All news with #aws tag

Amazon EC2 U7i-6TB High Memory Instances in London

🚀 AWS has launched the U7i-6tb High Memory instance in the Europe (London) Region, offering 6TB of DDR5 memory and 448 vCPUs for large in-memory workloads. Powered by custom fourth-generation Intel Xeon Scalable (Sapphire Rapids) processors, these 7th-generation instances support up to 100 Gbps for EBS and network and include ENA Express for lower latency. They are aimed at mission-critical in-memory databases such as SAP HANA, Oracle, and SQL Server, enabling higher transaction throughput and faster data loading and backups.

Amazon ECS Adds CloudTrail Data Events for Agent API

🔍 Amazon ECS now emits AWS CloudTrail data events for ECS Agent API activities, giving teams detailed visibility into container instance operations. Customers can opt in to the new data event resource type AWS::ECS::ContainerInstance to capture actions such as ecs:Poll, ecs:StartTelemetrySession, and ecs:PutSystemLogEvents. The capability is available for ECS on EC2 across all AWS Regions and for ECS Managed Instances in select regions. Standard CloudTrail data event charges apply.

Major AWS Outage Disrupts Amazon, Prime Video, Fortnite

⚠️ AWS experienced a widespread outage affecting multiple services in the US-EAST-1 region, causing elevated error rates and latencies across key APIs. The disruption, tied to a DNS resolution issue for the DynamoDB API endpoint and subsequent network load balancer problems, interrupted login and content services for platforms such as Amazon, Prime Video, Fortnite, Canva and Perplexity. AWS reported mitigation steps and later declared services restored after extended recovery efforts.

AWS US-EAST-1 Outage Disrupts Major Sites and Apps

🚨 An AWS outage in the US-EAST-1 region caused widespread disruptions across multiple consumer services, producing elevated error rates and higher latencies. Major platforms including Amazon, PrimeVideo, Fortnite, Perplexity, and Canva reported failures ranging from login and chat outages to impaired editing functionality. AWS acknowledged the incident on its Health page and said engineers were investigating and mitigating the issue. After roughly 45 minutes some services began recovering, though many users still experienced intermittent problems.

AWS Parallel Computing Service Adds Support for Slurm v25.05

🚀 AWS Parallel Computing Service (PCS) now supports Slurm v25.05, enabling PCS clusters to run the latest Slurm capabilities. The release introduces enhanced multi-cluster sackd configuration so login nodes can manage multiple clusters without requiring sackd reconfiguration or restarts, allowing administrators to preconfigure user access across clusters. It also implements improved requeue behavior that automatically retries failed instance launches during capacity shortages, increasing scheduling resilience and overall cluster reliability.

Securing Amazon Bedrock API Keys: Best Practices Guidance

🔐 AWS details practical guidance for implementing and managing Amazon Bedrock API keys, the service-specific credentials that provide bearer-token access to Bedrock. It recommends STS temporary credentials when possible and defines two API key types: short-term (client-generated, auto-expiring) and long-term (IAM-user associated). Protection advice includes using SCPs, iam and bedrock condition keys, and storing long-term keys in secure vaults. Detection and monitoring use CloudTrail, EventBridge rules, and an AWS Config rule, and response steps show CLI commands to deactivate and delete compromised keys.

CloudWatch Database Insights Adds Tag-Based Access Control

🔐 Amazon CloudWatch Database Insights now supports tag-based access control for database-level and per-query metrics powered by RDS Performance Insights. Instance tags defined on RDS and Aurora are now automatically evaluated to authorize Performance Insights metrics, enabling IAM policies to use tag-based access conditions across logical groups of databases. This reduces manual, resource-level permission management and improves governance and security consistency. The feature is available in all AWS regions where Database Insights is offered.

Amazon EC2 Capacity Manager: Centralized Capacity View

📊 Amazon today announced general availability of Amazon EC2 Capacity Manager, a console and API capability that centralizes monitoring, analysis, and management of EC2 capacity across accounts and Regions. The tool provides dashboards and drilldowns for On-Demand, Spot, and Capacity Reservations, historical trends, optimization recommendations, and exportable data for integration. Available in all commercial AWS Regions at no additional cost.

OpenSearch Service Adds Graviton4 EC2 Instance Support

🚀 Amazon OpenSearch Service now supports Graviton4-based EC2 instance families — compute-optimized C8g, general-purpose M8g, and memory-optimized R8g/R8gd — across multiple regions. Graviton4 processors deliver up to 30% better performance compared with Graviton3 and are supported on all OpenSearch versions as well as Elasticsearch 7.9 and 7.10. The change is intended to improve price-performance for compute-, general-, and memory-intensive search and analytics workloads.

Amazon EC2 C8g Instances Expand to More AWS Regions

🚀 Amazon has made EC2 C8g instances available in AWS Europe (Milan) and AWS Asia Pacific (Hong Kong, Osaka, Melbourne). These Graviton4-powered instances deliver up to 30% better compute performance than Graviton3-based instances and are optimized for compute-intensive workloads such as HPC, batch processing, gaming, video encoding, distributed analytics, CPU-based ML inference, and ad serving. Built on the AWS Nitro System, C8g instances provide larger instance sizes (including bare metal), up to 50 Gbps enhanced networking, and up to 40 Gbps EBS bandwidth to improve both performance and security.

