) and AWS GovCloud (US). Customers can use these endpoints to run SNS workloads that require FIPS 140-3 validated cryptography within the listed regions.

Amazon SNS Adds IPv6 Support in AWS GovCloud (US) Regions

🌐 Amazon Simple Notification Service (Amazon SNS) now supports IPv6 for API requests in the AWS GovCloud (US) Regions, giving customers the option to use IPv6 or IPv4 over dual‑stack public and VPC endpoints. The new endpoints are validated under FIPS 140-3, and SNS now supports IPv6 across all AWS Regions where the service is available.

Choosing Internal XDR or Managed MXDR for Growth Strategies

🔐 Growing SMEs face rising security complexity and must choose between building internal XDR capabilities or outsourcing to managed MXDR services. The article contrasts Kaspersky Next XDR Optimum for teams aiming to develop in-house expertise with Kaspersky Next MXDR Optimum for organizations prioritizing 24/7 monitoring and lower operational overhead. It highlights key XDR features—sandboxing, Active Directory integration, robust investigation tools and security-awareness integration—and explains how managed services can both provide immediate protection and accelerate staff training.

AWS Transform Adds Terraform Module Generation for VMware

🔁 AWS Transform for VMware now generates reusable Terraform modules from discovered VMware network definitions, complementing existing AWS CloudFormation and CDK outputs. The feature converts source network configurations into modular, customizable infrastructure code that fits into current deployment pipelines. It is available in all Regions where the service is offered and helps teams preserve operational consistency during migrations. By producing Terraform modules, the service enables reuse of Terraform-based workflows, reduces manual configuration effort, and supports teams that prefer Terraform for network automation.

VMware Certification Surge Amid Shifting IT Landscape

🔒 VMware certifications are rising as IT teams confront hybrid, multi-cloud, and security complexity. Sponsored by VMUG, the article argues that certification has shifted from a resume boost to an operational requirement that helps reduce misconfiguration-driven breaches and embed security best practices. It highlights measurable financial value per certified employee, the role of VMUG Advantage in providing exam discounts and study resources, and how certifications support hiring, onboarding, and career resiliency.