< ciso
brief />
Vendor and Hyperscaler Watch Banner

All news in category “Vendor and Hyperscaler Watch

4625 articles · page 71 of 232

Google Aims to Shift to Post-Quantum Cryptography by 2029

🔒 Google announced a plan to complete a transition to post-quantum cryptography across its services by 2029. Security expert Bruce Schneier welcomes the decision, arguing the primary benefit is improved crypto-agility rather than an imminent quantum threat. The timeline allows Google to test implementations, assess performance and interoperability impacts, and coordinate with evolving standards. Early adoption can reduce the risk of retrospective decryption and signals leadership that may accelerate broader industry migration.
read more →

Escaping the COTS Trap: Designing for Replaceability

🧩 Commercial off-the-shelf (COTS) cybersecurity tools promise rapid deployment and mature capabilities, but over time they frequently become architectural anchors that are costly and risky to replace. Embedded business logic, vendor-shaped workflows, platform-native customizations, and data entanglement all accrue to create deep vendor lock-in that slows change and raises ongoing costs. The article warns that the next wave—AI-driven security—adds fresh switching costs as models, threat feeds, and baselines become proprietary, and it prescribes architectural patterns—anti-corruption layers, process abstraction, event-driven integration, the strangler fig, and data sovereignty—to keep systems replaceable and preserve strategic flexibility.
read more →

Amazon RDS for Oracle Adds OMA 24.1.0.0.v1 Support

📣 Amazon RDS for Oracle now supports Oracle Management Agent version 24.1.0.0.v1 for Oracle Enterprise Manager Cloud Control 24aiR1. To enable it, add the OEM_AGENT option in Option Groups and set the AGENT_VERSION to "24.1.0.0.v1". You must also configure OMS hostname (or IP), port, agent registration password, and a minimum TLS version of TLSv1.2 so the agent can securely communicate with your Oracle Management Service. Refer to the Amazon RDS for Oracle documentation for full configuration guidance.
read more →

CrowdStrike Continuous Visibility for Faster Exposure

🔍 Continuous Visibility in CrowdStrike Falcon Exposure Management continuously evaluates stored network asset metadata against newly released vulnerability intelligence so teams can learn about exposures without waiting for periodic scans. It applies updated detection logic instantly, prioritizes high‑risk findings, and offers one‑click targeted rescans for affected assets. By decoupling scanning from risk evaluation, it enables faster, more confident remediation with less operational overhead.
read more →

Amazon EMR: Spark Troubleshooting and Upgrade Powers

🔧 The Apache Spark troubleshooting and upgrade agents for Amazon EMR are now available as Kiro powers, providing one-click, AI-assisted Spark operations directly in the Kiro IDE. The troubleshooting power identifies root causes by analyzing logs, metrics, and configurations across EMR on EC2 and EMR Serverless, and offers targeted PySpark code recommendations. The upgrade power automates Spark version migrations—including code transformation, dependency resolution, remote validation, and data quality comparison—compressing upgrades from months to weeks. Both powers connect via MCP Proxy for AWS with IAM role-based authentication and record actions in AWS CloudTrail; they are available in all AWS commercial regions.
read more →

Amazon Bedrock Data Automation Adds Custom Vocabulary

🎙️ Amazon Bedrock Data Automation now supports custom vocabulary through the new Data Automation Library, enabling organizations to supply domain-specific word lists to improve speech recognition and transcription accuracy for audio and video. The capability supports display-form mapping (for example, rendering “electrocardiogram” as “ECG”) and covers 11 languages. It targets sectors such as healthcare, legal, financial services, media, and contact center analytics and is provided at no additional charge.
read more →

AWS Glue Schema Registry Expands to 3 More Regions

🗂️ AWS Glue Schema Registry is now available in Asia Pacific (Jakarta), Europe (Spain), and Europe (Zurich). The serverless, free registry centralizes Avro, JSON, and Protobuf schemas to validate streaming data and control schema evolution. Through Apache-licensed serializers and deserializers it integrates with C# and Java applications for Apache Kafka/Amazon MSK, Amazon Kinesis Data Streams, Apache Flink/Kinesis Data Analytics, and AWS Lambda. The expansion aims to reduce cross-team coordination, improve streaming data quality, and lower downstream application failures.
read more →

LinkedIn scans 6,000+ Chrome extensions, gathers device info

🔍 A new report named BrowserGate alleges that LinkedIn injects hidden JavaScript into user sessions to probe browsers for installed extensions and collect device characteristics. BleepingComputer independently observed a randomized script that attempted to detect 6,236 extensions by checking extension resource URLs and also harvested CPU, memory, screen, timezone, battery, audio, and storage details. LinkedIn says it looks for extensions that scrape content or violate its Terms and uses detection to inform defenses and enforcement, while the report warns this scanning could map competitors' customers and enable profiling. The use and sharing of the collected data have not been independently verified.
read more →

Amazon SageMaker Data Agent Adds Charts, SQL, and MVs

📊 Amazon SageMaker Data Agent now embeds interactive charting, SQL analytics across Snowflake sources, and materialized view management directly inside SageMaker Unified Studio notebooks. You can ask natural-language prompts like "plot monthly revenue trends by region for 2025" to generate interactive charts that support hover, editing, and refinement without writing code. When analyses span AWS and Snowflake, the agent lets you join Snowflake tables via external connections with AWS Glue Data Catalog data in a single prompt. The agent can also recommend and create materialized views, including refresh schedules, to optimize query performance.
read more →

