All news with #aws tag

🔍 Amazon says a Russian-speaking threat actor used commercial AI services to help breach over 600 FortiGate firewalls across 55 countries during a five-week campaign in early 2026. The attacker did not rely on zero-day exploits but instead scanned internet-facing management ports and used brute-force attempts against weak credentials lacking MFA. After gaining access, the actor extracted device configurations (including SSL‑VPN and administrative credentials) and deployed AI-assisted Python and Go tools to parse settings, map networks, and automate reconnaissance. Amazon urges administrators to remove exposed management interfaces, enable MFA, ensure VPN passwords differ from Active Directory credentials, and harden backup systems.

🔐 Amazon Threat Intelligence observed a Russian-speaking, financially motivated actor using commercial generative AI to compromise over 600 FortiGate devices across 55+ countries from 2026-01-11 to 2026-02-18. The campaign did not exploit FortiGate vulnerabilities; it abused exposed management ports and weak single-factor credentials. The actor used AI-generated plans, scripts, and developer assistance to scale credential-based access and automate post-exploitation tasks.

🚀 Amazon expanded MSK Serverless into Africa (Cape Town), Asia Pacific (Taipei), and Canada West (Calgary), increasing the service's regional footprint. MSK Serverless is a managed cluster option for Apache Kafka that provisions and scales compute and storage automatically, removing the need to manage cluster capacity. The launch aims to simplify deployment of event-driven architectures and lower operational overhead for teams using Kafka. See the developer guide to begin using the service in these regions.

🔔 AWS IAM Identity Center is now available in the Asia Pacific (New Zealand) AWS Region, expanding the service to 38 AWS Regions globally. The service is the recommended approach for managing workforce access, offering centralized single sign-on and account management by connecting your existing identity source once. IAM Identity Center powers personalized experiences in services such as Amazon Q and enables user-aware access controls and auditing in services like Amazon Redshift. It is offered at no additional cost in supported regions.

🚀 Amazon Web Services has launched EC2 G7e instances in the Asia Pacific (Tokyo) region, powered by NVIDIA RTX PRO 6000 Blackwell Server Edition GPUs. These instances deliver up to 2.3x inference performance compared to G6e, support up to eight GPUs with 96 GB per GPU, and provide up to 192 vCPUs and 1600 Gbps networking. They include NVIDIA GPUDirect P2P and GPUDirect RDMA with EFA in EC2 UltraClusters, and are available as On-Demand, Spot, or via Savings Plans.

🔐 Amazon Web Services announced new Aurora DSQL Connectors for Go (pgx), Python (asyncpg), and Node.js (WebSocket for Postgres.js). The connectors serve as transparent authentication layers that automatically generate IAM tokens per connection, removing the need for manual token handling while preserving full compatibility with standard PostgreSQL driver features. The Node.js connector adds WebSocket support for environments where TCP is unavailable. All connectors accept custom IAM credential providers to match customer credential workflows.

📢 Amazon MQ now supports ActiveMQ 5.19, bringing a set of fixes and improvements over prior ActiveMQ releases. Amazon MQ will automatically manage patch-level upgrades for your brokers and apply compatible security patches during your scheduled maintenance window. If you are using older versions such as 5.18, AWS recommends upgrading via the AWS Management Console. This version is available in all AWS Regions where Amazon MQ is offered.

🚀 Starting in February 2026, Amazon EC2 M7i instances are now available in the Africa (Cape Town) Region, powered by AWS-custom 4th Gen Intel Xeon Scalable processors (Sapphire Rapids). These chips deliver up to 15% better performance than comparable x86 Intel processors and up to 15% improved price-performance versus M6i, targeting sustained CPU-intensive workloads like gaming servers, CPU-based ML, and video streaming. M7i offers larger sizes up to 48xlarge and two bare-metal options (metal-24xl, metal-48xl) that include built-in Intel accelerators for data streaming, in-memory analytics, and cryptographic offload.

📱 Amazon Simple Notification Service (Amazon SNS) in the Asia Pacific (New Zealand) and Asia Pacific (Taipei) Regions can now send SMS to subscribers across more than 200 countries and territories. Customers in these Regions can send messages via AWS End User Messaging, bringing SMS support to 32 AWS Regions. Amazon SNS is a fully managed pub/sub service that delivers to endpoints such as AWS Lambda, Amazon SQS, and Amazon Kinesis Data Firehose, and SMS adds an additional mobile delivery channel. This expansion helps developers extend global notification workflows and manage messaging at scale.

