< ciso
brief />
Tag Banner

All news with #aws s3 tag

153 articles

SageMaker Studio Workflows Adds 19 New Operators

🔔 Amazon SageMaker Unified Studio Workflows now includes 19 new operators for Amazon Bedrock, Amazon S3 Tables, S3 Vectors, AWS Glue Data Catalog, and Amazon MWAA Serverless. These operators let users add tasks via the visual workflow creator to orchestrate services without writing custom integration code. The capabilities include managing Bedrock guardrails, provisioning and deleting S3 Tables and S3 Vectors, managing Glue Data Catalog assets, and triggering MWAA Serverless runs. This feature is available in all Regions where SageMaker Unified Studio is offered.
read more →

Amazon S3 Vectors Now Available in GovCloud

🔔 Amazon S3 Vectors is now available in AWS GovCloud (US-East) and AWS GovCloud (US-West). The service offers purpose-built vector storage for AI agents, inference, Retrieval Augmented Generation (RAG), and semantic search at billion-vector scale. S3 Vectors provides the elasticity, durability, and availability of Amazon S3 with dedicated APIs to store, access, and query vectors without provisioning infrastructure. Check AWS Regions and endpoints for the full availability list.
read more →

S3 Express One Zone arrives in Frankfurt region

🚀 Amazon S3 Express One Zone is now available in the AWS Europe (Frankfurt) Region. The storage class provides high-performance, single-Availability Zone storage designed for consistent single-digit millisecond access for frequently accessed and latency-sensitive workloads. S3 Express One Zone offers up to 10x faster access and request costs up to 80% lower than S3 Standard, supporting use cases like machine learning training, interactive analytics, and key-value caching in AI search engines.
read more →

Amazon S3 delivers server access logs to CloudWatch

📣 Amazon S3 now supports delivering server access logs to Amazon CloudWatch Logs, enabling instant querying, alarms, cross-account and cross-Region aggregation, and AWS KMS encryption for access log data. You can also mirror logs to Amazon S3 Tables in Apache Iceberg format at no additional storage cost. These delivery options complement existing free delivery to S3 buckets and provide more flexibility for monitoring and analysis.
read more →

AWS Backup boosts Amazon S3 copy performance

🚀 AWS Backup now performs S3 backup copy operations up to 8x faster for buckets with millions of objects and low change rates by using enhanced change tracking. This removes the need to scan all objects in the destination account or Region, reducing copy time across accounts and AWS Regions. The improvement records object events as they occur and applies automatically to new cross-account and cross-Region copy jobs at no additional cost in supported Regions.
read more →

AWS Announces Hanoi Local Zone with Local Storage

📢 AWS today announced general availability of a new Local Zone in Hanoi, Vietnam, bringing infrastructure closer to end users. The Hanoi Local Zone supports Amazon EC2 with C7i, M7i, and R7i instances, Amazon S3 including One Zone-IA, and Amazon EBS with Local Snapshots and multiple volume types. Customers can enable the zone (ap-southeast-1-han-1a) via AWS Global View or the ModifyAvailabilityZoneGroup API.
read more →

Amazon S3 Vectors raises per-query result limit

🔍 Amazon S3 Vectors now returns up to 10,000 similarity search results per query, a 100x increase from the prior limit. This larger topK helps applications retrieve a more comprehensive candidate set for multi-stage pipelines that perform reranking, aggregations, or deduplication. Use the latest AWS SDK and specify up to 10,000 results in QueryVectors; results are paginated so you can process the first page while additional pages are fetched. A small data-returned fee applies beyond the free 512 KB per query.
read more →

Detecting and Preventing Subdomain Takeover Risks

🔎 This post explains how subdomain takeover occurs when dangling DNS CNAME records point to deleted AWS resources and how attackers can reclaim those names to serve malicious content. It describes which AWS services use globally claimable namespaces (notably S3, CloudFront, and Elastic Beanstalk), outlines potential impacts such as reputation damage and phishing, and recommends detection using AWS Config inventory checks rather than DNS resolution. The article also summarizes a reference implementation that deploys a Lambda-based Config rule, Security Hub findings, optional SNS alerts, and mitigation best practices including deleting DNS records before resources and adopting account regional S3 namespaces where applicable.
read more →

S3 Vectors cuts query costs up to 80% for large indexes

🚀 Amazon Web Services announces that S3 Vectors now reduces data-processed query charges by up to 80% for vector indexes containing more than 10 million vectors. This price improvement automatically applies with no changes required to customer applications and targets similarity search workloads used in AI, RAG, and semantic search scenarios. The reduction is effective today across all Regions where S3 Vectors is available, while AWS still recommends distributing vectors across multiple indexes for better query performance.
read more →

AWS previews Transform migration to FSx for ONTAP

🚀 AWS announced a public preview that extends AWS Transform for migrations to replicate block storage workloads directly to Amazon FSx for NetApp ONTAP. The capability lets application owners and cloud migration teams move block and NFS datastores from on‑premises or other clouds into FSx for ONTAP alongside compute and network migrations. This removes intermediate storage platforms and separate migration tools, simplifying workflows and reducing cost and risk. FSx for ONTAP provides a fully managed ONTAP-based destination to preserve enterprise storage features while leveraging AWS scale and resiliency.
read more →

