All news with #aws tag

🚀 Amazon Web Services announced that Amazon DocumentDB (with MongoDB compatibility) is now available in the Europe (Zurich) region. The fully managed, JSON-native document database provides automatic storage scaling up to 128TiB and can support millions of requests per second while scaling out to 15 low-latency read replicas with no application downtime. It integrates with AWS DMS, CloudWatch, CloudTrail, Lambda and AWS Backup, and clusters can be created via Console, CLI, or SDK. Local availability improves latency and data residency options for Swiss and nearby customers.

🎧 Amazon Connect launches Audio Enhancement to improve voice clarity and reliability by suppressing agent-side background noises and isolating agent voices in busy contact centers. The feature includes two modes: Voice Isolation (removes background speech and noise) and Noise Suppression (targets non-speech noise). Administrators can enable modes via the User Management page, and agents with permissions can adjust settings in the Contact Control Panel. This capability is available in all commercial AWS Regions where Amazon Connect is offered.

🔐 Amazon OpenSearch Serverless now supports Collection Groups, enabling you to share OpenSearch Compute Units (OCUs) across collections that use different AWS KMS keys. This shared compute model reduces overall OCU costs while preserving collection-level security and access controls. Collection Groups also let you set minimum and maximum OCU allocations, allowing predictable startup capacity and eliminating cold-start latency for latency-sensitive workloads.

☁️This article introduces a pre-built Tines workflow—Investigate AWS issues with CLI data using agents—that brings AWS CLI output directly into cases, removing repetitive console logins and syntax guesswork. A lightweight, read-only agent executes context-aware CLI commands and returns results safely to the workflow. Optional AI-driven formatting or Tines transformations convert dense JSON into concise, human-readable summaries. The template can be imported, connected to an AWS credential, customized, tested, and will append findings into Tines Cases for auditability and team collaboration.

🔕 Amazon CloudWatch now supports Alarm Mute Rules, allowing teams to temporarily silence notifications for planned deployments, maintenance windows, and off-hours while preserving monitoring visibility. Rules can be one-time or recurring and mute up to 100 individual alarms, with actions configurable for OK, ALARM, and INSUFFICIENT_DATA states. When a mute expires, any previously muted actions are automatically triggered if the alarm remains in the same state it was in when muted. The capability reduces alert fatigue and removes dependence on fragile script-based workarounds.

🚀 Amazon EC2 C8gn instances powered by AWS Graviton4 are now available in additional regions including Asia Pacific (Seoul, Melbourne), Canada (Central), Europe (Spain), and AWS GovCloud. These instances offer up to 30% better compute versus Graviton3-based C7gn, use 6th-generation Nitro Cards, and deliver up to 600 Gbps network bandwidth. Sizes scale to 48xlarge with up to 384 GiB memory, up to 60 Gbps EBS bandwidth, and EFA support on larger sizes to enable lower-latency clusters.

🔔 Amazon Neptune Analytics is now available in seven additional AWS Regions: Middle East (Bahrain), Middle East (UAE), Israel (Tel Aviv), Africa (Cape Town), Canada (Calgary), Asia Pacific (Malaysia), and Europe (Zurich). Neptune is a serverless graph database that automatically scales graph workloads, reduces operational overhead, and improves AI accuracy and explainability by modeling connected data. It also provides fully managed GraphRAG with Amazon Bedrock Knowledge Bases and integrates with the Strands AI Agents SDK and popular agentic memory tools to accelerate graph-powered AI development.

🧬 AWS HealthOmics now integrates a Kiro Power and a Kiro IDE extension to accelerate bioinformatics workflow development with AI agent-assisted creation, debugging, and optimization. The IDE extension supports domain-specific languages such as Nextflow and WDL directly in the Kiro interface, offering syntax highlighting, code completion, and troubleshooting guidance. The Kiro Power packages the HealthOmics MCP server alongside steering files and agent hooks to provide domain expertise, automated run analysis, and failure diagnostics for faster, more reliable workflow iteration.

⚙️ Amazon Redshift now lets administrators allocate extra compute specifically for its automatic optimization features, or autonomics, so tasks such as Automatic Table Optimization (ATO), Automatic Table Sorting (ATS), Auto Vacuum, and Auto Analyze can run reliably during peak user activity. This avoids the need to pause or schedule manual maintenance windows. A cost-control setting limits resources for autonomics on provisioned clusters, and the new SYS_AUTOMATIC_OPTIMIZATION system table improves observability for both provisioned clusters and serverless workgroups.

🔍 New analysis by Ontinue details VoidLink, a Linux-based command-and-control framework that generates implant binaries for credential theft, data exfiltration and stealthy persistence across cloud and enterprise hosts. The agent fingerprints AWS, GCP, Azure, Alibaba and Tencent environments and adapts its behavior, loading modular plugins for container escape and kernel-level stealth. Researchers identified unusual development artefacts — structured "Phase X:" labels, duplicated numbering, verbose debug logs and embedded documentation — that suggest parts of the implant were written or assisted by a large language model coding agent with limited human review.