🤖 Amazon Web Services today announced that Amazon Aurora DSQL now integrates with Kiro powers and AI agent skills to accelerate database-backed application development. The integration packages the Aurora DSQL Model Context Protocol (MCP) server with development best practices so AI agents can assist with schema design, performance tuning, and routine database operations out of the box. Kiro powers provides a curated registry of MCP servers, steering files, and agent hooks with one-click installation in the Kiro IDE. The Aurora DSQL skill extends the same guidance to other agent ecosystems via a Skills CLI, allowing agents to dynamically load Postgres-compatible SQL patterns, distributed design advice, and IAM authentication guidance.

🔔 Amazon Connect Cases now integrates with AWS Service Quotas, enabling administrators to view applied limits, monitor utilization, and request quota increases directly from the Service Quotas console. Eligible quota requests can be automatically approved, reducing manual approval bottlenecks. Available in multiple AWS Regions, this update helps teams scale case workloads and avoid unexpected service constraints.

🔐 Amazon Managed Grafana now supports customer-managed keys (CMKs) through AWS Key Management Service (KMS), enabling you to encrypt workspace data with keys you control. Previously, Amazon Managed Grafana used AWS-owned keys by default; this option lets organizations add a self-managed encryption layer to meet compliance and regulatory requirements. The feature is available in all generally available regions except AWS GovCloud (US) Regions.

🔒 AWS Clean Rooms now supports catalog federation for remote Apache Iceberg REST catalogs, enabling direct, secure access to Iceberg tables stored in Amazon S3 without replicating table metadata. Using AWS Glue catalog federation, organizations can include remote Iceberg catalogs in Clean Rooms collaborations so partners can jointly analyze combined datasets while keeping underlying data private. This reduces the need for ETL pipelines and simplifies cross‑party analytics between organizations such as publishers and advertisers.

🔧Amazon OpenSearch Service now supports the latest Graviton4-based EC2 instance families — compute-optimized c8g, general-purpose m8g, and memory-optimized r8g and r8gd. AWS reports up to 30% better performance versus Graviton3, offering improved price-performance for compute, general, and memory-intensive workloads. Support covers all OpenSearch versions and open-source Elasticsearch 7.9 and 7.10, with expanded regional availability.

🚀 Amazon OpenSearch Service now supports the latest x86-based, storage-optimized i7i instances powered by 5th generation Intel Xeon Scalable processors. i7i delivers up to 23% better compute performance and more than 10% better price-performance compared with prior-generation i4i instances, plus 3rd generation AWS Nitro SSDs for faster, more consistent storage. Storage improvements include up to 50% better real-time storage performance, up to 50% lower I/O latency, and up to 60% lower latency variability. Support is available across many commercial, regional, and GovCloud AWS Regions; check region-specific pricing and availability.

🚀 Amazon Web Services has launched EC2 R8i and R8i-flex instances in Europe (Ireland), powered by custom Intel Xeon 6 processors exclusive to AWS. These memory-optimized instances deliver up to 15% better price-performance and 2.5x more memory bandwidth versus previous Intel-based generations, with workload-specific gains for PostgreSQL, NGINX, and AI recommendation models. R8i includes 13 sizes including bare-metal and a new 96xlarge, while R8i-flex provides common memory-optimized sizes from large to 16xlarge to help right-size deployments.

🔧 Amazon Bedrock now supports reinforcement fine-tuning (RFT) for open-weight models, including openai.gpt-oss-20b and qwen.qwen3-32b. The managed RFT workflow automates end-to-end customization using reward functions that can be rule-based or AI-driven, and integrates with AWS Lambda for custom grading and checkpoint inspection. Fine-tuned models are immediately available for on-demand inference via Bedrock's OpenAI-compatible Responses and Chat Completions APIs, while proprietary data remains within AWS's secure environment.

🔒 Amazon has released Aurora MySQL-Compatible Edition 3.12 with MySQL 8.0.44, delivering security enhancements, numerous bug fixes, and availability improvements for Aurora clusters. Administrators can initiate a manual minor version upgrade or enable Auto minor version upgrade during DB cluster creation or modification to receive the update. The release is rolled out in all AWS regions that support Aurora MySQL. Aurora continues to offer built-in security, continuous backups, serverless options, and multi-Region replication.

📅 Amazon Connect now surfaces agent time-off requests directly in draft schedules, so schedulers can see why an agent wasn't assigned on specific days or shifts. This makes it easier to identify coverage gaps before publishing schedules to agents. The addition reduces the need to inspect published schedules or troubleshoot configuration to explain absences. The feature is available in all Regions where agent scheduling is supported.

📈 Amazon now emits resource count metrics from EventBridge Scheduler to CloudWatch, enabling teams to track the approximate number of schedules and schedule groups in an account. The metrics surface usage trends and indicate when you are approaching service quota limits so you can request increases before capacity is exhausted. These metrics are available at no extra cost in all AWS Regions, including AWS GovCloud.