All news in category "Vendor and Hyperscaler Watch"

Amazon Bedrock Available in Thailand, Malaysia, and Taipei

🚀 Amazon has launched Amazon Bedrock in the Asia Pacific (Thailand), Asia Pacific (Malaysia), and Asia Pacific (Taipei) regions, enabling local customers to build and scale generative AI applications using a range of foundation models and developer tools. The managed service supports deploying agents and productionizing models to shorten the path from experimentation to real-world deployment. Customers can expect improved latency, regional data residency options, and integration with AWS operational and security services.

AWS Network Firewall Adds Reject and Alert for Domain Rules

🔒 AWS Network Firewall now supports Reject and Alert actions for stateful domain list rule groups via the console, enabling more granular control over domain-based traffic. The Reject action blocks specified domains, while the Alert action logs and monitors traffic without disrupting flows. This feature is available in all Regions and supports TLS inspection configuration through the VPC Console or the Network Firewall API, helping organizations refine policy enforcement and observability.

CrowdStrike Adds Correlation Rule Template Discovery

🔍 CrowdStrike has launched the Correlation Rule Template Discovery dashboard in Falcon Next-Gen SIEM to help SOC teams discover and operationalize high-value detection content more quickly. The centralized dashboard maps templates to onboarded telemetry, offers precision search and filtering by data source and MITRE ATT&CK tactics, and exposes quick actions to test and deploy templates as active correlation rules. It highlights new and updated templates, provides compatibility analysis, and surfaces curated research and enablement guidance to accelerate detection and reduce noise.

Amazon Neptune Analytics Launches in Mumbai Region

📍 Amazon Neptune Analytics is now available in the Asia Pacific (Mumbai) Region, enabling customers to create and manage analytics graphs locally. Neptune Analytics is a memory-optimized graph engine designed for fast, in-memory processing of large graph datasets, supporting optimized analytic algorithms, low-latency graph queries, and vector search within traversals. It complements Amazon Neptune Database, and you can load data from a Neptune Database, snapshots, or Amazon S3. To get started, create a new Neptune Analytics graph via the AWS Management Console or AWS CLI; see the Neptune pricing page for region and cost details.

Planning and Running an AWS Security Hub POC Guide

🔒 This post explains how to plan and implement an AWS Security Hub proof of concept (POC) to evaluate unified cloud security operations. It outlines steps to define success criteria, configure integrations with GuardDuty, Amazon Inspector, Macie, and Security Hub CSPM, and to prepare, enable, and validate the deployment. The guidance recommends using overlapping trial periods, adopting the OCSF standard for normalized findings, and leveraging automation and ticketing integrations to measure operational impact.

Microsoft Edge to Revoke Malicious Sideloaded Extensions

🔒 Microsoft will add a security feature to Edge that detects and revokes malicious sideloaded extensions. The protection targets extensions installed via Developer Mode or other local sideloading methods that bypass the Microsoft Edge Add-ons vetting process. Microsoft plans a worldwide rollout in November for standard multi-tenant instances, aiming to reduce large-scale extension abuse and forced-install campaigns.

AppStream 2.0 Enables Local File Redirection on Fleets

📁 Amazon AppStream 2.0 now supports local file redirection on multi-session fleets, extending a feature previously available only on single-session instances. Users can drag and drop local files directly into streamed applications, reducing manual uploads and improving productivity while preserving controlled access to local resources. This capability is available at no additional cost in all regions and requires the latest AppStream 2.0 agent or managed image updates released on or after September 05, 2025.

Cloudflare AI Index: Site-Controlled Discovery and Monetization

🔍 Cloudflare is launching a private beta of AI Index, a per-domain, AI‑optimized search index that site owners control and can monetize via Pay per crawl and x402 integrations. The service automatically builds and maintains indexes and exposes standardized APIs — an MCP server, LLMs.txt, a search API, bulk transfer endpoints, and pub/sub subscriptions for real-time updates. It integrates with AI Crawl Control so owners can set access rules or opt out entirely.

AWS Clean Rooms adds incremental ID mapping for sync

🔁 AWS Clean Rooms now supports incremental processing for rule-based ID mapping workflows using AWS Entity Resolution, enabling collaborators to populate ID mapping tables with only new, modified, or deleted records since the last analysis. This reduces the need for full-table reprocessing and enables near-real-time synchronization of matched identifiers across partners while preserving Clean Rooms’ privacy controls. Use cases include measurement providers keeping offline purchase data current with advertisers and publishers to enable always-on campaign measurement, lower costs, and maintain collaborator privacy.

Amazon MSK Connect Expands to Five More AWS Regions

📢 Amazon has expanded MSK Connect availability to five additional AWS Regions: Asia Pacific (Thailand), Asia Pacific (Taipei), Mexico (Central), Canada West (Calgary), and Europe (Spain). MSK Connect provides fully managed Kafka Connect clusters to deploy, monitor, and scale connectors that move data between Apache Kafka/Amazon MSK and external systems without provisioning infrastructure. Connectors scale automatically and are compatible with Kafka Connect, supporting both MSK-managed and self-managed Kafka clusters. Customers can get started from the Amazon MSK console or the AWS CLI and pay only for the resources they use.

