All news with #aws tag

🔒 Picus Security's annual red-teaming report finds ransomware operators shifting from noisy encryption to stealthy, long-term access, favoring persistence, defense evasion and data exfiltration. The firm reports a 38% drop in encryption as attackers prioritize double-extortion and silent leaks, often routing C2 traffic through trusted services like OpenAI and AWS. Experts urge stronger identity controls, monitoring of third-party integrations, and detections tuned to persistence and exfiltration.

🌐 AWS IAM Identity Center now supports IPv6 through dual‑stack endpoints in the AWS Asia Pacific (Taipei) and AWS GovCloud (US) Regions, completing global availability wherever IAM Identity Center is offered. Clients and browsers will resolve either IPv4 or IPv6 addresses based on network and client protocol. Administrators can find the dual-stack portal URL in the IAM Identity Center console under Settings and share it with their workforce; GovCloud deployments should consult region-specific documentation.

🚀 Amazon Bedrock now offers an OpenAI-compatible Projects API within the Mantle inference engine, enabling customers to create isolated projects for separate applications, environments, or teams. Each project supports distinct IAM-based access controls and tagging to improve security boundaries and cost visibility. The feature is available for OpenAI-compatible APIs, the Responses API, and Chat Completions through Mantle. There is no additional charge beyond model inference consumption.

🔧 Amazon SageMaker HyperPod now supports API-driven Slurm configuration, enabling you to define Slurm topology, instance group to partition mappings, and FSx filesystem mounts directly in the cluster CreateCluster and UpdateCluster APIs or via the AWS Console. The update lets you specify node roles such as Controller, Login, and Compute per instance group and mount FSx for Lustre or FSx for OpenZFS filesystems. A new SlurmConfigStrategy (Managed, Overwrite, Merge) detects partition-node drift and controls whether updates are paused, overwritten, or merged to preserve manual customizations.

🔒 In November 2025, AWS completed its first surveillance audit for ISO/IEC 42001:2023 — the Artificial Intelligence Management System standard — with no findings. This follows AWS’s November 2024 announcement that several AI services, including Amazon Bedrock, Amazon Q Business, Amazon Textract, and Amazon Transcribe, were accredited under the standard. The successful no-findings outcome provides independent validation of AWS’s ongoing commitment to responsible AI practices and gives customers added assurance when building and operating AI applications on AWS.

🔒 AWS describes a multi-agent penetration testing capability in AWS Security Agent that pairs LLM-driven reasoning with specialized scanners and browser-based sign-in to automate complex assessments. The design combines baseline scanning, managed static tests, and a guided explorer that dynamically generates contextual attack tasks. A swarm of risk-focused worker agents executes tests and submits structured findings, which are then validated via deterministic checks and LLM-assisted exploit attempts and scored with CVSS to produce actionable remediation reports.

🔔 Amazon Elastic Container Service (ECS) Managed Instances now integrate with Amazon EC2 Capacity Reservations, letting you apply reserved capacity to managed EC2 compute while ECS handles infrastructure. Configure capacity providers with capacityOptionType=reserved and choose reservation preferences — reservations-only, reservations-first, or reservations-excluded — to balance predictability and cost. Available in all regions and configurable via Console, CLI, CloudFormation, or SDKs.

🔁 AWS Marketplace now supports Concurrent Agreements for SaaS and Professional Services products, enabling multiple active purchases of the same product within a single AWS account. The change removes the prior one-agreement-per-product limitation and lets different business units procure independently with separate terms and pricing. Buyers gain flexibility for mid-term expansions and repeat purchases, while sellers can close multi-unit deals immediately and avoid operational workarounds.

🔁 AWS announced general availability of dynamic dialing mode switching for Amazon Connect Outbound Campaigns, allowing administrators to change between preview and non-preview dialing modes while a campaign is running. Previously, campaigns were locked to their initial dialing mode and required stopping and restarting to change strategy. The new capability lets contact centers adapt dialing behavior in real time to improve agent productivity and campaign efficiency without interruptions. It is available at no additional cost in all supported AWS Regions.

🔒 Amazon CloudWatch Database Insights now provides lock contention diagnostics for Amazon RDS for PostgreSQL instances when operating in Advanced mode. The feature visualizes blocking and waiting sessions to highlight the dominant sessions, queries, or objects causing contention and preserves historical locking data for up to 15 months. You can enable diagnostics on PostgreSQL clusters via the RDS console, AWS APIs, or the AWS SDK. CloudWatch Database Insights is available in all public AWS Regions and uses vCPU-based pricing.

