All news with #aws tag

🔔 Amazon CloudWatch now offers Container Insights with OpenTelemetry metrics for Amazon EKS in public preview. The feature collects OTLP metrics from open source and AWS collectors, enriches each metric with up to 150 labels, and supplies curated dashboards and PromQL query support in CloudWatch Query Studio. Deployment is available via the CloudWatch Observability EKS add‑on, console, CloudFormation, CDK, or Terraform, and preview metrics are free.

⚙️ AWS Deadline Cloud now offers configurable job scheduling modes that let administrators control how workers are distributed across queued jobs. You can choose from three modes when creating or updating a queue: priority FIFO (the existing default), priority balanced, and weighted balanced. The balanced options help artists get immediate feedback by distributing capacity across concurrent jobs rather than allocating all workers to the earliest, highest-priority job. This change is available in all Regions that support Deadline Cloud.

⚡Amazon Lightsail now offers compute-optimized instance bundles with up to 72 vCPUs across seven sizes and supports both IPv6-only and dual-stack networking. These bundles are compatible with all Lightsail blueprints, including popular OS and application stacks such as WordPress, cPanel & WHM, Plesk, Drupal, Magento, MEAN, LAMP, Node.js, Ruby on Rails, Amazon Linux, Ubuntu, CentOS, Debian, AlmaLinux, and Windows. The instances provide consistent, dedicated CPU performance for CPU-intensive workloads—examples include batch processing, distributed analytics, high-performance web serving, scientific modeling, dedicated gaming servers, ad serving engines, video encoding, and CPU-bound ML inference—and are available in 15 AWS Regions.

🔁 Amazon CloudWatch now supports automatic enablement of Amazon CloudFront Standard access logs, AWS Security Hub CSPM finding logs, and Amazon Bedrock AgentCore memory and gateway logs and traces to CloudWatch Logs. Enablement rules can be applied organization-wide, to specific accounts, or scoped by resource tags to ensure consistent telemetry collection for both existing and newly created resources. A central security or operations team can create a single rule to centralize log flow across their organization. Log ingestion is billed according to CloudWatch Pricing.

🔒 AWS expanded AWS Direct Connect to provide 100 Gbps dedicated connections at the Datacom Orbit DH6 colocation near Auckland, New Zealand. Customers can now establish private, direct access to all public AWS Regions (excluding China), AWS GovCloud Regions, and AWS Local Zones from this location. This site is the second in New Zealand to offer 100 Gbps with MACsec encryption, improving throughput and secure hybrid connectivity.

🔁 Amazon WorkSpaces Applications introduces a drain mode for multi-session fleets that prevents instances from accepting new user sessions while allowing existing sessions to continue uninterrupted. Administrators can use this capability to perform maintenance, apply security patches, or scale down resources without forcibly terminating users. The change routes new connections to other available instances, improving stability and end-user experience, and is available at no additional cost in all supported AWS Regions.

📈 Amazon CloudWatch now supports native OpenTelemetry metrics in public preview, allowing customers to send metrics directly via OTLP without custom conversion logic or additional tooling. You can combine custom OTel metrics with AWS-vended metrics from over 70 services and query them using PromQL across EKS and on-premises environments with no additional agents or code changes. CloudWatch anomaly detection and a new Query Studio console enable unified dashboards and alarms that span application and infrastructure telemetry.

🗺 Amazon Location Service introduced enhanced map styling capabilities that give developers greater control over terrain visualization, traffic display, and immersive 3D presentation. The release adds three contour density levels—Low, Medium, and High (High doubles contour lines for more detailed elevation)—and a traffic congestion-only mode that filters out free-flowing traffic to surface incidents. It also delivers 3D Terrain and 3D Globe View with Atmosphere for realistic elevation and atmospheric effects, and extends full traffic visualization, Transit and Truck travel modes, and light/dark color schemes across Monochrome, Hybrid, and Satellite styles. The service is available in multiple AWS Regions.

📧 Amazon Simple Email Service Mail Manager now supports optional TLS (including STARTTLS) and certificate-based mutual TLS (mTLS) on Ingress Endpoints, plus two new rule actions: Invoke Lambda function and Bounce. These additions let organizations preserve compatibility with legacy email systems while implementing stronger authentication and custom processing workflows. The Invoke Lambda action enables direct serverless email processing and automation, and the Bounce action issues RFC-compliant SMTP responses to senders. The features are available today in all Regions offering SES Mail Manager except the Middle East (UAE and Bahrain).

