< ciso
brief />
Vendor and Hyperscaler Watch Banner

All news in category “Vendor and Hyperscaler Watch

4625 articles · page 93 of 232

AWS EventBridge Scheduler increases CreateSchedule quota

🔼 Amazon EventBridge Scheduler now increases the default service quota for the CreateSchedule API to 5,000 requests per second in 11 AWS Regions. The change helps customers with high‑throughput schedule creation workloads onboard and scale with less friction, because many can now operate at larger scale without requesting an initial quota increase. Scheduler will scale automatically to the new default, and customers can request additional increases through the Service Quotas console.
read more →

FortiAIGate: Runtime Protection for AI Workloads, Governance

🔒 FortiAIGate provides dedicated runtime protection for private AI and LLM deployments by monitoring every input and output between applications and models. It detects and blocks threats such as prompt injection, jailbreaking, model poisoning, data exfiltration, and excessive compute abuse while enforcing governance policies in real time. Built for Kubernetes and hybrid environments, it integrates with Fortinet Security Fabric, offers dashboards mapping OWASP Top 10 LLM risks, and uses multi‑GPU and SmartNIC acceleration to preserve performance and control costs.
read more →

OpenSearch Ingestion Adds Managed Prometheus Sink Support

🚀 Amazon OpenSearch Ingestion now supports Amazon Managed Service for Prometheus as a sink, enabling fully managed, end-to-end metrics ingestion without custom forwarding infrastructure. Teams can route logs and traces to Amazon OpenSearch Service while directing metrics to Prometheus, and apply built-in transformation and enrichment to improve data quality before delivery. Metrics become queryable with Prometheus Query Language and visualizable via Amazon Managed Grafana. The sink is available in all regions where OpenSearch Ingestion is offered and can be configured through the AWS Management Console or AWS CLI.
read more →

Cloudflare launches Attack Signature Detection for WAFs

🛡️ Cloudflare announced Attack Signature Detection, a new always-on framework that inspects every proxied request and attaches signature metadata for full visibility without sacrificing protection. The model separates detection from mitigation, populating fields like cf.waf.signature.request.ref, confidence, and categories for use in Security Analytics and the Edge Rules Engine. Detections use the same heuristics as the Managed Ruleset but operate as non-blocking signatures by default, and Full-Transaction Detection — which correlates request and response to reduce false positives and confirm exploits — is under development and available for early interest.
read more →

Cloudflare adds mandatory authentication and independent MFA

🔒 Cloudflare announced mandatory authentication for the Cloudflare One Client and a new independent multi-factor authentication (MFA) capability to strengthen remote access. When enabled via MDM, the client blocks all Internet traffic until the user authenticates, allowing only the authentication flow and prompting users to sign in. The separate MFA acts as a network-edge, step-up second root of trust, supporting biometrics, WebAuthn/FIDO2 keys, PIV for SSH, and TOTP. Mandatory authentication starts on Windows, and the independent MFA is available in closed beta.
read more →

Amazon GameLift Servers Adds UDP DDoS Protection Feature

🛡️ Amazon Web Services announced Amazon GameLift Servers DDoS Protection, a new capability that provides proactive UDP-based defense for session-based multiplayer games using GameLift Servers. The feature co-locates a relay network to authenticate client traffic with access tokens and enforce per-player traffic limits, helping prevent both targeted and volumetric DoS/DDoS disruptions while adding negligible latency. It is available at no additional cost to GameLift Servers customers and includes console and API integration with sample code for Unreal Engine and native C++.
read more →

GraphML and Digital Twins for Autonomous Telco Networks

🔗 Google Cloud describes using graph-based digital twins and GraphML to enable autonomous telecommunications networks that self-configure, self-optimize, self-heal and self-secure with minimal human intervention. The post outlines an integrated stack combining tf-GNN and NetAI's fine-tuned GNNs to model live topology and dependencies as input for deterministic root-cause analysis. A MasOrange PoC at MWC 2026 showcases managed AIOps driven by these models.
read more →

Google Cloud and DigitalRoute: Reusable Data Pipelines

📡 Google Cloud and DigitalRoute are delivering reusable, cloud-native data pipelines that turn diverse telecom telemetry into AI-ready datasets. Running DigitalRoute’s Usage Engine Private Edition on GKE, the solution normalizes proprietary formats at edge and core, filters noise, and routes data into Spanner for real-time digital twins and BigQuery for large-scale analytics and training with Vertex AI. The result is consistent, contextualized subscriber traces that accelerate production-grade autonomous network use cases.
read more →

GKE for Telco: Building a Resilient AI-Native Core

🚀 Google Cloud demonstrates how Google Kubernetes Engine (GKE) can form a high-performance foundation for telco modernization via two complementary paths: cloud-centric evolution for full cloud migration and strategic hybrid modernization to retain local control over latency-sensitive functions. The post highlights carrier-grade enhancements—multi-networking API, simulated L2, a telco CNI, persistent IP, and GKE IP route—with sub-second convergence and HA Policy to minimize downtime. It frames modernization as a means to enable predictive AIOps, intent-driven automation, faster time-to-market, and new monetization opportunities through AI and data platforms.
read more →

Google Cloud adds Data Steward and VoLTE Core Agent

🔧 Google Cloud is extending its Autonomous Network Operations framework with the Gemini-powered Autonomous Data Steward and a Core Network VoLTE Agent, developed with Future Connections and piloted by One NZ. The Steward provides a zero-copy data layer using Dataplex Universal Catalog to expose metadata pointers and give agents access to real-time telemetry without duplicating datasets. The VoLTE Agent leverages that foundation for continuous monitoring, intelligent root-cause analysis of signaling and probe data, and autonomous recommendations to improve voice quality and accelerate operational tasks.
read more →