🔒 AWS Security Hub Extended is now generally available, offering a single-vendor plan that combines AWS detection services with curated partner security solutions on a pay-as-you-go or flat-rate basis. The plan consolidates procurement and billing—AWS serves as seller of record and Enterprise Support customers receive unified Level 1 support. It centralizes findings in a standard format for cross-tool visibility, reduces manual integration work, and lets organizations add or remove categories such as endpoint, identity, email, network, data, browser, cloud, AI, and security operations without long-term commitments.

🔐 Amazon Cognito now supports on-demand client secret rotation and lets you bring your own custom client secrets for app clients in user pools. You can maintain up to two active secrets per app client to enable staged rollovers and avoid application downtime during transitions. These lifecycle controls address periodic rotation and migration needs and are available in all Regions where Amazon Cognito user pools are offered; management is supported via the Console, CLI, SDKs, or CloudFormation.

🔔 Amazon CloudWatch Observability EKS add-on v5.0.0 now enables CloudWatch Application Signals (APM) by default for new installations and upgrades, removing the previous manual opt-in. The add-on automatically instruments services to collect traces, metrics, and logs, delivering an application-centric view without additional Kubernetes annotations. Users get immediate access to pre-built dashboards and enriched troubleshooting to detect latency, errors, and request traces out of the box.

🖥️ Amazon expanded availability of EC2 M8i and M8i-flex instances to US West (N. California), Europe (Paris), Asia Pacific (Hyderabad), and South America (Sao Paulo). These instances run on custom Intel Xeon 6 processors exclusive to AWS and deliver higher performance and memory bandwidth than comparable Intel-based cloud processors. AWS reports up to 15% better price-performance and 2.5x memory bandwidth versus the prior Intel-based generation, with workload-specific gains over M7i up to 20–60%. M8i-flex targets common general-purpose sizes while M8i supports larger, SAP-certified and bare-metal configurations.

🚀 Amazon Web Services announced general availability of the Amazon EC2 I8g.metal-48xl storage-optimized instances powered by AWS Graviton4. These instances pair third-generation Nitro NVMe SSDs with the AWS Nitro System to deliver up to 60% better compute and up to 65% better real-time storage performance per TB, while reducing storage I/O latency and variability. They target I/O-intensive, low-latency workloads such as transactional databases, NoSQL engines, and real-time analytics, and offer large memory and local storage configurations.

📣 Amazon Simple Notification Service (Amazon SNS) now supports sending push notifications from the AWS Europe (Spain) Region. This expansion allows customers in Spain to deliver messages to major push platforms including Amazon Device Messaging (ADM), Apple Push Notification Service (APNs), Firebase Cloud Messaging (FCM), Baidu Cloud Push, Microsoft Push Notification Service (MPNS), and Windows Push Notification Services (WNS). With this addition, SNS supports push delivery from 25 regions, enabling more localised mobile, web, and IoT notification workflows and potentially lower latency for Iberian users.

🔔 AWS has announced the developer preview of the Lambda Durable Execution SDK for Java, enabling Java 17+ developers to build resilient, multi-step serverless applications without custom progress tracking. The SDK adds automatic checkpointing, wait primitives that suspend execution for up to a year, and durable futures for callback-based flows. Paused on-demand functions are not billed for duration, and the preview includes samples and guidance to get started.

📡 AWS now publishes two CloudWatch metrics — VifConnectionStatus and VifBgpSessionState — for Outposts racks in AWS GovCloud (US‑East and US‑West) where Outposts are available. These metrics show Local Gateway (LGW) and Service Link VIF connectivity and BGP session state (VifConnectionStatus: 1=operational, 0=not ready; VifBgpSessionState: 1–6 from IDLE to ESTABLISHED). View them in the CloudWatch console to set alarms, troubleshoot connectivity, and reduce dependence on external networking tools or cross‑team coordination.

🔒 AWS Security Agent now enables customers to run penetration tests against Virtual Private Cloud (VPC) resources shared from other AWS accounts within the same organization. By using AWS Resource Access Manager (RAM), teams can securely share VPCs from sub-accounts to a central account where an Agent Space performs assessments. This capability simplifies testing across distributed, multi-account architectures and improves visibility into shared network security posture. To get started, ensure accounts are in the same AWS Organization and configure RAM before launching the agent.

🔧 AWS announced Aurora DSQL integrations for popular ORMs and migration tools: a Tortoise adapter for Python, a Flyway dialect, and Prisma CLI tools for Node.js. The Tortoise adapter supports both asyncpg and psycopg, integrates with the Aurora DSQL Connector for Python for automatic IAM token generation, and includes migration compatibility patches. Flyway's dialect automates IAM-based authentication and adapts Flyway to Aurora DSQL's distributed behaviors, while Prisma tools validate schemas and generate Aurora DSQL-compatible migrations. These integrations let developers remain in familiar frameworks while offloading IAM and compatibility concerns.