All news with #aws tag

AWS Split Cost Allocation Adds GPU and Accelerator Cost Tracking

🔍 Split Cost Allocation Data now supports accelerator-based workloads running in Amazon Elastic Kubernetes Service (EKS), allowing customers to track costs for Trainium, Inferentia, NVIDIA and AMD GPUs alongside CPU and memory. Cost details are included in the AWS Cost and Usage Report (including CUR 2.0) and can be visualized using the Containers Cost Allocation dashboard in Amazon QuickSight or queried with Amazon Athena. New customers can enable the feature in the Billing and Cost Management console; it is automatically enabled for existing Split Cost Allocation Data customers.

Amazon Neptune Integrates with Zep for Long-Term Memory

🧠 Amazon Web Services announced integration of Amazon Neptune with Zep, an open-source memory server for LLM applications, enabling persistent long-term memory and contextual history. Developers can use Neptune Database or Neptune Analytics as the graph store and Amazon OpenSearch as the text-search layer within Zep’s memory system. The integration enables graph-powered retrieval, multi-hop reasoning, and hybrid search across graph, vector, and keyword modalities, simplifying the creation of personalized, context-aware LLM agents.

AWS Transform for VMware Adds IP Range Flexibility

🔁 AWS Transform for VMware now supports VPC CIDR range modifications to prevent IP conflicts during migrations. The service automatically updates all associated resources — including subnets, security groups, routing tables, and target instances — when you change VPC CIDRs. You can preserve source IPs, apply adjusted addresses aligned to new VPC CIDRs, or choose DHCP-based assignment. Agentic AI automation speeds discovery, planning, and migration workflows and the feature is available in additional regions including US East (Ohio), Europe (Stockholm), and Europe (Ireland).

AWS Deadline Cloud automates job output downloads at scale

🔁 The AWS Deadline Cloud client now includes a command to automatically download outputs for completed jobs from a specified queue. The command detects output files that Deadline Cloud has stored in Amazon S3 and restores them to the local paths defined during job creation. It can be scheduled with cron or Task Scheduler to run periodically, enabling unattended retrieval for final review and delivery.

Amazon Bedrock Simplifies Cache Management for Claude

⚡Amazon Bedrock updated prompt caching for Anthropic’s Claude models—Claude 3.5 Haiku, Claude 3.7, and Claude 4—to simplify cache management. Developers now set a single cache breakpoint at the end of a request and the system automatically reads the longest previously cached prefix, removing manual segment selection and reducing integration complexity. By excluding cache read tokens from TPM quotas, this change can free up token capacity and lower costs for multi-turn workflows. The capability is available today in all regions offering these Claude models; enable caching in your Bedrock model invocations and refer to the Bedrock Developer Guide for details.

AWS Transform Adds Detached Storage Assessment and TCO

🔍 AWS has expanded AWS Transform assessment to analyze on‑premises detached storage infrastructures, including SAN, NAS, file servers, object stores and virtual environments. The new capability maps existing storage to AWS targets such as Amazon S3, Amazon EBS and Amazon FSx, and delivers a comparative Total Cost of Ownership (TCO) analysis. It also provides performance and cost optimization recommendations for compute and storage workloads, noting storage can represent up to 45% of migration opportunities. The assessment is available in US East (N. Virginia) and Europe (Frankfurt).

Amazon Disrupts APT29 Campaign Targeting Microsoft 365

🔒 Amazon disrupted an operation attributed to the Russian state-sponsored group APT29 that used watering-hole compromises to target Microsoft 365 accounts. The attackers injected obfuscated JavaScript into legitimate sites to redirect roughly 10% of visitors to fake Cloudflare verification pages and then into a malicious Microsoft device code authentication flow. Amazon isolated attacker EC2 instances and worked with Cloudflare and Microsoft to take down identified domains; the campaign did not affect Amazon's infrastructure.

Amazon Thwarts APT29 Watering Hole Targeting Microsoft

🔒 Amazon’s threat intelligence team disrupted a watering hole attack attributed to the Russian state‑linked group APT29 that attempted to abuse Microsoft device code authentication flows. Compromised websites injected JavaScript that redirected about 10% of visitors to attacker-controlled domains mimicking Cloudflare verification pages. Amazon reported no AWS service compromise; attackers used evasion techniques and quickly rotated infrastructure.

Amazon Managed Service for Prometheus Adds PagerDuty

🔔 Amazon Managed Service for Prometheus now sends alerts directly to PagerDuty, removing the need for custom Lambda functions or intermediary services. The native integration simplifies authentication and improves delivery reliability for incident notifications. It is available in all AWS regions where the service is generally available and can be configured from the Alert manager tab or via the AWS CLI, SDK, or APIs. Refer to the user guide for detailed setup instructions.

Amazon SageMaker Adds Account-Agnostic Project Profiles

🔁 Amazon SageMaker introduces account-agnostic, reusable project profiles within the SageMaker Unified Studio domain, enabling domain administrators to define project templates once and reuse them across multiple AWS accounts and regions. Profiles are decoupled from specific accounts and regions and can reference a new account pool for dynamic account and region selection at project creation, driven by custom authorization policies or predefined strategies. This reduces duplication, simplifies governance, and accelerates onboarding across large-scale data and ML environments. The feature is available in all Regions where Unified Studio is supported.

