< ciso
brief />
Vendor and Hyperscaler Watch Banner

All news in category “Vendor and Hyperscaler Watch

4625 articles · page 67 of 232

AWS RTB Fabric Adds Health Checks for EC2 Auto Scaling

✅AWS RTB Fabric now supports health checks for real-time bidding workloads running on EC2 Auto Scaling groups, providing continuous monitoring and automatic routing to healthy instances via configurable settings in RTB responder gateways. This reduces failed bidding transactions caused by bootstrapping, draining, or instance failures and helps AdTech operators improve uptime and lower error rates. The capability is generally available in multiple AWS Regions and integrates with a broad set of advertising partners.
read more →

Google enables Gmail end-to-end encryption on mobile

🔐 Google has rolled out native end-to-end encryption for Gmail on Android and iOS, allowing enterprise users to compose and read encrypted emails without installing extra apps. The capability uses client-side encryption (CSE) and is available to organizations with Enterprise Plus licenses plus the Assured Controls add-on after admins enable mobile clients. Encrypted messages and attachments are encrypted on the device and delivered as regular emails, and recipients using other services can read them in a web browser.
read more →

AWS Backup Expands FSx Support and Cross-Region Copy

📁 AWS Backup now supports backup and restore for Amazon FSx for Windows File Server, FSx for OpenZFS, and FSx for Lustre in five additional Regions — Malaysia, Taipei, Thailand, Canada West (Calgary), and Mexico (Central). You can centrally manage FSx backup policies, automate schedules, and monitor backup activity through AWS Backup in those Regions. AWS Backup also supports cross‑Region and cross‑account copy of FSx backups across 14 Regions, available for on‑demand copies and scheduled copy rules. In opt‑in Regions, backups can be placed in logically air‑gapped vaults to help defend against accidental deletion and ransomware.
read more →

Local Testing of a Multi-Agent System with Vertex AI Memory

🧪 This article describes how to validate the Dev Signal multi-agent system locally before deploying to Cloud Run. It covers configuring local secrets, an environment-aware env utility that initializes Vertex AI, and a test runner which connects to the cloud-based Vertex AI memory bank to persist user preferences. The guide demonstrates a two-phase scenario that teaches preferences, generates multimodal content, wipes local session history, and verifies cross-session memory recall.
read more →

Google Adds Device-Bound Session Credentials to Chrome 146

🔐 Google has made Device Bound Session Credentials (DBSC) generally available to Windows users on Chrome 146, with macOS support planned for a later release. DBSC uses hardware-backed modules like the Trusted Platform Module (TPM) to bind short-lived session cookies to a specific device so exfiltrated cookies cannot be used by attackers. The feature falls back gracefully on devices without secure key storage and was developed with Microsoft as part of efforts to make the approach an open web standard. Google says the architecture is privacy-minded and does not enable cross-site tracking.
read more →

Architecting Reliable GPU Infrastructure for AI/ML

🔧 Google Cloud outlines its strategy for building resilient GPU AI/ML infrastructure to support massive-scale training workloads. The post emphasizes measuring reliability beyond simple uptime with MTBI and Goodput, and describes four core principles — proactive prevention, continuous monitoring, transparency and control, and minimizing disruptions — to reduce interruptions and accelerate recovery. It frames infrastructure reliability as a commercial imperative when training at scale.
read more →

Amazon Timestream for InfluxDB Adds Maintenance Windows

🛠 Amazon Timestream for InfluxDB now lets customers define weekly maintenance windows for both InfluxDB 2 instances and InfluxDB 3 clusters across all supported editions. You can specify day-and-time in an IANA timezone such as America/New_York, Europe/London, or Asia/Tokyo, and the service will automatically handle Daylight Saving Time transitions. Configure or modify the window when creating or updating resources via the console, AWS CLI, or AWS SDKs. If no window is specified, Timestream will continue to schedule maintenance automatically.
read more →

Amazon Bedrock Adds IAM Principal Cost Allocation Support

🔍 Amazon Bedrock now supports cost allocation by IAM principal in AWS Cost and Usage Report 2.0 (CUR 2.0) and Cost Explorer. Customers can tag IAM users and roles with attributes like team, project, or cost center, activate those tags as cost allocation tags, and either include caller identity in a CUR 2.0 export or filter by tags in Cost Explorer. This capability is available in all AWS commercial Regions where Amazon Bedrock is offered.
read more →

OpenSearch Adds Managed Prometheus and Agent Tracing

🔧 Amazon OpenSearch Service now delivers a unified observability workspace that combines metrics, logs, traces, and AI agent tracing with native integration for Amazon Managed Service for Prometheus. You can query Prometheus metrics directly with PromQL alongside logs and traces in the OpenSearch UI using live queries that avoid data duplication and reduce costs compared with premium platforms. New RED-based application monitoring workflows and OpenTelemetry GenAI semantic conventions enable correlating slow traces, overlaying Prometheus metrics on service dashboards, and tracing LLM agent execution within a single tool.
read more →

Microsoft Named Leader in Forrester Wave for Sovereign Cloud

🏆 Microsoft has been named a Leader in The Forrester Wave: Sovereign Cloud Platforms, Q2 2026, reflecting strong scores for current offering and strategy. The recognition highlights Microsoft’s platform approach that applies consistent sovereign controls across public cloud, private cloud, and partner-operated national clouds using technologies such as Azure Arc, Azure Local, and region-specific residency controls like EU Data Boundary. It underscores Microsoft’s commitment to help organizations adopt cloud and AI while maintaining control, compliance, and operational independence.
read more →

