< ciso
brief />
Vendor and Hyperscaler Watch Banner

All news in category “Vendor and Hyperscaler Watch

4625 articles · page 94 of 232

Google Chrome moves to two-week stable release cycle

🔁 With the release of Chrome 153 on September 8, Google will move from a four-week to a two-week release cadence for both beta and stable channels on Desktop, Android, and iOS. Dev and Canary channels remain on their current schedules while an eight-week Extended Stable branch will be preserved for enterprise customers. Google says smaller, more frequent milestones will reduce disruption and simplify post-release debugging. Users can expect more frequent feature rollouts and occasional restart prompts, and weekly security updates will continue under the August 2023 model.
read more →

Unlocking Document Understanding with Mistral in Foundry

📄 Mistral Document AI 2512 in Microsoft Foundry combines high-end OCR (mistral-ocr-2512) with contextual extraction (mistral-small-2506) to convert scans, photos and digital documents into structured JSON and markup while preserving layout, tables and handwritten notes. It emphasizes enterprise-grade accuracy, multilingual coverage and private/secure inference. Paired with the ARGUS accelerator, organizations can deploy end-to-end pipelines quickly and switch OCR providers at runtime.
read more →

Kaspersky Adds OpenAI API Support to Container Security

🔒 Kaspersky has extended Kaspersky Container Security with support for the OpenAI API, allowing organizations to connect local or third‑party large language models that implement that API. The integrated AI assistant analyzes uploaded container images, describes their contents and behavior, performs independent risk assessments, and suggests mitigations to speed investigations and decision-making. The update also brings single sign‑on and multi‑domain Active Directory support, faster image scanning, and enhanced security policy capabilities to the Kaspersky Cloud Workload Security suite.
read more →

Building a High-Impact Tier 1: 3 Steps CISOs Must Follow

🛡️ Tier 1 analysts handle the bulk of alerts but frequently lack the context and tooling needed to decide quickly and accurately. The piece advises CISOs to invest in three coordinated capabilities: live threat intelligence feeds to improve detection, automated enrichment and sandbox analysis to turn flags into findings, and comprehensive integration of intelligence into SIEM, EDR, and network controls. These steps reduce MTTD/MTTR, lower false positives, and shift Tier 1 work from manual research to high-value investigation.
read more →

Cloudflare Threat Intelligence Platform: Edge-native TIP

🛡️ Cloudflare’s Cloudforce One Threat Intelligence Platform is an edge-native TIP that centralizes global telemetry, analyst investigations, and automated defenses. It eliminates bulky ETL and monolithic databases by using a sharded, SQLite-backed Durable Object architecture and running GraphQL in Workers for sub-second, multi-shard queries. The platform enriches SIEM alerts with historical actor context, supports STIX2 exports, and can push instant protections via the Firewall API to close the loop between discovery and defense.
read more →

Google Announces MCP Toolbox Java SDK for Databases

🧰 The new Java SDK for the Model Context Protocol (MCP) Toolbox for Databases delivers type-safe, production-grade agent orchestration for Java and Spring Boot environments. It integrates with 42+ data sources, including AlloyDB, Cloud SQL, and Cloud Spanner, and simplifies secure, parameterized mappings from natural language intents to database operations. The SDK is designed for stateful, high-concurrency transactional agents and leverages Application Default Credentials for zero-config security.
read more →

Google Cloud and Nokia Integrate Network as Code Platform

🚀 Google Cloud and Nokia announced an integration at MWC Barcelona that connects Nokia Network as Code (NaC) with Google Cloud’s agentic AI stack to enable AI agents to observe, program, and optimize mobile networks autonomously. The collaboration leverages Gemini models and standardized protocols such as A2A and MCP to translate natural-language intent into network actions. An Agent Development Kit (ADK) allows enterprises to build custom multi-agent workflows that bridge business logic and network intelligence, delivering a zero-code, intent-driven developer experience.
read more →

Cloudflare CASB adds one-click remediation for file sharing

🛡️ Cloudflare CASB now lets administrators remediate risky file-sharing directly from the Cloudflare One dashboard. The new Remediation feature supports one-click removal of public, organization-wide, and external shares in Microsoft 365 and Google Workspace, and can target files that match DLP profiles for sensitive content. Remediation only removes risky sharing settings — it does not delete files or change ownership — and every action is recorded in Admin logs for auditing and SIEM export. The system is built on Cloudflare Workers and Workflows for fast, durable execution at scale.
read more →

Cloudy LLM Explanations Expand across Cloudflare One

☁️ Cloudflare’s new Cloudy layer uses LLMs to translate complex security telemetry into concise, human-readable guidance inside Cloudflare One. It generates plain-language explanations for Email Security detections and structured Risk + Guidance summaries for CASB findings to help teams act faster. Phishnet reporting will surface real-time Cloudy summaries via Workers AI to reduce SOC noise and guide end users. Microsoft beta starts soon, with wider rollouts and Google Workspace support planned.
read more →

Amazon OpenSearch OR2 and OM2 Now in GovCloud Regions

🚀 Amazon OpenSearch Service has expanded the OpenSearch Optimized instance family with OR2 and OM2 in AWS GovCloud (US-East, US-West). In internal benchmarks, OR2 delivers up to 26% higher indexing throughput versus OR1 (and up to 70% versus R7g), while OM2 delivers up to 15% higher throughput versus OR1 (and up to 66% versus M7g). Both instance types pair compute and local caching with S3-based managed storage, offer pay-as-you-go and reserved pricing, and come in a range of sizes to support indexing-heavy workloads.
read more →