Amazon S3 introduces scalable object annotations

🆕 Amazon S3 now supports annotations, enabling attachment of custom JSON, XML, or YAML metadata to objects at up to 1GB per object to provide business context for AI agents and analytics tools. Annotations persist with objects through replication and copy operations, can be modified or deleted at any time, and share the same durability and consistency as the object. You can surface annotations in S3 Metadata for query via Apache Iceberg tables, or search them with natural language using Amazon SageMaker Unified Studio and supporting tools.
read more →

Lake Formation adds S3 file access via table grants

🔐 AWS Lake Formation now allows reading and writing the underlying Amazon S3 data files for tables registered in the AWS Glue Data Catalog, unifying permissions for SQL and direct file access. It issues temporary, scoped credentials tied to Lake Formation table grants—SELECT for read and SUPER for read/write—and is supported in Amazon EMR 7.13+. You can use Spark or Trino with provided APIs or an open source plugin, and all activity is logged in AWS CloudTrail. This capability is available at no extra charge in supported Regions.
read more →

FSx Intelligent‑Tiering expands to eight more Regions

🚀 Amazon FSx for OpenZFS now supports the Intelligent‑Tiering storage class in eight additional AWS Regions across the US, Europe, Asia Pacific, and South America. The Intelligent‑Tiering class automatically moves data among Frequent Access, Infrequent Access, and Archive tiers based on usage patterns and can include an optional SSD read cache for active data. This provides high performance for active workloads and lower-cost storage for less-active data, with up to 85% savings versus FSx SSD and up to 20% versus on‑premises HDD NAS.
read more →

Amazon S3 Access Grants Arrive in Germany Region

🛈 Amazon S3 Access Grants are now available in the AWS European Sovereign Cloud (Germany) Region. The feature maps identities from directories like Microsoft Entra ID and AWS IAM principals to S3 datasets, enabling automated, scalable data permission management. This simplifies granting S3 access to end users based on corporate identities. Check the AWS Region Table for full regional availability and refer to the product page for details.
read more →

Simplified S3 Tables and Iceberg permissions in GovCloud

🔒 AWS Glue Data Catalog now supports IAM-based authorization for Amazon S3 Tables and Apache Iceberg materialized views in AWS GovCloud (US) Regions. This change lets you consolidate required permissions for storage, catalog, and query engines into a single IAM policy. The capability eases integration with analytics services such as Amazon Athena, Amazon EMR, Amazon Redshift, and AWS Glue. You can still opt in to AWS Lake Formation for fine-grained access controls.
read more →

Gain visibility into DDoS attacks with flow logs

🛡️ This post explains how AWS Shield Advanced attack flow logs capture metadata during DDoS events and publish records to Amazon S3, CloudWatch Logs, or Data Firehose. It outlines the fields included in each flow log entry, describes delivery configuration and required IAM permissions, and shows how to create the CloudWatch Logs delivery objects that connect a Shield protection to a destination. The article also covers output formats, file size and timing, cost considerations, and cross-account/Region aggregation options.
read more →

Gamaredon leverages WinRAR flaw to deliver modular malware

🛡️ Gamaredon exploited CVE-2025-8088 in WinRAR to deploy an HTML Application payload named GammaPhish, which fetches a VBScript downloader called GammaLoad. Observed in January 2026 by Sekoia, the chain delivers multiple strains including a worm (GammaWorm) that persists via scheduled tasks and hides payloads using NTFS ADS, and a stealer (GammaSteel) that exfiltrates files to AWS S3 or fallback servers. The campaign targets Ukrainian entities and demonstrates a modular, highly obfuscated architecture likely to be reused.
read more →

AWS CUR 2.0 Adds Athena and Redshift Integration

📣 AWS announced that AWS Cost and Usage Report 2.0 (CUR 2.0) now integrates directly with AWS Athena and AWS Redshift, enabling customers to query CUR data in Amazon S3 using standard SQL without custom warehousing. Exports are delivered in optimal formats (Parquet, GZIP) and include metadata, templates, table definitions, and loading instructions to accelerate setup. CUR 2.0 refreshes automatically update Athena and Redshift tables, and the feature is available in all commercial AWS Regions except GovCloud (US) and China Regions.
read more →

Amazon S3 Tables expand to two Asia Pacific regions

🟦 Amazon S3 Tables are now available in the Asia Pacific (Taipei) and Asia Pacific (New Zealand) AWS Regions. S3 Tables provide an object store with built-in Apache Iceberg support, enabling scalable tabular data storage and making data queryable by AWS and third-party engines. They perform continual table maintenance to optimize queries and reduce storage costs, and integrate with the Intelligent-Tiering storage class for automated cost management without operational overhead.
read more →

AWS Transform Adds Customer-Owned S3 Artifact Storage

🗂️ AWS Transform now supports customer-owned Amazon S3 buckets, letting customers control where transformation artifacts are stored and how they are secured. You can configure your own S3 bucket, optionally encrypt artifacts with your AWS KMS key, and manage access policies in your account. Migration teams can upload files directly and centralize artifacts across accounts to support regulated industries and data sovereignty requirements. This capability is available in all Regions where AWS Transform is offered.
read more →