All news with #aws waf tag

🚀Amazon CloudFront's Premium flat-rate plan now offers multiple self-service monthly usage tiers ranging from 500 million to 6 billion requests and 50 TB to 600 TB. Customers can select and change their tier in the CloudFront console with instant pricing and no commitment. All Premium features — including AWS WAF, DDoS protection, bot management, Amazon Route 53 DNS, Amazon CloudWatch Logs ingestion, serverless edge compute, and Amazon S3 storage credits — are included with no overage charges.

🛡️AWS WAF now supports dynamic label interpolation, letting you forward WAF classification signals to your origin and embed contextual data in responses using a single rule. Using the ${namespace:} syntax in custom request headers, response headers, and response bodies, you can pass entire label namespaces (including AWS Managed Rules, marketplace groups, or custom labels) without separate rules. Interpolation adds synthetic labels like client IP, WAF request ID, and JA3/JA4 fingerprints, adapts headers automatically, and is available in all AWS Regions at no extra cost and with no new API fields or configuration steps.

🔍 The AWS blog announces AI Traffic Analysis dashboards for AWS WAF, adding AI-specific visibility into bot and agent activity across web ACLs. The dashboards extend WAF Bot Control detection to more than 650 named bots and provide identity, intent classification, organization breakdowns, top paths, and 14‑day temporal trends. Data is emitted to Amazon CloudWatch and is queryable via the GetTopPathStatisticsByTraffic API for custom dashboards, alerting, and automation. A reference sample demonstrates per-path monetization with CloudFront and Lambda@Edge, with usage guidance and cost warnings.

🔒 AWS Network Firewall supports expanded managed rule groups from AWS Marketplace partners, allowing rule groups to include up to 10 million domain indicators and 1 million IP addresses. Partners including Infoblox, Lumen, and ThreatSTOP are adding protections for high-risk domains, command-and-control blocking, and sanctions compliance. Managed rules from sellers like Check Point, Fortinet, Rapid7, and Trend Micro provide ready-to-deploy, continuously updated protections and are now available in additional regions.

🛡️ AWS Firewall Manager is now available in the AWS Asia Pacific (New Zealand) Region. The service centralizes policy management so cloud security administrators and site reliability engineers can protect applications while reducing the operational overhead of manually configuring and maintaining rules. With AWS Firewall Manager, customers can enforce defense-in-depth policies across AWS security services and create and manage AWS WAF security policies at scale. See the product documentation and region table for detailed availability and setup guidance.

🔒 AWS Firewall Manager is now available in the AWS Asia Pacific (New Zealand) Region. The service helps cloud security administrators and site reliability engineers protect applications while reducing the operational overhead of manual rule configuration and management. Customers can use Firewall Manager to create and maintain AWS WAF security policies and apply defense-in-depth controls across AWS security services and accounts.

🔍 AWS announced a new AWS WAF AI activity dashboard that centralizes visibility into AI-driven bot and agent traffic reaching applications. The update expands AWS WAF Bot Control detection to track more than 650 unique bots and agents and provides trend visualizations, most-active bot listings, path analysis, and request volumes by category and verification status. Administrators can act directly using Bot Control rules to allow verified crawlers while rate-limiting or blocking unverified agents. The dashboard is available in all AWS Regions and is included on flat-rate plans or provided at no extra cost for other WAF customers.

🛡️ AWS announced that AWS WAF is now available in the AWS Asia Pacific (New Zealand) Region. AWS WAF is a web application firewall that helps protect web applications from common exploits and bots by letting you block, allow, or return custom responses based on conditions such as source IP, query strings, and other request attributes. This regional expansion supports lower latency and regional data handling for New Zealand customers.

🔔 Amazon CloudWatch now supports organization-wide automatic telemetry configuration for six critical AWS services: AWS CloudTrail Management Events, AWS CloudTrail Data Events, Amazon Route 53 Resource Query Logs, Amazon EKS Control Plane logs, Network Load Balancer access logs, and AWS WAF WebACL logs. Administrators can create enablement rules that automatically apply logging for both existing and new resources using AWS Config service-linked recorders. This simplifies enforcement of consistent monitoring and audit practices at scale while adhering to CloudWatch and AWS Config billing models.