Monitoring AS-SETs and Their Importance for BGP Operations

🔎 Cloudflare Radar now publishes public IRR AS-SET monitoring on each ASN routing page, enabling operators to inspect, filter, and export AS-SET memberships and inclusion trees. The feature surfaces inferred ASN, IRR sources, counts of AS and AS-SET members, AS cone sizes, and upstream relationships, and provides direct/indirect toggles for focused views. These capabilities help build accurate BGP route filters, detect misuse, and reduce the risk of route leaks by making AS-SET data easier to validate and share.

Cloudflare launches Observatory and Smart Shield tools

🚀 Cloudflare today launched Observatory (open beta) and Smart Shield, integrated tools that combine real-user monitoring, synthetic testing, backend telemetry and prescriptive remediation to help teams measure and improve web performance and resiliency. Observatory centralizes RUM-focused Core Web Vitals, synthetic browser and network tests, error and cache telemetry, and delivers Smart Suggestions to pinpoint root causes and recommended fixes. Smart Shield offers one-click origin protections — dynamic caching, connection reuse, health monitoring and dedicated egress options — to reduce origin load and validate improvements in real time; both features are available to all plans, including Free.

Cloudflare FL2: Rust Rewrite Cuts Latency and Boosts CDN

🚀 Cloudflare announced FL2, a complete reimplementation of its FL request-processing layer using Rust and the Oxy framework. FL2 adopts strict modular phases, eliminates cross-language overhead, and supports graceful restarts with systemd socket activation and the Rust-based shellflip coordinator. Internal and third-party tests show FL2 reduces median response times by ~10 ms and delivers a ~25% performance improvement; staged rollouts, automated testing, and fallbacks to FL1 enabled safe incremental migration.

Eliminating Cold Starts 2: Shard and Conquer Globally

🧊 Cloudflare describes a new Worker sharding technique that uses a consistent hash ring to route requests to existing Worker instances across a data center, reducing cold starts. The approach trades a sub-millisecond proxy hop for far fewer expensive cold starts, improving memory efficiency and latency. The system leverages Cap'n Proto RPC to implement optimistic forwarding, lazy capabilities, and seamless context transfer for nested Worker invocations.

Radar: regional traffic views and Certificate Transparency

🌐 Cloudflare Radar now offers regional traffic insights and expanded Certificate Transparency data to provide more granular, localized visibility into Internet health and trust. Regional views break traffic down by first-order administrative divisions (ADM1), showing bytes, requests, device (mobile/desktop) and bot/human splits, and can be joined with ASN filters in the Data Explorer. The CT dashboard, built on prior Merkle Town work, surfaces certificate volumes, CA and log-level metrics, issuance trends, signature and key algorithm distributions, and richer domain certificate details accessible via the Radar UI and API.

Code Mode: Using MCP with Generated TypeScript APIs

🧩 Cloudflare introduces Code Mode, a new approach that converts Model Context Protocol (MCP) tool schemas into a generated TypeScript API so LLMs write code instead of emitting synthetic tool-call tokens. This lets models leverage broad exposure to real-world TypeScript, improving correctness when selecting and composing many or complex tools. Code Mode executes the generated code inside fast, sandboxed Cloudflare Workers isolates that expose only typed bindings to authorized MCP servers, preserving MCP's uniform authorization and discovery while reducing token overhead and orchestration latency.

Cloudflare network performance update — Birthday Week 2025

⚡Cloudflare reports it remains the fastest network for the largest number of last‑mile ISPs in its Birthday Week 2025 update. Using Real User Measurements (RUM) from Cloudflare‑branded error pages, the company compares TCP connection time trimeans against CloudFront, Google, Fastly and Akamai for the top 1,000 networks. Measured from August 6 to September 4, Cloudflare is #1 in 40% of measured ISPs and is prioritizing targeted fixes where gaps remain.

Okta Launches Identity Security Fabric for AI Agents

🔒 Okta introduced an Identity Security Fabric to secure AI agents and unify identity, application, and agent management across enterprises. The platform combines AI agent lifecycle management, a Cross App Access protocol, and Verifiable Digital Credentials (VDC) to enforce least privilege, discover and monitor agents, and replace fragmented point solutions. Early access features begin in fiscal 2027.

Amazon RDS for Db2 Adds Reserved Instances, 47% Off

💰 Amazon RDS for Db2 now offers Reserved Instances with up to 47% cost savings versus On-Demand pricing. The offering is available for all supported instance types and supports both Bring Your Own License (BYOL) and Db2 licenses purchased through the AWS Marketplace. Reserved Instances include size flexibility so the discounted rate can automatically apply across sizes within the same instance family (for example, a db.r7i.2xlarge RI applying to two db.r7i.xlarge instances). Reserved Instances can be purchased via the AWS Management Console, AWS CLI, or AWS SDK; consult Amazon RDS for Db2 Pricing for details.

AWS Compute Optimizer Adds Support for 99 EC2 Types

🔍Compute Optimizer now supports 99 additional Amazon EC2 instance types, including the latest Compute Optimized (C8gn, C8gd), General Purpose (M8i, M8i-flex, M8gd), Memory Optimized (R8i, R8i-flex, R8gd), and Storage Optimized (I8ge) families. This expansion helps customers identify additional savings and capture improved price-to-performance from newer instances without manual analysis. The update is available in all regions where Compute Optimizer operates except AWS GovCloud (US) and China, and can be accessed via Console, AWS CLI, or AWS SDK.