🔒 AWS VPC Encryption Controls is now available in AWS GovCloud (US-East) and GovCloud (US-West). The feature lets security teams enable monitoring and enforcement of encryption in transit across existing VPCs, automatically identifying flows that permit plaintext. It transparently activates hardware-based AES-256 encryption across VPC resources (including Fargate, NLB, and ALB) and produces audit logs to help demonstrate compliance with standards such as HIPAA, PCI DSS, FedRAMP, and FIPS 140-2.

🔐 Amazon CloudFront now supports SHA-256 as a hash algorithm for creating signed URLs and signed cookies, improving collision resistance and aligning with modern cryptographic standards. To use SHA-256, include the Hash-Algorithm=SHA256 query parameter for signed URLs or the CloudFront-Hash-Algorithm=SHA256 cookie attribute for signed cookies. Existing signed artifacts that omit a hash algorithm continue to use SHA-1, preserving backwards compatibility. This capability is available in all CloudFront edge locations at no additional cost.

🔒 Amazon RDS for Oracle now supports cross-account snapshot sharing for database instances configured with additional storage volumes. Customers can create, share, and copy DB snapshots that preserve the original storage layout, including up to three attached volumes, across AWS accounts and Regions. Use cases include isolated backups for compliance and restoring snapshots in separate accounts for diagnostics, development, and testing. This capability is available today via the AWS Management Console, AWS CLI, and AWS SDKs.

🔒 Amazon Bedrock now supports structured outputs in AWS GovCloud (US) Regions. Structured outputs enables foundation models to produce consistent, schema-compliant, machine-readable responses tailored for government and regulated workloads. This reduces the need for custom validation logic, lowers operational overhead, and minimizes failed requests and retries. The capability is generally available in all commercial and GovCloud regions where Amazon Bedrock is supported.

🔁 AWS Directory Service for Microsoft Active Directory (AWS Managed Microsoft AD) now supports Multi-Region replication in AWS Opt-In regions. The automated feature deploys domain controllers across Availability Zones per region, handles inter-region networking, and replicates users, groups, Group Policy Objects, and schema to maintain a single authoritative directory. It configures an Active Directory site per region to optimize authentication performance and reduce cross-region transfer costs; availability excludes the Middle East (UAE) and Middle East (Bahrain) regions and pricing is hourly per domain controller plus data transfer.

⚡ Oracle Database@AWS (ODB@AWS) now provides consistent sub-millisecond roundtrip latency between Amazon EC2 instances and ODB@AWS databases. By automatically optimizing compute placement within ODB@AWS networks, customers can migrate latency-sensitive workloads — such as payment processing and securities trading — to AWS while using existing EC2 APIs and workflows. There is no additional charge for EC2 instances using the optimized placement; the capability is available in six Regions today, with more Regions planned.

🔔 Amazon CloudWatch now ingests AWS Security Hub CSPM findings into CloudWatch Logs, supporting both ASFF and OCSF schemas via CloudWatch Pipelines. Customers can query findings with CloudWatch Logs Insights, create metric filters for monitoring, and use Amazon S3 Tables for advanced analytics and reporting. Organization-level enablement rules allow automatic delivery to all accounts or selected groups, standardizing monitoring coverage. Findings delivery is available in all AWS commercial regions and is charged under tiered CloudWatch pricing.

🌱AWS has launched the free, standalone AWS Sustainability console to show customers estimated carbon emissions from their AWS usage without requiring billing permissions. Building on the Customer Carbon Footprint Tool, the console reports emissions by AWS Region, service, and scope using both market-based and location-based methods. It also adds customizable visualizations, fiscal-year settings, CSV exports, and API/SDK access for integration into reporting workflows.

🔍 Amazon OpenSearch Service now includes agentic AI capabilities that let engineering and support teams analyze log data through a conversational interface. The features simplify log querying, generate and refine Piped Processing Language (PPL) queries in Discover, and surface visualization insights. An investigation agent can autonomously plan and execute root cause analysis and return ranked hypotheses with transparent reasoning. Agent memory preserves context across pages and sessions to maintain conversational continuity.

🔒 AWS has made IAM Identity Center available in the AWS European Sovereign Cloud (Germany) Region, an independent cloud fully located within the EU to address evolving sovereignty requirements. The service offers centralized workforce access management, single sign-on across AWS applications, and user-aware access controls for auditing and data governance. It supports centralized management of multiple AWS accounts and is available at no additional cost.

🔒 AWS released the ISO/IEC 27001:2022 on AWS compliance guide to help organizations design and operate an Information Security Management System (ISMS) using AWS services. The guide maps selected Annex A controls and clauses 4–10 to AWS services and architectural capabilities, and clarifies customer responsibilities under the Shared Responsibility Model. It provides practical recommendations for evidence collection, documentation, automation, and audit readiness using AWS native tooling. The target audience includes cloud architects, security teams, compliance leaders, and DevOps practitioners seeking certification readiness.