Cloudflare Actively Adjusts Post-Quantum Priorities

🔐 Cloudflare says it is “actively adjusting” its post-quantum cryptography priorities after Google moved its PQC migration deadline up to 2029, citing algorithmic advances. The company reports that more than half of its traffic is already protected against harvest-now/decrypt-later using ML-KEM (a PQC standard ratified in 2024), and plans to deploy post-quantum certificates in 2027 to guard against active attacks. Bas Westerbaan noted Google demonstrated a breakthrough with a zero-knowledge proof while withholding key details.
read more →

Chrome 146 Adds Hardware-Bound Protection for Cookies

🔐 Google has introduced Device Bound Session Credentials (DBSC) protection in Chrome 146 for Windows to block infostealer malware from harvesting session cookies. The feature cryptographically ties session cookies to hardware-backed keys stored in the Trusted Platform Module (TPM) on Windows, with macOS support planned for a future release. Because the per-session private keys are generated by a security chip and cannot be exported, exfiltrated cookies become useless without proof of key possession. The protocol is privacy-conscious, uses distinct keys per session to avoid cross-site correlation, and was developed with industry input including Microsoft.
read more →

Amazon S3 Lifecycle Pauses Actions for Failed Replication

🔁 Amazon S3 Lifecycle now prevents expiration and transition actions on objects that failed replication, helping operators avoid unintended deletions or storage-class transitions when replication is misconfigured or lacks permissions. Objects that fail replication will be skipped by lifecycle rules until replication is corrected. After you fix replication configuration or permissions and run S3 Batch Replication to catch up, lifecycle will automatically process those objects according to your configured rules.
read more →

Securing AI Inference on GKE with Model Armor Gateways

🔒 Enterprises are moving AI workloads to GKE at scale, but serving models introduces risks such as prompt injection and sensitive data leakage that traditional network controls miss. Google recommends Model Armor, a gateway-integrated guardrail service that inspects requests before they reach the model and scans outputs afterward. It offers proactive input scrutiny, content-aware output moderation, and DLP integration, all without code changes to your application. Integrated logging surfaces policy triggers to Security Command Center for audit and response.
read more →

Device-Bound Session Cookies Arrive in Chrome 146

🔐 Chrome has enabled Device Bound Session Credentials (DBSC) publicly for Windows users on Chrome 146, with macOS support arriving in a future release. DBSC cryptographically binds short‑lived session cookies to a device's hardware-backed key (TPM or Secure Enclave) so exfiltrated cookies cannot be reused off‑device. The browser handles rotation and the approach preserves privacy by avoiding device identifiers. Web developers can adopt DBSC via the open spec and developer guide.
read more →

Amazon RDS Proxy Support for Blue/Green Deployments

🔁 Amazon RDS Blue/Green Deployments now supports Amazon RDS Proxy, eliminating DNS propagation delays to enable faster application recovery during switchovers. RDS Proxy actively monitors database instances during single-Region switchovers and redirects connections to the Green environment so applications begin using the new production database immediately without driver or configuration changes. This integration supports Amazon Aurora (MySQL and PostgreSQL), Amazon RDS for MySQL, PostgreSQL, and MariaDB in commercial Regions where RDS Proxy is available, and deployments can be initiated via the RDS Console or CLI.
read more →

Cloud Run Worker Pools at Estée Lauder Companies: Use Cases

🔁 Google Cloud's Cloud Run worker pools provide an always-on, pull-based execution model that Estée Lauder Companies used to scale LLM-powered services. The company's Rostrum platform migrated from a request-driven service to a producer-consumer architecture: a FastAPI web tier publishes user messages to Pub/Sub and worker pools consume them for LLM inference. This decoupling improved message durability, UI latency SLAs, and reduced operational overhead while enabling GPU-backed distributed workloads and cost improvements for long-running background tasks.
read more →

AWS Agent Registry for AgentCore Now Available in Preview

🔍 AWS has previewed the Agent Registry in AgentCore, a private, governed catalog and discovery layer for agents, tools, skills, MCP servers, and custom resources across an organization. The registry is accessible via the AgentCore Console, APIs (AWS CLI, AWS SDK), or as an MCP server that builders can query from their IDEs, and it supports IAM and OAuth (Custom JWT) access. Teams can register resources manually or use URL-based discovery to harvest metadata from live endpoints; records pass through an approval workflow and are auditable via AWS CloudTrail. Semantic and keyword search lets developers find capabilities by describing use cases in natural language.
read more →

AWS Marketplace launches Discovery API for catalog access

🔎 The AWS Marketplace Discovery API provides programmatic access to product and pricing data across the Marketplace catalog, including SaaS, AI agents and tools, AMIs, containers, and machine learning models. Buyers can embed catalog data into internal portals and procurement workflows, while sellers and channel partners can surface listings, public pricing, and private offer details within their storefronts. The API is available in US East (N. Virginia), US West (Oregon), and Europe (Ireland) and is accessed using IAM permissions via the AWS SDK.
read more →

Fortinet Expands Global ISO 14025 EPD Certifications

🔍 Fortinet has expanded its portfolio of independently verified environmental product declarations (EPDs) by achieving ISO 14025 certification for the FortiGate 90G/91G series. This milestone makes Fortinet the first cybersecurity vendor to publish International EPDs for three major firewall families, joining the FortiGate 50G and FortiGate 40F. Each EPD is grounded in a Life Cycle Assessment and verified under PCR 2024:06, delivering standardized, auditable environmental data to support procurement, regulatory reporting, and Scope 3 transparency.
read more →