Amazon QuickSight Adds Native Google Sheets Connector

📢 Amazon QuickSight announces the general availability of a native Google Sheets connector. Customers can sign in with their Google account and import sheets directly into a QuickSight SPICE dataset for analysis and visualization. The connector is available across multiple AWS regions in the Americas, Europe, and Asia Pacific. This simplifies bringing spreadsheet data into QuickSight and reduces manual data movement for BI teams and analysts.

AWS End User Messaging Adds International Toll‑Free SMS

📣 AWS End User Messaging now supports international SMS sending from US toll-free numbers to more than 150 countries, including Canada. This lets customers use a single US toll-free number to reach supported global destinations, simplifying account and resource setup. Available in all AWS Regions where AWS End User Messaging is offered, the capability supports common use cases such as OTPs, notifications, reminders, and promotions.

Amazon Neptune Analytics adds Stop/Start capability

⏸️ Amazon Neptune Analytics now supports a Stop/Start capability that lets organizations pause and resume graph workloads on demand. While a graph is stopped, all data and configuration are preserved and customers pay only 10% of the normal compute cost. Customers can pause and resume via the AWS Console, CLI, API, or SDKs with a single action. The feature is available in all commercial regions where Neptune Analytics is offered and aims to reduce lifecycle overhead and lower costs for periodic workloads like fraud detection, recommendation engines, and research simulations.

Amazon QuickSight Launches in Israel and UAE Regions

📍 Amazon QuickSight is now available in the Israel (Tel Aviv) and United Arab Emirates (Dubai) AWS Regions, enabling local customers to author, share, and embed interactive analytics at scale. QuickSight is a fast, fully managed BI service that supports browser-based dashboard creation and can be shared with tens of thousands of users without provisioning infrastructure. The launch expands QuickSight to 25 regions globally, improving latency, data residency options, and compliance for regional organizations.

RDS Data API Now Supports IPv6 Dual-Stack Connectivity

🌐 RDS Data API now supports IPv6 with dual-stack (IPv4/IPv6) connectivity for Aurora databases, enabling expanded address space and simplified migration from IPv4. The capability is available in all commercial AWS regions where Data API is offered, except Canada (Central). IPv6 lets you assign contiguous IP ranges to microservices and scale beyond VPC IPv4 limits while retaining IPv4 connectivity during transition. Data API continues to pool connections and integrates with AWS AppSync GraphQL; consult the documentation for endpoint and network configuration guidance.

Amazon Disrupts APT29 Watering-Hole Device Code Scam

🛡️ Amazon says its security team detected and disrupted an opportunistic watering-hole campaign attributed to APT29 that redirected visitors from compromised sites to attacker-controlled domains mimicking Cloudflare verification pages. The threat used the Microsoft device code authentication flow to trick users into authorizing attacker-controlled devices. Amazon observed multiple evasion techniques and continued tracking as the actor migrated infrastructure.

AWS IAM: New VPC Endpoint Condition Keys for Perimeter

🔐 AWS Identity and Access Management (IAM) introduces three global condition keys — aws:VpceAccount, aws:VpceOrgPaths, and aws:VpceOrgID — to enforce that requests to resources or identities originate via VPC endpoints. These keys provide account-, organization-path-, and organization-level granularity, automatically scaling as endpoints are added or removed. Use them in new or existing SCPs, RCPs, resource-based, and identity-based policies. They are supported for selected services in commercial Regions where AWS PrivateLink is available.

Amazon Verified Permissions Adds Four New AWS Regions

🔒 Amazon Verified Permissions is now available in Asia Pacific (Taipei), Asia Pacific (Thailand), Asia Pacific (Malaysia), and Mexico (Central), expanding regional coverage to 35 AWS Regions. The managed service provides scalable, fine-grained authorization using the open-source Cedar policy language, enabling applications to enforce permissions as policies rather than embedding them in code. Developers and administrators can define role-, attribute-, and context-aware access controls for APIs and application resources, simplifying authorization and improving governance.

AWS HealthOmics Adds Third-Party Container Registry Support

🧬 AWS HealthOmics now supports third-party container registries through Amazon ECR pull-through cache and a new container URI remapping capability, easing access to tools hosted on Docker Hub, GitHub, Quay, GitLab, Azure, and other registries. The pull-through cache automatically retrieves and caches images while URI remapping translates third-party references to private ECR URIs using customer-defined mapping rules. These capabilities remove the need for manual image migration or workflow edits and are available in all regions where AWS HealthOmics is offered, helping bioinformatics teams accelerate workflow development and execution.

Amazon EC2 I8ge Instances: Graviton4 Storage Optimized

🚀 Amazon Web Services announced general availability of Amazon EC2 I8ge instances, storage-optimized instances powered by AWS Graviton4 processors. They deliver up to 60% better compute and up to 55% better real-time storage performance per TB compared with previous Graviton2/Im4gn generations. I8ge offers up to 120 TB local NVMe instance storage, 1,536 GiB memory, sizes up to 48xlarge plus two metal options, and up to 300 Gbps networking, making them suitable for real-time databases, analytics, search, and streaming workloads. Instances are available in US East (Ohio), US East (N. Virginia), and US West (Oregon).