All news with #aws tag

Amazon Polly adds five voices and three Asia Pacific regions

🎧 Amazon Polly now offers five new Generative TTS voices—Austrian German (Hannah), Irish English (Niamh), Brazilian Portuguese (Camila), Belgian Dutch (Lisa), and Korean (Seoyeon)—bringing the Generative engine to thirty-one voices across twenty locales. The Generative engine is generally available in three new Asia Pacific regions: Asia Pacific (Seoul), Asia Pacific (Singapore), and Asia Pacific (Tokyo), and all Generative voices are now available in US East (N. Virginia), Europe (Frankfurt), and US West (Oregon). These updates expand Amazon Polly's managed text-to-speech capabilities for conversational AI and speech content creation.

CloudFormation introduces drift-aware change sets for IaC

🔁 AWS CloudFormation now offers drift-aware change sets to detect and reconcile configuration drift by comparing a new template, the last-deployed template, and the live infrastructure state. The feature lets you preview deployment impacts on drifted resources, avoid unintended overwrites, and revert out-of-band changes. Create a change set in the console as “Drift-aware” or call CreateChangeSet with --deployment-mode REVERT_DRIFT. Available in Regions where CloudFormation is offered.

Active Threat Defense Now Default in AWS Network Firewall

🔒 Starting today, AWS Network Firewall enables active threat defense by default in alert mode when you create new firewall policies in the AWS Management Console. The feature provides automated, intelligence-driven visibility into ongoing threat activities and the indicator groups, types, and names you are protected against. You can switch to block mode to automatically prevent suspicious traffic or disable the feature entirely. AWS verifies threat indicators to reduce false positives and the capability is available in all Regions, including AWS GovCloud (US) and China.

AWS Lambda Adds Python 3.14 Managed Runtime Support

🔔 AWS Lambda now supports Python 3.14 for both managed runtimes and as a container base image. AWS will automatically apply updates to the managed runtime and base image as they become available, reducing maintenance overhead. The runtime is available in all Regions, including AWS GovCloud (US) and China Regions, and is supported for Lambda@Edge in applicable Regions. Developers can deploy using the Lambda console, AWS CLI, AWS SAM, AWS CDK, and CloudFormation, and Powertools for AWS Lambda (Python) also supports Python 3.14.

AWS Backup releases low-cost warm storage for S3 backups

🚀 AWS Backup introduces a low-cost warm storage tier for Amazon S3 backups that can cut storage costs by up to 30%. After S3 backup data resides in a vault for 60 days (configurable to a longer period), you can automatically move it to the new tier while preserving the same performance and features, including ransomware protection, recovery, and auditing. Automatic tiering can be enabled at the account, vault, or bucket level and is available in all Regions where AWS Backup for S3 is offered; a one-time transition fee applies.

Amazon FSx for Lustre: Up to 5× Faster Directory Listing

🚀 Amazon FSx for Lustre now delivers up to 5× faster directory listing performance, reducing the time it takes to run ls and inspect file system contents. The improvement benefits interactive use cases such as home directories and source code repositories commonly used by ML researchers, data scientists, and developers. These gains are provided via the Lustre 2.15 client in all FSx regions; upgrade to 2.15 and apply the recommended client tunings to realize the speedups.

CloudFormation adds pre-deploy validation and operation IDs

🔎 AWS CloudFormation now validates change sets for three common template errors—invalid property syntax, resource name conflicts with existing account resources, and S3 bucket emptiness constraints on delete—before provisioning begins. If validation fails, the change set status is marked 'FAILED' and includes detailed failure messages and property paths to pinpoint issues. Runtime failures can still occur during execution, so CloudFormation also groups stack events by a unique operation ID that you can view in the Console or via the describe-operation API to filter and diagnose failures quickly. Together these capabilities are intended to shorten deployment cycles and cut troubleshooting time from minutes to seconds.

Amazon RDS Supports MariaDB 10.6.24, 10.11.15, 11.4.9

🔔 Amazon RDS for MariaDB now supports community minor versions 10.6.24, 10.11.15, and 11.4.9. Customers are recommended to upgrade to these latest minor releases to address known security vulnerabilities and gain bug fixes, performance improvements, and new community features. You can enable automatic minor version upgrades or use Amazon RDS Managed Blue/Green deployments to apply updates during scheduled maintenance windows. See the Amazon RDS User Guide for upgrade and deployment details.

Amazon MSK Replicator expands to Hyderabad and Malaysia

🔁 Amazon Web Services has expanded MSK Replicator to the Asia Pacific (Hyderabad) and Asia Pacific (Malaysia) Regions, enabling customers to replicate streaming data between Amazon MSK clusters. MSK Replicator automates asynchronous replication and preserves Kafka metadata such as topic configurations, ACLs, and consumer offsets, while automatically scaling underlying resources. The feature simplifies failover and regional resilience and is available from the MSK console or CLI.

AWS Builder Center Adds Searchable Workshops Catalog

📚 AWS Builder Center now hosts the Workshops Catalog, offering step-by-step, expert-authored tutorials that guide users through deploying and using AWS services in their own accounts. The catalog includes hundreds of workshops across categories like Machine Learning, Security, and Serverless, with filters for service, complexity (100–400), and duration. Content is localized to the Builder Center language preference and accessible with a free Builder ID for hands-on learning.