AWS Batch adds configurable instance scale-down delay

⏱️ AWS Batch now supports a configurable scale-down delay for managed compute environments, letting operators keep instances running after jobs complete to reduce relaunch latency. The new minScaleDownDelayMinutes parameter accepts values from 20 minutes up to 1 week and is applied per instance based on when it last finished a job. You can set the delay when creating or updating a compute environment via the API or Management Console; the feature is available in all AWS Regions where AWS Batch is supported.
read more →

Azure instant access incremental snapshots for Pv2 and Ultra

🚀 Azure now supports instant access for incremental snapshots of Premium SSD v2 (Pv2) and Ultra Disk, enabling immediate restores and near-full performance from creation. Restored disks hydrate rapidly and deliver single-digit millisecond reads and sub-millisecond writes without waiting for background copy. This reduces recovery time for rollbacks, maintenance, and rapid scale-out of stateful applications. Enable the feature via the existing snapshot API by adding the InstantAccessDurationMins parameter.
read more →

Private Connectivity for RAG AI Applications on Google Cloud

🔒 This Google Cloud blog outlines a reference architecture to deliver private-IP only connectivity for retrieval-augmented generation (RAG) applications that must not transit the public internet. It describes a multi-project topology—routing project, Shared VPC host, and service projects for Data Ingestion, Serving, and Frontend—and maps required services such as Cloud Interconnect/Cloud VPN, Network Connectivity Center, Private Service Connect, Cloud Router, Cloud Armor, and VPC Service Controls. The post also details RAG population and inference flows to show end-to-end private traffic paths and highlights management and routing orchestration for hybrid and VPC spokes.
read more →

Google unveils Merkle Tree Certificates for Post‑Quantum TLS

🔐 Google is developing Merkle Tree Certificates (MTCs) in Chrome to make HTTPS certificates resilient to future quantum attacks while avoiding the bandwidth cost of adding post‑quantum algorithms to traditional X.509 chains. Working with Cloudflare and the PLANTS working group, Chrome proposes a model where a CA signs a single tree head and browsers receive lightweight proofs of inclusion. Google is running a feasibility study (Phase 1), plans to invite compatible Certificate Transparency logs in Q1 2027 (Phase 2), and aims to finalize requirements and launch a Chrome Quantum‑resistant Root Store (CQRS) and MTC-only root program by Q3 2027.
read more →

Chrome adopts Merkle Tree Certificates for quantum HTTPS

🔐 Chrome has launched an initiative to protect HTTPS from future quantum threats by redesigning certificate mechanics with Merkle Tree Certificates (MTCs). Rather than enlarging X.509 certificates, MTCs use compact Merkle proofs and a single signed tree head to authenticate sites, reducing TLS handshake data and embedding transparency into issuance. Chrome is testing MTCs with Cloudflare and plans a phased rollout through 2027.
read more →

Standardized IAM Context Keys for AWS-Managed MCP Servers

🔐 AWS introduced standardized IAM context keys for its managed remote Model Context Protocol (MCP) servers so AI agents can operate with existing IAM credentials while enabling distinct governance controls. The two keys — aws:ViaAWSMCPService (boolean) and aws:CalledViaAWSMCP (string) — let you allow or deny MCP-initiated actions and restrict access to specific MCP servers. AWS will also simplify public endpoint authorization so AI calls use standard IAM permissions (no separate MCP actions) and plans to add VPC endpoint support for private-network enforcement and two-stage authorization.
read more →

AWS Config Adds 30 New Resource Types for Broader Coverage

🔔 AWS Config now supports 30 additional AWS resource types across key services including Amazon Bedrock AgentCore and Amazon Cognito. If you have recording enabled for all resource types, AWS Config will automatically begin tracking these new additions. The newly supported types are also available for use in Config rules and Config aggregators. This update expands visibility for discovery, assessment, audit, and remediation across Regions where each resource is available.
read more →

Anthropic Confirms Claude Outage Affecting Global Users

⚠️ Anthropic has confirmed a widespread outage impacting Claude services globally. The incident was first reported on March 2, 2026, with elevated error rates, failed requests, and timeouts observed across web, mobile, and API platforms. An initial "Investigating" notice was posted at 11:49 UTC and a follow-up at 12:06 UTC states the team is still actively investigating. Users may experience inconsistent responses and no ETA has been provided.
read more →

Protecting SaaS from Bot Attacks with SafeLine WAF

🔒 SafeLine is presented as a self-hosted web application firewall that inspects every HTTP request and emphasizes behavioral and semantic analysis rather than simple signature matching. It combines a Semantic Analysis Engine, anti-bot challenges, rate limiting and identity controls to reduce fake sign-ups, credential stuffing, scraping and abusive automation. Deployable as a reverse proxy, it gives SaaS teams control over logs, latency and compliance while providing a dashboard for tuning and visibility.
read more →

Agentic Autonomous Networks at MWC 2026 — Platform Advances

🚀 At MWC Barcelona, Google Cloud outlines a shift from AI-driven insights to agentic telco operations, showcasing tools that embed AI into network control to achieve Level 4–5 autonomy. The company highlights a dynamic network digital twin, a unified graph data layer using Spanner Graph and BigQuery, and real-time GNN predictions in Vertex AI. New open-source telco data pipelines and two proof-of-value agents — a data steward and autonomous network agents — aim to accelerate trials and reduce legacy bottlenecks.
read more →