🛡️This post explains how to customize AWS WAF Anti-DDoS AMR responses to Layer 7 DDoS events using labels and additional rules. It summarizes the AMR’s baseline‑and‑anomaly approach, default mitigations (a mix of Block and JavaScript Challenge), and the importance of excluding non‑challengeable paths. Three practical examples show geo‑based blocking, tightened rate limits, and adaptive capacity‑aware defenses, with JSON/IaC configuration guidance.

🔒 AWS has launched Network Firewall Proxy in public preview, providing centralized controls to block data exfiltration and malware injection across application traffic. In explicit proxy mode you can set up filters in just a few clicks to control outbound requests and the responses your applications receive, protect against domain or SNI spoofing, and restrict access to trusted domains or IPs. The service supports TLS inspection and granular HTTP header filtering, and emits detailed logs to Amazon S3 and AWS CloudWatch. Preview access is free in US East (Ohio).

🔐 AWS WAF now supports Web Bot Auth, providing cryptographic verification for automated agents and crawlers that access web applications. The capability uses signed HTTP messages and a public key directory defined by active IETF drafts to authenticate bot identities. AWS WAF will automatically allow verified WBA bots by default, refining previous behavior where the AI category blocked unverified bots. This change helps operators distinguish trusted automated traffic from potentially harmful automation.

🔒 AWS Network Firewall now supports managed rule groups from AWS Partners, enabling customers to deploy partner-maintained, automatically updated security rules directly into firewall policies. You can subscribe and deploy these pre-configured rule groups via the AWS Network Firewall console or through AWS Marketplace, with consolidated billing and potential long-term pricing benefits. Available sellers include Check Point, Fortinet, Infoblox, Lumen, Rapid7, ThreatSTOP, and Trend Micro in all AWS commercial regions where the services are offered.

🔒 AWS announces that AWS Firewall Manager is now available in the AWS Asia Pacific (Taipei) Region. The service enables cloud security administrators and site reliability engineers to centrally create, deploy, and maintain defense-in-depth security policies across accounts, including AWS WAF protections and managed rule sets. By centralizing policy management, teams can reduce manual configuration, ensure consistent enforcement, and lower operational overhead. Customers should consult the documentation and region table for full feature and pricing details.

🔐 This post explains how to design defense-in-depth network architectures for generative AI workloads using AWS services. It outlines common external threats — including layer 4 and layer 7 DDoS, web request floods, application-specific exploits, and malicious bots — and maps mitigations to AWS capabilities. The guidance recommends private connectivity via Amazon Bedrock and AWS PrivateLink, edge protections with AWS WAF and AWS Shield, subnet-level controls using AWS Network Firewall, and continuous detection and response with GuardDuty, Inspector, and CloudWatch.

🔒 AWS WAF's Targeted Bot Control, Fraud, and DDoS Prevention Rule Group are now available in Asia Pacific (Taipei), Asia Pacific (Bangkok), and Mexico (Central). These managed rule groups deliver detection and mitigations for sophisticated bots, application-layer DDoS, and account-takeover attacks at the web edge. Customers can deploy them to improve application resilience, reduce fraudulent activity, and limit resource consumption during attack campaigns.

🔒 AWS Network Firewall now offers SNI session holding to strengthen TLS inspection by validating the TLS SNI before initiating an outbound TCP connection. When enabled, the firewall holds TCP/TLS establishment until it receives the ClientHello SNI and evaluates it against Suricata-based TLS inspection rules, preventing any contact with disallowed endpoints. Administrators can enable this option in a TLS inspection configuration via the AWS Management Console, AWS CLI, or AWS SDK; it’s available in Regions including GovCloud and China and is billed as part of TLS advanced inspection.

🛡️ AWS WAF is now available in the AWS Asia Pacific (Taipei) Region, allowing customers to deploy web application firewall protections closer to their users. The service helps protect web applications from common exploits and automated bots that can affect availability, security, or resource consumption. Note that AWS WAF Bot Control with targeted inspection and the Anti-DDoS managed rule group are not currently available in this region.

📣 AWS WAF now includes a free allocation of Vended Logs ingestion to CloudWatch: 500 MB for every 1 million WAF requests processed, provided at no additional cost. The allocation is applied automatically across WAF vended logs to CloudWatch, S3, and Firehose and is reconciled on your AWS bill at month end. Usage beyond the included allowance is charged at standard AWS WAF Vended Logs CloudWatch rates. This change helps reduce logging costs while preserving comprehensive security visibility and analytics.