< ciso
brief />
Vendor and Hyperscaler Watch Banner

All news in category “Vendor and Hyperscaler Watch

4625 articles · page 73 of 232

Azure IaaS: Built-in Resiliency for Critical Apps at Scale

🔁 Azure IaaS delivers an enterprise-grade platform with built-in capabilities across compute, storage, and networking to help keep mission-critical applications available during hardware issues, maintenance, zonal disruptions, and regional incidents. The platform emphasizes isolation, redundancy, failover, and recovery through features like Virtual Machine Scale Sets, availability zones, and multiple storage redundancy tiers. Networking services such as Azure Load Balancer, Application Gateway, Traffic Manager, and Azure Front Door help maintain reachability and reroute traffic when paths fail. Customers are encouraged to combine these primitives with IaC, testing, and operational practices to meet workload-specific RTO/RPO objectives.
read more →

Unifying Real-Time and Async Inference with GKE Platform

🚀 GKE Inference Gateway enables teams to run both real-time and asynchronous AI inference on a single shared pool of accelerators (GPUs/TPUs). It applies latency-aware scheduling using runtime signals such as KV cache utilization to prioritize deterministic, low-latency requests while treating queued batch work as 'filler' via an Async Processor Agent integrated with Cloud Pub/Sub. The open-source stack reduces idle capacity, consolidates software stacks, and preserves strict priority and retry controls for reliable delivery.
read more →

Fortinet Training Institute Announces 2026 ATC Award Winners

📣 Fortinet announced the winners of the 2026 Training Institute Authorized Training Center (ATC) Awards, recognizing partners that excel in delivering NSE certification and hands-on cybersecurity education across more than 150 countries. The awards highlight regional and categorical leaders — from Partner of the Year to Certified Trainer of the Year — for measurable impact in skills development. Fortinet emphasized that structured, role-based training is a core security control as organizations expand teams, mandate certifications, and adapt to AI-influenced threats.
read more →

Google rolls out Android developer verification plan

🔒 Google has begun rolling out a new Android developer verification system designed to reduce malicious apps and strengthen platform security. The scheme requires developers to verify their identities and register apps, notably when distributing software outside Google Play; eligible Play apps will be auto-registered. Unregistered apps may later require an advanced sideloading flow or ADB, while Google stages enforcement from April 2026 and expands globally after 2027.
read more →

RDS for Oracle: Cross-Account Snapshots with Extra Storage

🔒 Amazon RDS for Oracle now supports cross-account snapshot sharing for database instances configured with additional storage volumes. Customers can create, share, and copy DB snapshots that preserve the original storage layout, including up to three attached volumes, across AWS accounts and Regions. Use cases include isolated backups for compliance and restoring snapshots in separate accounts for diagnostics, development, and testing. This capability is available today via the AWS Management Console, AWS CLI, and AWS SDKs.
read more →

Cloudflare confirms 1.1.1.1 resolver privacy in 2024 review

🔒 An independent Big 4 accounting firm has completed a fresh privacy examination of Cloudflare's 1.1.1.1 public DNS resolver and confirmed that its core privacy commitments remain in force. The report reaffirms that Cloudflare does not sell or share resolver users’ personal data or use it for advertising, and that source IP addresses are anonymized and deleted within 25 hours. The review also notes that up to 0.05% of randomly sampled packets may be inspected solely for network troubleshooting and attack mitigation, and clarifies that the examination scope focused exclusively on privacy assurances.
read more →

EmDash: Cloudflare’s Modern, Secure Successor to WordPress

🛡️ EmDash is a new, open-source CMS from Cloudflare, written in TypeScript and available as a v0.1.0 preview that aims to be the spiritual successor to WordPress. It runs plugins in isolated Dynamic Workers and enforces capability-based manifests so extensions can only perform explicitly declared actions, substantially reducing plugin attack surface. EmDash is serverless-first, uses Astro for themes, includes built-in x402 payment support and passkey authentication, and provides CLI and MCP tooling to enable AI-driven management and migrations.
read more →

Amazon Bedrock Adds Structured Outputs to GovCloud Regions

🔒 Amazon Bedrock now supports structured outputs in AWS GovCloud (US) Regions. Structured outputs enables foundation models to produce consistent, schema-compliant, machine-readable responses tailored for government and regulated workloads. This reduces the need for custom validation logic, lowers operational overhead, and minimizes failed requests and retries. The capability is generally available in all commercial and GovCloud regions where Amazon Bedrock is supported.
read more →

Enhancing Visibility and Reducing Risks in the Public Sector

📡 The UK Government’s 2026 Cyber Action Plan (GCAP) requires continuous, data-driven visibility across an expanding, borderless digital estate. Cortex Xpanse provides an agentless, outside-in EASM capability that continuously discovers internet-facing assets, uncovers shadow IT and unmanaged cloud, and prioritises exposures. It also supports supply chain assessments, aligns with NCSC guidance and integrates with automation tools to accelerate remediation and reporting.
read more →

Oracle Database@AWS adds sub-millisecond network latency

Oracle Database@AWS (ODB@AWS) now provides consistent sub-millisecond roundtrip latency between Amazon EC2 instances and ODB@AWS databases. By automatically optimizing compute placement within ODB@AWS networks, customers can migrate latency-sensitive workloads — such as payment processing and securities trading — to AWS while using existing EC2 APIs and workflows. There is no additional charge for EC2 instances using the optimized placement; the capability is available in six Regions today, with more Regions planned.
read more →