Amazon Bedrock Guardrails Adds Cross-Account Safeguards

🔒 Amazon Bedrock Guardrails now supports centralized, organization-wide enforcement through cross-account safeguards, enabling security teams to apply configurable safety controls from a single management account. AWS reports these safeguards can block up to 88% of harmful multimodal content and help filter hallucinated model outputs, removing the need to configure guardrails per account. The capability is available in all supported commercial and GovCloud regions and can be managed via the AWS Console or APIs.
read more →

AWS Partner Revenue Measurement Adds Marketplace Metering

🔍 Partner Revenue Measurement now integrates with AWS Marketplace Metering for AMI and ML products, enabling automatic attribution of service consumption. This captures Amazon EC2 and Amazon SageMaker usage across partner-managed and customer-managed accounts without additional partner implementation, complementing Resource Tagging and User Agent string methods. The capability is generally available in all commercial regions and helps partners understand revenue impact and consumption patterns.
read more →

AWS Partner Revenue Measurement Adds User Agent Support

📈 Partner Revenue Measurement now supports embedding a User Agent string to attribute AWS service consumption to specific AWS Marketplace products. Partners can format the string as APN_1.1/pc_<AWS Marketplace product-code>$ and apply it in application code, via environment variables, or in the shared AWS configuration to capture API-driven usage across common SDKs. This complements Resource Tagging and Marketplace Metering and is generally available in all commercial regions.
read more →

AWS Secrets Manager Console Accepts Custom KMS ARNs

🔒 The AWS Secrets Manager console now lets you enter a custom customer-managed AWS KMS key ARN when creating secrets. Previously, the console only presented keys from the current account in a dropdown. By accepting direct KMS key ARNs, the console now supports keys in other accounts and aligns with existing API capabilities. This change simplifies cross-account encryption workflows and offers more flexible key management across accounts.
read more →

Envoy as a Foundation for Agentic AI Networking at Scale

🔧Envoy is presented as a production-ready data plane for agentic AI networking, arguing that networks must parse protocol payloads and enforce governance centrally rather than acting as blind transports. The post explains how Envoy deframes MCP, A2A, and OpenAI-style traffic to expose protocol attributes to filters and reuse HTTP extensions such as RBAC, ext_authz, and tracing. It also covers per-request buffer controls, session management for streamable transports, AgentCard-based discovery, and integration with control planes for policy rollout.
read more →

Google Cloud unveils Veo 3.1 Lite and Upscaling on Vertex AI

🚀 Google Cloud has launched Veo 3.1 Lite, a cost‑effective video generation model available now on Vertex AI, and introduced a new standalone Veo upscaling capability currently in private preview. The Veo 3.1 family now includes three tiers—Veo 3.1, Veo 3.1 Fast, and Veo 3.1 Lite—all with native audio generation. The upscaling tool enhances existing low‑resolution videos to 1080p and 4K, regardless of source, and access is provided via the Vertex AI API and Vertex AI Media Studio. Developer documentation and a sample video editor agent are available to help teams get started.
read more →

How AWS KMS and Encryption SDK Avoid AES-GCM Limits

🔒 This post explains how AWS KMS and the AWS Encryption SDK mitigate AES-GCM invocation and data bounds by deriving a fresh symmetric key per encryption using nonce-based KDFs. By producing unique K_d values (via HMAC-SHA256 in KMS and HKDF-SHA512 in the SDK) and using per-invocation IV and frame controls, they prevent (K, IV) reuse and limit exhaustion. Default settings—128- or 256-bit nonces, 96-bit IVs, and 4 KB frames—keep total data and invocation counts well within conservative security margins, reducing the need for manual key rotation and operational tracking.
read more →

Amazon QuickSight Adds Sparklines in Table Cells Globally

📈 Amazon QuickSight now supports sparklines, letting authors embed compact line or area trend charts directly inside table cells. Authors add sparklines by configuring a metric with a date dimension; QuickSight automatically renders a miniature trend for each row. Customization includes visual type, line color, interpolation (linear, smooth, or stepped), and shared or independent Y-axis scaling. The feature is available in all QuickSight regions.
read more →

Microsoft Continues Fixes for Exchange Online Access Issues

🔧 Microsoft is investigating intermittent Exchange Online mailbox access problems that have affected users of the Outlook mobile apps and the new Outlook for Mac client for several weeks. The issue was initially tracked as EX1256020 and marked resolved on April 1, but was re‑added under EX1268771 after tenants reported ongoing impact. Microsoft says it is restarting the Notification Broker service on affected infrastructure while continuing root‑cause analysis and deploying additional mitigations to prevent recurrence.
read more →

Microsoft forces upgrade of unmanaged Windows 11 24H2

🔁 Microsoft has begun force-upgrading unmanaged devices running Windows 11 24H2 Home and Pro editions to Windows 11 25H2. The company says its machine-learning-based intelligent rollout now targets all Home and Pro 24H2 systems not managed by IT, and those devices will stop receiving fixes, time zone updates, technical support, and monthly security updates once 24H2 reaches end of support on October 13, 2026. Users can manually check for the 25H2 update in Settings > Windows Update, pause updates temporarily, or follow Microsoft's support guidance if issues occur.
read more →

Amazon CloudWatch Query Studio Adds Native PromQL Support

🔍 Amazon CloudWatch Query Studio is now in public preview, bringing native PromQL querying and integrated visualization to the CloudWatch console. The interface unifies PromQL and CloudWatch Metric Insights so teams can query AWS-vended and OpenTelemetry metrics side by side without switching tools. Query Studio offers a visual form builder with autocomplete and a code editor with syntax highlighting, and it lets users add charts or create alarms directly from query results.
read more →