< ciso
brief />
Tag Banner

All news with #aws tag

2299 articles · page 26 of 115

Amazon DocumentDB Now Available in Canada West (Calgary)

🚀 Amazon DocumentDB (with MongoDB compatibility) is now available in the Canada West (Calgary) region. This fully managed, native JSON database delivers automatic storage scaling up to 128TiB, support for up to 15 low‑latency read replicas, and native integrations with AWS services such as AWS DMS, Amazon CloudWatch, AWS CloudTrail, AWS Lambda, and AWS Backup. You can create clusters via the AWS Management Console, CLI, or SDK to support mission‑critical document workloads at scale.
read more →

CloudFront adds cache-tag invalidation for precise purges

🚀 Amazon CloudFront now supports invalidation by cache tag, letting teams remove groups of related cached objects at edge locations with a single request. Developers add a configurable response header with comma-separated tag values and can assign multiple tags per object for precise control. This reduces reliance on URL lists or broad wildcards and helps preserve cache hit ratios while ensuring fresh content quickly.
read more →

AWS SageMaker JumpStart Adds Google DeepMind Gemma 4

🤖 AWS has added Google DeepMind's instruction‑tuned Gemma 4 E4B, Gemma 4 26B‑A4B, and Gemma 4 31B to SageMaker JumpStart, making multimodal foundation models directly accessible to AWS customers. The models offer configurable step‑by‑step reasoning, interleaved text and image inputs, video and image understanding, native function calling, and multilingual support across 140+ languages. Gemma 4 E4B also supports audio input for ASR and speech‑to‑translated‑text workflows. Customers can deploy these models via SageMaker Studio or the SageMaker Python SDK for rapid experimentation and production.
read more →

New Multilingual and Table Models in SageMaker JumpStart

🆕 Amazon SageMaker JumpStart now includes paraphrase-multilingual-MiniLM-L12-v2, Microsoft Table Transformer Detection, and Bielik-11B-v3.0-Instruct. The MiniLM model maps sentences to 384-dimensional dense vectors across 50+ languages for cross-lingual semantic search, multilingual clustering, and sentence similarity scoring. The Microsoft Table Transformer is a DETR-based detector trained on PubTables-1M to locate tables in PDFs and scanned images for document digitization. Bielik-11B offers an 11B-parameter multilingual generative model focused on Polish and 32 European languages for dialogue, STEM reasoning, and enterprise NLP.
read more →

CloudWatch Agent Visual Editor Now in EC2 Console—Simplified

🔧 Amazon CloudWatch now provides a visual configuration editor for the CloudWatch agent directly in the Amazon EC2 console, eliminating the need to hand-edit JSON. You can graphically build agent configurations, select metrics, log sources, and deployment targets, then deploy with a single click. From the EC2 console you can install the agent on one or more instances, create tag-based policies for automated fleet-wide management, and view agent status and health from each instance detail page. The feature is available in all AWS Commercial Regions at no additional cost; standard CloudWatch pricing applies for collected telemetry.
read more →

Amazon Bedrock Adds OpenAI GPT OSS and NVIDIA Nemotron

🚀 Amazon Bedrock now includes OpenAI GPT OSS (120B and 20B) and NVIDIA Nemotron models (Nano 9B v2, Nano 12B v2, Nano 30B, Super 120B), enabling developers to access open-weight foundation models through a single API. The integration is powered by Mantle, a distributed inference engine that provides serverless, high-performance inference, unified capacity pools, automated quota management, and OpenAI API compatibility. These models are available on AWS GovCloud (US) for compliant, enterprise-grade deployments.
read more →

Amazon QuickSight adds custom sort for filter controls

📊 Amazon QuickSight now supports custom sort for filter controls, letting authors control how dropdown and list values are ordered instead of relying on alphabetical sorting. Custom sort applies to dropdown and list controls in single- and multi-select modes and supports ascending, descending, or fully custom orders for manually entered values. For dataset-backed controls authors can sort by the bound column or by another field using aggregations like Sum, Average, Count, Min, and Max, enabling business-driven ordering such as priority levels or revenue-ranked categories.
read more →

AWS Transfer Family Terraform Module Adds Okta and Entra

🔧 AWS updated the Transfer Family Terraform module to include end-to-end examples demonstrating integration with Okta and Microsoft Entra ID as custom identity providers. Built on the open-source Custom IdP solution and example repositories, the module automates deployment of Transfer Family endpoints while leveraging existing identity infrastructure. Included security controls—MFA, audit logging, and per-user IP allowlisting—help organizations meet operational and compliance requirements; consult the Terraform Registry and the Transfer Family Custom IdP user guide for implementation details and regional availability.
read more →

AWS Leverages Nitro, Crypto, and S3 Lessons for AI/Quantum

🔒AWS says long-standing infrastructure and cryptographic choices position it to address emerging AI and quantum threats. The company highlights the Nitro hardware platform — enabled by a 2015 semiconductor acquisition and deployed from 2017 — to provide strong isolation, confidential compute, and a 'zero humans' maintenance model. By favoring symmetric cryptography in KMS (launched 2013) and adding S3 controls like an 'active defense' that returns 'Bucket not found', AWS argues most customer data will not require immediate mass re-encryption while it pursues public-certificate post-quantum authentication by 2028–2029.
read more →

Amazon RDS for Db2 Now in AWS GovCloud (US-East/West)

🚀 Amazon RDS for Db2 is now available in the AWS GovCloud (US‑East, US‑West) Regions, enabling government and regulated customers to deploy Db2 databases in the cloud quickly. The managed service automates configuration for performance and supports Multi‑AZ synchronous replication for high availability. Customers may use Bring Your Own License (BYOL) in Standard and Advanced editions and could be eligible for the Database Savings Plan; consult the documentation and pricing for details.
read more →