AWS launches Supplementary Packages for Amazon Linux

📦 AWS announced the general availability of Supplementary Packages for Amazon Linux (SPAL), a curated repository offering thousands of pre-built EPEL9-compatible packages for Amazon Linux 2023 (AL2023). SPAL reduces the need to compile software from source, accelerating deployments and lowering operational overhead for developers, system administrators, and DevOps teams. Packages are derived from community EPEL9 sources with AWS applying security patches as they become available upstream. SPAL is available across all AWS Commercial Regions, including GovCloud and China.

Amazon Redshift JIT ANALYZE for Apache Iceberg tables

📈 Amazon Redshift now supports Just‑In‑Time (JIT) ANALYZE for Apache Iceberg tables, automatically collecting table‑ and column‑level statistics during query execution. The feature uses intelligent heuristics and lightweight sketch data structures to determine when runtime statistics will improve optimizer decisions and to build high‑quality statistics on the fly. JIT ANALYZE is generally available in all AWS regions with Redshift and requires no configuration changes to begin improving query plans and performance.

Amazon Redshift Adds SUPER Type for Case-Insensitive DBs

🧩 Amazon Redshift now supports the SUPER data type in databases configured with case-insensitive collation, enabling analytics on semi-structured and nested data alongside structured SQL types. Using PartiQL, users can query JSON and mixed data without additional normalization. The COLLATE function lets you explicitly control case sensitivity for SUPER columns. This capability is available in all AWS Regions, including AWS GovCloud (US).

AWS offers flat-rate CloudFront plans with built-in security

🔒 AWS is introducing flat-rate pricing plans for CloudFront that bundle global CDN delivery with built-in security (WAF, DDoS protection), Route 53 DNS, CloudWatch Logs ingestion, serverless edge compute, and monthly S3 storage credits. Plans eliminate overage charges so traffic spikes or attacks won’t trigger surprise fees. Tiers include Free, Pro ($15), Business ($200) and Premium ($1,000), and pay-as-you-go remains an option.

AWS launches Storage-Optimized EC2 I7i instances in regions

🚀 AWS has made high performance, storage-optimized Amazon EC2 I7i instances available in Asia Pacific (Melbourne, Mumbai, Osaka) and Middle East (UAE) regions. Powered by 5th‑generation Intel Xeon Scalable processors and 3rd‑generation AWS Nitro SSDs, I7i delivers up to 23% better compute performance and more than 10% better price performance versus prior I4i instances. I7i offers up to 45 TB of NVMe storage with significant reductions in storage I/O latency and variability, supports torn-write prevention up to 16 KB blocks, and is offered in eleven sizes including bare metal, with up to 100 Gbps network and 60 Gbps EBS bandwidth.

Amazon RDS for Oracle: October 2025 RU and Spatial Fixes

🔔 Amazon RDS for Oracle now supports the Oracle October 2025 Release Update (RU) for 19c and 21c, and the corresponding Spatial Patch Bundle for 19c. AWS recommends upgrading because the RU includes six new security patches for Oracle database products, and the Spatial Patch Bundle provides important fixes and performance improvements for Oracle Spatial and Graph. You can apply the RU from the Amazon RDS Management Console or programmatically via the AWS SDK or CLI, and enable Automatic Minor Version Upgrade to install updates during your maintenance window. To deploy the Spatial Patch Bundle, select the 'Spatial Patch Bundle Engine Versions' checkbox when creating new instances or upgrade existing instances to engine version '19.0.0.0.ru-2025-10.spb-1.r1'.

AWS Adds ML-DSA Post-Quantum Code Signing to Private CA

🔐 AWS announced support for post-quantum ML-DSA code signing in AWS Private CA, integrated with AWS KMS. The integration lets customers create ML-DSA X.509 certificate chains and generate KMS-held ML-DSA key pairs to sign binaries, enabling quantum-resistant code-signing, device authentication, and private-PKI workflows such as mTLS or IKEv2/IPsec. A provided Java Runner demonstrates CA creation, CSR issuance, CMS detached signing with SHAKE256, and signature verification against customer-managed roots.

Route 53 Adds Protection Against Dictionary DGA Attacks

🛡️ Amazon Web Services has added Dictionary-based DGA detection to Route 53 Resolver DNS Firewall Advanced, enabling real-time monitoring and blocking of domain queries that use word-based DGA techniques designed to mimic legitimate names. Administrators can create DNS Firewall Advanced rule(s) targeting Dictionary DGA and add them to rule groups to enforce protections on VPCs directly or through AWS Firewall Manager, RAM, CloudFormation, or Route 53 Profiles. The capability is available in all AWS Regions, including AWS GovCloud (US). See the Route 53 documentation for setup and pricing details.

AWS Expands Amazon WorkSpaces Applications Regions

🌍 Amazon Web Services has added Europe (Milan), Europe (Spain), Asia Pacific (Malaysia), and Israel (Tel Aviv) to the regional footprint for Amazon WorkSpaces Applications. The fully managed, secure application streaming service lets organizations stream desktops and apps to users without local installs while AWS manages hosting, scaling, and on‑demand access. Deploying applications closer to end users reduces latency and improves responsiveness. Administrators can enable the service from the WorkSpaces Applications console; pricing follows a pay‑as‑you‑go model.

WorkSpaces Applications adds 100+ instance types and storage

🚀 Amazon WorkSpaces Applications now offers expanded compute and storage flexibility, adding 100+ instance types across general purpose, compute-optimized, memory-optimized, and accelerated families. Customers can configure storage volumes from 200GB to 500GB and import custom EC2 AMIs, including Windows Server 2022, for image creation and customization. These enhancements are generally available in all supported AWS Regions and follow the standard pay-as-you-go pricing for the service.