AWS Managed Microsoft AD Adds Multi-Region in Opt-In Regions

🔁 AWS Directory Service for Microsoft Active Directory (AWS Managed Microsoft AD) now supports Multi-Region replication in AWS Opt-In regions. The automated feature deploys domain controllers across Availability Zones per region, handles inter-region networking, and replicates users, groups, Group Policy Objects, and schema to maintain a single authoritative directory. It configures an Active Directory site per region to optimize authentication performance and reduce cross-region transfer costs; availability excludes the Middle East (UAE) and Middle East (Bahrain) regions and pricing is hourly per domain controller plus data transfer.
read more →

Google Drive Enables Ransomware Detection by Default

🛡️ Google has made its AI-powered Google Drive ransomware detection generally available and enabled it by default for paying Workspace customers. The feature scans files as they sync from desktop computers and pauses Drive syncing when ransomware-encrypted files are detected, alerting users and admins. It provides guided instructions and a Drive restoration tool to recover corrupted files, and Google says its latest model detects 14x more infections. Admins may disable the feature in the Admin console, and endpoints need Drive for desktop v.114+ for full alerting functionality.
read more →

Falcon for IT: Managed Windows Secure Boot Certificate

🔒 CrowdStrike explains how Falcon for IT helps enterprises manage the transition from the Windows UEFI CA 2011 certificate to Windows UEFI CA 2023 ahead of Microsoft’s 2026 enforcement. The content pack provides fleet-wide Secure Boot posture assessment, controlled enrollment into Microsoft’s managed rollout, emergency blocking for incompatible hardware, and centralized audit logging. It emphasizes validating virtualization stacks, coordinating endpoint and server teams, and completing staged rollouts before enforcement to avoid inconsistent firmware trust states and compressed remediation windows.
read more →

Google Lets U.S. Users Change Their @gmail Address Now

✉️ Google is rolling out a U.S. option that lets users change the username portion of their @gmail.com address or add a new alias. The update is available from Google Account settings and requires selecting a unique new username; changes propagate across services such as Gmail, Photos, and Drive. If the toggle is missing, the feature isn’t yet available for that account or region. Google says the old username will remain linked to the account and will not be reissued.
read more →

Amazon CloudWatch Ingests AWS Security Hub Findings

🔔 Amazon CloudWatch now ingests AWS Security Hub CSPM findings into CloudWatch Logs, supporting both ASFF and OCSF schemas via CloudWatch Pipelines. Customers can query findings with CloudWatch Logs Insights, create metric filters for monitoring, and use Amazon S3 Tables for advanced analytics and reporting. Organization-level enablement rules allow automatic delivery to all accounts or selected groups, standardizing monitoring coverage. Findings delivery is available in all AWS commercial regions and is charged under tiered CloudWatch pricing.
read more →

Proton launches Meet: E2EE privacy-focused conferencing

🔒 Proton has launched Meet, a privacy-focused video conferencing service offering end-to-end encrypted calls as an alternative to mainstream platforms. Meet supports free one-hour meetings with up to 50 participants and offers a Pro tier starting at $7.99/month for longer sessions. The service uses the open-source MLS protocol, WebRTC with SFUs, and client-side encryption; authentication relies on SRP. Meetings are created via links containing an ID and locally held passwords, and Proton says it retains only non-sensitive meeting IDs, minimizing exposure even in server compromises.
read more →

AWS launches Sustainability Console to report emissions

🌱AWS has launched the free, standalone AWS Sustainability console to show customers estimated carbon emissions from their AWS usage without requiring billing permissions. Building on the Customer Carbon Footprint Tool, the console reports emissions by AWS Region, service, and scope using both market-based and location-based methods. It also adds customizable visualizations, fiscal-year settings, CSV exports, and API/SDK access for integration into reporting workflows.
read more →

Amazon OpenSearch Adds Agentic AI for Log Analytics

🔍 Amazon OpenSearch Service now includes agentic AI capabilities that let engineering and support teams analyze log data through a conversational interface. The features simplify log querying, generate and refine Piped Processing Language (PPL) queries in Discover, and surface visualization insights. An investigation agent can autonomously plan and execute root cause analysis and return ranked hypotheses with transparent reasoning. Agent memory preserves context across pages and sessions to maintain conversational continuity.
read more →

AWS IAM Identity Center Now in EU Sovereign Cloud (DE)

🔒 AWS has made IAM Identity Center available in the AWS European Sovereign Cloud (Germany) Region, an independent cloud fully located within the EU to address evolving sovereignty requirements. The service offers centralized workforce access management, single sign-on across AWS applications, and user-aware access controls for auditing and data governance. It supports centralized management of multiple AWS accounts and is available at no additional cost.
read more →

New ISO/IEC 27001:2022 Compliance Guide for AWS Customers

🔒 AWS released the ISO/IEC 27001:2022 on AWS compliance guide to help organizations design and operate an Information Security Management System (ISMS) using AWS services. The guide maps selected Annex A controls and clauses 4–10 to AWS services and architectural capabilities, and clarifies customer responsibilities under the Shared Responsibility Model. It provides practical recommendations for evidence collection, documentation, automation, and audit readiness using AWS native tooling. The target audience includes cloud architects, security teams, compliance leaders, and DevOps practitioners seeking certification readiness.
read more →