AWS Bedrock Guardrails: Customer-Managed KMS Keys Support

🔐 AWS now supports customer-managed AWS Key Management Service (KMS) keys for Amazon Bedrock Guardrails Automated Reasoning checks. Customers can encrypt policy content and test artifacts with their own keys instead of the default key, retaining control over lifecycle and access. This capability helps regulated organizations meet compliance requirements and is available in all Bedrock Guardrails regions. Refer to AWS documentation and the Bedrock console to get started.

AWS Systems Manager: Windows Security Update Alerts

🛡️ AWS Systems Manager Patch Manager now notifies when Windows security updates are available but not approved by a customer's patch baseline. The feature adds a new patch state, AvailableSecurityUpdate, and by default surfaces these instances as Non-Compliant, helping administrators spot missing security patches even when using long ApprovalDelay windows. Organizations can preserve existing reporting by configuring patch baseline behavior. The capability is available in all Regions and incurs no additional charges; administrators can enable it from the Patch Manager console or documentation.

AWS Marketplace Adds Purchase Order Line Number Support

🧾 AWS Marketplace now supports purchase order (PO) line numbers for Marketplace transactions, allowing customers to associate charges with a specific PO line during procurement and for future charges post-procurement in the AWS Marketplace console. Invoices show the related purchase order and PO line number in the Billing and Cost Management console, helping teams accurately match invoices to POs. This capability is available today in all supported AWS Regions.

Amazon Timestream Now Adds Managed InfluxDB 3 Support

🚀 Amazon Timestream now offers managed support for InfluxDB 3, enabling developers and DevOps teams to run InfluxDB 3 databases as a managed service. InfluxDB 3 introduces a new architecture built on Apache Arrow for in-memory processing, Apache DataFusion for query execution, and columnar Parquet storage with persistence to Amazon S3 to improve query performance and scale for high-cardinality workloads. The service is available in two editions—Core (open source, near real-time) and Enterprise (multi-node, HA, compaction for long-term storage)—with Enterprise supporting initial multi-node clusters up to three nodes. Available in all Regions where Timestream for InfluxDB is offered; see the console, documentation, and pricing to get started.

AWS Location Service Introduces Advanced Map Styling

🗺️ Amazon Web Services announced enhanced map styling for Amazon Location Service, enabling developers to customize maps with terrain visualization, contour lines, real-time traffic, and transportation-specific routing. Users can adjust parameters such as terrain, contour-density, traffic, and travel-mode through the GetStyleDescriptor API. These options support use cases including outdoor navigation, logistics planning, and traffic management while maintaining reliable performance.

LinkPro Rootkit Uses eBPF and Magic TCP Packets to Hide

🔒 An AWS-hosted compromise revealed a new GNU/Linux rootkit dubbed LinkPro, discovered by Synacktiv. Attackers leveraged an exposed Jenkins server vulnerable to CVE-2024-23897 and deployed a malicious Docker image (kvlnt/vv) to Kubernetes clusters, delivering a VPN/proxy (vnt), a Rust downloader (vGet) and vShell backdoors. LinkPro relies on two eBPF modules—Hide and Knock—to conceal processes and activate via a magic TCP packet, with a user-space fallback via /etc/ld.so.preload when kernel support is missing.

Amazon EC2 CPU Options Optimize License-Included Windows

🔧 Amazon EC2 now allows customers to modify CPU options on Windows Server and SQL Server license-included instances to reduce vCPU-based licensing costs. You can customize the number of vCPUs and disable hyperthreading to achieve higher memory-to-vCPU ratios while preserving instance memory and IOPS. This enhancement targets database workloads that need high memory and I/O but lower vCPU counts. See the Amazon EC2 User Guide and AWS blog post for implementation details and best practices.

Amazon EC2 C8gn Instances Expand to Additional Regions

🚀 Amazon EC2 C8gn instances, powered by AWS Graviton4 processors, are now available in Asia Pacific (Malaysia, Sydney, Thailand), expanding AWS compute availability. C8gn offers up to 30% better compute versus Graviton3-based C7gn, features 6th-generation Nitro Cards, and delivers up to 600 Gbps network throughput. Instances scale to 48xlarge (up to 384 GiB) and selected large sizes support EFA for lower latency and improved cluster performance, optimizing cost for network-intensive workloads.

Amazon EC2: Optimize CPU for Windows license instances

🔧 Amazon EC2 now lets customers customize CPU options on Windows Server and SQL Server license-included instances, including changing vCPU counts and disabling hyperthreading. This capability targets workloads that need high memory and IOPS but fewer logical CPUs, enabling lower vCPU-based licensing costs while preserving instance memory and I/O performance. AWS highlights an r7i.8xlarge example where turning off hyperthreading reduces 32 vCPUs to 16, cutting licensing expenses by roughly 50%. The feature is available in all commercial AWS Regions and AWS GovCloud (US).

Amazon DocumentDB Adds IPv6 Dual-Stack Support for AWS

🌐 Amazon DocumentDB now supports IPv6 addressing for new and existing clusters, enabling dual-stack (IPv4/IPv6) deployments within VPCs. Customers can enable IPv6 with a few clicks in the AWS Management Console or programmatically via the AWS CLI to reduce address overlap and simplify networking. The change helps teams standardize applications on IPv6 and is generally available on versions 4.0 and 5.0 in supported Regions. Amazon DocumentDB remains a fully managed, native JSON database designed for scale and operational simplicity.