Identity-Verified Onboarding to Mitigate Deepfake Threats

🛡️ Cloudflare announces integration with Nametag to add workforce identity verification to Cloudflare Access, confronting the emerging 'remote IT worker' fraud where organized actors use stolen or deepfaked identities to infiltrate companies. The OIDC-based flow requires a selfie and government ID scan, and Nametag's Deepfake Defense uses cryptography and AI to attest liveness and identity. Verification completes in under 30 seconds and no biometrics are stored. This layer enables identity-based policies before access is granted.
read more →

Gateway Authorization Proxy: Identity-Aware Policies

🔐 Cloudflare's new Gateway Authorization Proxy shifts identity from devices to the network, enabling per-user enforcement for unmanaged endpoints and virtual desktops. By using a Cloudflare Access–style login and signed JWT domain cookies, the proxy logs individual users, supports multiple identity providers, and allows instant revocation without installing a client. PAC File Hosting further simplifies deployment with templates and an AI assistant.
read more →

Cloudflare One Adds Adaptive User Risk Scoring to Access

🔒 Cloudflare One now integrates continuous User Risk Scores into its ZTNA policies, letting admins factor recent user behaviors into access decisions. The SASE risk engine ingests internal telemetry from Cloudflare Access and Gateway, plus third-party signals via integrations (e.g., CrowdStrike, SentinelOne), and deterministically maps configured behaviors to low/medium/high risk levels. Administrators can apply risk-based selectors in Access policies to restrict, require stronger MFA, or revoke access dynamically, with manual reset and signal-sharing back to IdPs.
read more →

Amazon SageMaker Unified Studio Adds AWS Glue 5.1 Support

🚀 Amazon SageMaker Unified Studio now supports AWS Glue 5.1 for Visual ETL, notebook, and code-based data processing jobs. With Glue 5.1 you can run on Apache Spark 3.5.6 with Python 3.11 and Scala 2.12.18, and use updated open table formats including Apache Iceberg 1.10.0, Apache Hudi 1.0.2, and Delta Lake 3.3.2. Select Glue 5.1 from the job version dropdown to apply the runtime across Visual ETL, notebooks, and code jobs.
read more →

SageMaker Unified Studio Syncs Catalog Metadata to Partners

🔁 Amazon SageMaker Unified Studio now synchronizes catalog metadata and context with Atlan, Collibra, and Alation, aligning projects, assets, descriptions, glossary terms, and hierarchies across platforms. Collibra supports bidirectional synchronization and can manage SageMaker Unified Studio data access requests, while Atlan and Alation ingest metadata from SageMaker with additional enhancements planned. The Collibra integration is provided as an open-source solution on GitHub, and setup is performed by establishing connections from each partner to SageMaker Unified Studio.
read more →

Kiro IDE Now Connects Remotely to SageMaker Unified

🔗 AWS now enables Kiro IDE to connect remotely to Amazon SageMaker Unified Studio, allowing data scientists, ML engineers, and developers to use their local Kiro setup — including spec-driven development, conversational coding, and automated feature generation — while running workloads on SageMaker’s scalable compute. The integration uses the AWS Toolkit extension for secure IAM-based authentication and preserves local specs, steering files, and hooks. This reduces context switching and keeps agentic development workflows within a single environment across AWS analytics and ML services. The capability is available in all Regions where SageMaker Unified Studio is offered.
read more →

AWS FINMA ISAE 3000 Type II Report Covers 183 Services

🔒 AWS announced the issuance of the Swiss FINMA ISAE 3000 Type II attestation report covering 183 services for the period 1 October 2024 to 30 September 2025. The independent attestation maps AWS controls against FINMA circulars including outsourcing, operational risks and resilience, and proposed BCM minimum standards. AWS added five services to the FINMA scope: Amazon Verified Permissions, AWS B2B Data Interchange, AWS Resource Explorer, AWS Security Incident Response, and AWS Transform. The report is available via AWS Artifact and customers are reminded that security is shared between AWS and the customer.
read more →

Transforming Developers into AI Architects with Google Cloud

🧭 This post launches Google Cloud's "Data Strategy = AI Strategy" series and reframes the database as the central context engine for production AI. It argues that by using fully PostgreSQL-compatible services such as AlloyDB and Cloud SQL, teams can eliminate latency and improve retrieval accuracy while reducing infrastructure friction. The article emphasizes three enterprise pillars — speed, scale, and security — and describes hands-on labs that cover batch embeddings, real-time inference with Gemini 3 Flash, and row-level security for zero-trust agents.
read more →

AgentCore Policy Controls in Amazon Bedrock Now Available

🔒 Amazon has made Policy in Bedrock AgentCore generally available, providing centralized, fine-grained controls for agent-to-tool interactions. Teams can author policies in natural language that AWS converts into Cedar and stores in a policy engine attached to an AgentCore Gateway, which intercepts traffic and evaluates requests before allowing or denying access. Operating outside agent code, this lets security, compliance, and operations enforce access rules and validate inputs without modifying agents, improving governance and visibility across deployments.
read more →

AWS Issues PiTuKri ISAE 3000 Type II Report for 183 Services

🔒 Amazon Web Services (AWS) announced the issuance of the PiTuKri ISAE 3000 Type II attestation report covering 183 services, confirming its control environment aligns with the Finnish Traficom Cyber Security Centre’s criteria. The independent report covers October 1, 2024 to September 30, 2025 and adds five services to scope: Amazon Verified Permissions, AWS B2B Data Interchange, AWS Resource Explorer, AWS Security Incident Response, and AWS Transform. Customers can obtain the attestation via AWS Artifact, and AWS reiterates that security is a shared responsibility between the provider and the customer.
read more →