🚨 Researchers warn of a massive, worm-driven campaign by TeamPCP that began around December 25, 2025, systematically compromising cloud-native environments. The group abused exposed Docker APIs, Kubernetes clusters, Ray dashboards, Redis servers, and a critical React2Shell vulnerability (CVE-2025-55182) to deploy proxy, scanning, and C2 infrastructure. Compromised hosts are used for persistence, data exfiltration, extortion, crypto-mining, and proxy/C2 relays, with tooling tailored to Kubernetes and AWS/Azure deployments.

🔒 Administrators can now configure Amazon WorkSpaces Secure Browser portals to use custom domains, replacing the default portal URL to align browser sessions with organizational branding. After adding the custom domain and routing traffic via a reverse proxy (for example, Amazon CloudFront), Secure Browser redirects users to the configured domain after authentication. Authentication supports AWS Identity Center or a customer IdP with both IdP-initiated and SP-initiated flows, and the feature is available at no extra charge in 10 AWS Regions.

🔒 Amazon ECS Managed Instances is now available in the AWS European Sovereign Cloud, enabling customers to run EC2-backed container workloads under regional sovereignty controls. As a fully managed compute option, Managed Instances dynamically scales EC2 instances, optimizes task placement, and performs security patching every 14 days while supporting GPU and network-optimized instance families. Enable via Console, the Amazon ECS MCP Server, or infrastructure-as-code; management fees apply in addition to standard EC2 costs.

📌 AWS Config now supports 30 additional AWS resource types across services including Amazon EKS, Amazon Q, and AWS IoT. If you have enabled recording for all resource types, these additions are tracked automatically and are available in Config rules and Config aggregators. The expanded coverage improves visibility for discovery, audit, and automated remediation and includes types such as EKS::Nodegroup, QuickSight::Dashboard, Glue::Crawler, and IoT::TopicRule.

⚠️ Researchers at Sysdig uncovered an attack that fully compromised an AWS environment in under eight minutes by exploiting a cloud misconfiguration and using LLMs to accelerate reconnaissance and exploitation. Attackers reused credentials found in public S3 buckets, modified a Lambda function to escalate privileges, moved laterally across numerous principals, and disabled model-call logging in Amazon Bedrock. Security experts warn that AI-enabled automation compresses attack timelines and reduces defenders' reaction windows.

📈 Amazon Elastic Container Registry (ECR) now publishes two additional repository metrics in Amazon CloudWatch: RepositoryCount and ImagesPerRepositoryCount. These metrics, available across all AWS commercial Regions and AWS GovCloud (US) at no extra cost, provide per-repository visibility into repository creation/deletion trends and image count growth. Customers can detect anomalous behavior, build dashboards, and configure alarms to notify teams as usage approaches service quotas.

🧩 Amazon Connect Cases now supports CSV uploads to define conditional field option mappings, allowing administrators to specify which options appear based on other field values. Rather than manually configuring each dependency — for example, limiting defect type choices by product category — teams can upload a CSV to apply relationships at scale. This reduces onboarding effort and configuration time for complex case templates. The capability integrates with existing case templates and field settings and is available in multiple AWS regions.

🔔 AWS has lowered costs for Network Firewall customers by extending hourly and data-processing discounts for NAT Gateways that are service-chained with both primary and secondary firewall endpoints. The service also removed the additional data-processing surcharge for Advanced Inspection TLS inspection that previously applied in select regions. These pricing improvements are applied automatically across all regions where Network Firewall is offered and require no customer action.

🚀 Amazon Web Services has launched Amazon EC2 G6e instances powered by NVIDIA L40S Tensor Core GPUs in the Middle East (UAE) Region. These instances offer up to eight L40S GPUs with 48 GB each, third-generation AMD EPYC processors, up to 192 vCPUs, 1.536 TB system memory, 7.6 TB local NVMe storage, and up to 400 Gbps networking. G6e is optimized for ML workloads including LLMs, diffusion models for image/video/audio generation, and large-scale spatial computing and digital twins. Instances are available across multiple regions and purchasable via On-Demand, Reserved, Spot, and Savings Plans.

🚀 Amazon Web Services has made EC2 G6e instances powered by NVIDIA L40S Tensor Core GPUs available in the Middle East (UAE) Region. These instances support up to eight L40S GPUs (48 GB each), third-generation AMD EPYC processors, up to 192 vCPUs, 1.536 TB memory, 400 Gbps networking and 7.6 TB NVMe storage. They target machine learning and spatial computing workloads — from deploying large language and diffusion models to building immersive 3D simulations and digital twins. G6e instances are available via On‑Demand, Reserved, Spot and Savings Plans.