Amazon EMR 7.13 adds Python 3.11 and component updates

🐍 Amazon EMR 7.13 is now generally available and ships with Python 3.11 as the default runtime for Apache Spark. The release also includes patch upgrades for Apache HBase (2.6.3), Apache Hadoop (3.4.2), Apache Phoenix (5.3.0) and the AWS SDK (v2.41.11). EMR 7.13 is available in all AWS regions; administrators should validate application compatibility and dependency packaging before rolling out clusters.
read more →

Amazon OpenSearch Adds JWKS URL Support for JWT Auth

🔐 Amazon OpenSearch Service now supports configuring a JSON Web Key Set (JWKS) URL for JWT authentication. With a JWKS URL configured, OpenSearch domains automatically fetch and validate public keys from an identity provider’s JWKS endpoint, removing the need to manually manage static keys when providers rotate signing keys. The feature includes built-in security validation checks and clearer error messaging, requires OpenSearch version 3.3 or later, and can be configured via the console, AWS CLI, or the CreateDomain and UpdateDomainConfig APIs.
read more →

Amazon Bedrock AgentCore Runtime Adds Node.js Support

🚀 Amazon Bedrock AgentCore Runtime now supports Node.js as a managed language runtime for direct code deployment, joining existing Python support. Developers can package Node.js apps or compiled TypeScript projects and their dependencies into a .zip, upload to Amazon S3, and create an agent runtime without building container images. Node.js agents gain session isolation, built-in SigV4 and OAuth 2.0 authentication, bidirectional streaming, managed session storage, and observability via Amazon CloudWatch and the AWS Distro for OpenTelemetry Node.js auto-instrumentation.
read more →

March 2026 TTC Update: New Cloud Persistence and Risk

🔒 The AWS Customer Incident Response Team (AWS CIRT) released the March 2026 update to the Threat Technique Catalog for AWS, adding three new entries that address identity abuse, persistence, infrastructure destruction, and privilege escalation. The update highlights concrete, real-world techniques — Cognito refresh token abuse, AMI deregistration, and misuse of UpdateAssumeRolePolicy — that let attackers hide in legitimate operations. Each entry includes detection guidance and straightforward mitigations you can apply today, such as enabling refresh token rotation, protecting AMIs with Recycle Bin retention rules, and monitoring trust-policy changes.
read more →

AWS Glue 5.1 Available in GovCloud and Commercial Regions

🚀 AWS Glue 5.1 is now generally available across commercial and AWS GovCloud (US) Regions, bringing updated runtimes, open-table-format support, and enhanced security controls. This release upgrades core engines to Apache Spark 3.5.6, Python 3.11, and Scala 2.12.18, and refreshes support for Apache Hudi 1.0.2, Apache Iceberg 1.10.0, and Delta Lake 3.3.2. It also adds Apache Iceberg format v3.0 features and extends AWS Lake Formation fine-grained access control to include write DML and DDL for Spark DataFrames and Spark SQL, plus full-table access control for Hudi and Delta tables.
read more →

Amazon GameLift Streams Adds Proton 10 Runtime Support

🎮 Amazon GameLift Streams now supports Proton 10, an updated Proton compatibility layer for running Windows games on Linux-based stream classes. Proton 10 expands support to newer titles including modern DirectX 12 games and updates graphics translation layers (VKD3D/DXVK) for improved rendering and performance. The release also addresses Media Foundation video playback issues such as black screens and color bars and is available at no additional cost.
read more →

AWS Cost Optimization Hub Adds One-Click CSV Download

📥 AWS Cost Optimization Hub now offers a one-click CSV download in the console, allowing users to export cost optimization recommendations directly to their local machine. Exports respect current filters, sorting, and grouping and begin immediately for offline analysis or stakeholder sharing. This complements existing automated Data Export to Amazon S3 and is available in all supported regions.
read more →

Amazon WorkSpaces Personal: Simplified PCoIP to DCV Migration

⚙️ Administrators can now migrate Amazon WorkSpaces Personal from PCoIP to Amazon DCV using a guided, single‑click console action in addition to existing CLI and API methods. WorkSpaces take an automatic checkpoint snapshot before migration to enable rollback and protect against data loss, and session provisioning is blocked during the process with clear end‑user messaging. By moving to DCV, customers gain broader OS support—including Windows 11 and Windows Server 2025—along with enhanced security options such as certificate‑based authentication and WebAuthN, and improved streaming performance.
read more →

Access Control with IAM Identity Center Session Tags

🔐 AWS IAM Identity Center centralizes workforce access and can consume session tags from external SAML providers such as Microsoft Entra ID to enable fine‑grained, attribute‑based access control (ABAC) across multiple AWS accounts. By mapping directory group attributes to session tags, administrators can dynamically apply permissions and runtime configuration—examples include selecting an AWS Glue usage profile or configuring Systems Manager Session Manager run‑as behavior. The post walks through SAML and SCIM setup, creating a custom permission set, mapping claims (for example AccessControl:glue:UsageProfile), testing job creation in the Glue console, and validating session tags via CloudTrail AssumeRoleWithSAML events.
read more →

Amazon Connect Talent: AI-Powered Hiring in Preview

🤖 Amazon Connect Talent is now available in Preview as an AI-powered hiring solution that automates structured voice interviews, administers science-backed assessments, and generates consistent candidate scores and transcripts. Candidates can interview 24/7 from any device, while recruiters access a central dashboard, detailed evaluations, and ATS integrations to accelerate and standardize hiring decisions.
read more →