< ciso
brief />
Tag Banner

All news with #cloud security tag

605 articles

AWS Client VPN adds four more regions globally

🔒 AWS Client VPN is now available in Canada West (Calgary), Mexico (Central), New Zealand, and Taipei. The fully managed service lets remote workers securely connect to AWS and on-premises resources without hardware VPN appliances. It uses a pay-as-you-go model and provides centralized management and monitoring through a single console. Customers can consult AWS product, documentation, and pricing pages for details.
read more →

Forg365 PhaaS Targets Microsoft 365 with AI

🛡️ Forg365 is a phishing-as-a-service platform that targets Microsoft 365 accounts by combining adversary-in-the-middle (AiTM) and device-code phishing with integrated AI-assisted lure generation. The service offers an admin dashboard for campaign management, OAuth and SMTP configuration, token handling, and a browser extension called ForgCookie for persistent cookie harvesting. Researchers at ZeroBEC found the operation uses legitimate delivery services like Amazon SES and SendGrid-hosted resources to blend malicious emails into normal traffic.
read more →

AI gateway compromise raises cloud security concerns

🔒 Researchers report an AWS EC2 instance acting as a LiteLLM proxy for Amazon Bedrock was compromised and used to deploy XMRig cryptomining malware. The intrusion highlights risk from AI gateways that centralize identities, permissions, and model access, making them high-value targets. Analysts observed SSH exposure, probable brute-force attempts, and suspicious IAM activity tied to model enumeration and persistence efforts. Darktrace assisted in timely detection and containment while urging tighter controls and telemetry correlation.
read more →

AWS Config adds 191 new managed rules

🛡️ AWS Config has expanded its set of managed rules with 191 additional checks covering services such as Amazon Bedrock, SageMaker, ECS, EKS, RDS, Redshift, S3, and CloudTrail. The new rules evaluate encryption, logging, public access, network security, data protection, and operational best practices. You can deploy rules individually or as part of a conformance pack in supported AWS Regions.
read more →

AWS Security Hub adds internet Network Scanning

🔍 AWS Security Hub now includes Network Scanning to identify resources that are actually reachable from the public internet. The feature probes public IPs, VMs, and load balancers across AWS and Azure, detects reachable ports, and identifies services running behind them. Findings are created per reachable port and correlated by Security Hub Exposures to assess broader risk. Existing customers can enable the feature per account, region, or organization; it is enabled by default for new customers and included with Security Hub Essentials at no extra cost in supported commercial Regions.
read more →

Microsoft details SFI AI system to harden cloud

🚀 Microsoft describes a multi-agent AI system within the Secure Future Initiative (SFI) that continuously evaluates and hardens its cloud services. The system combines code, configuration, identity, network, and runtime evidence to find composite vulnerabilities and assess layered defenses. It generates assurance trees tailored to each service and produces high-quality, actionable findings that speed remediation. Microsoft reports the system compresses deep security reviews from weeks to hours and that over 90% of findings were validated by engineers.
read more →

Amazon EC2 U7i High Memory Now in Zurich

🚀 Amazon EC2 High Memory U7i instances with 12TB (u7i-12tb.224xlarge) are now available in the AWS Europe (Zurich) region. These 7th-generation U7i instances use custom 4th-gen Intel Xeon Scalable Processors (Sapphire Rapids) and provide 12TiB of DDR5 memory to support large in-memory workloads. The instances deliver 896 vCPUs, up to 100Gbps EBS and network bandwidth, and support ENA Express, targeting mission-critical databases such as SAP HANA, Oracle, and SQL Server.
read more →

Enforce Zero Data Retention on Amazon Bedrock

🛡️ This post explains how Amazon Bedrock’s data retention modes work and the tools you can use to enforce zero retention across accounts and projects. It covers account-level modes (none, default, inherit, provider_data_share), how model requirements interact with your configured ceiling, and APIs that mandate retention. The article also describes project-level isolation via bedrock-mantle, organization-wide enforcement using SCPs, and practical steps to lock accounts to none.
read more →

Top BGP Route Policy Uses by Customer Demand

🛡️ Cloud Router's BGP route policies give administrators programmatic control to filter, modify, and propagate routes using CEL expressions. Customers now use these policies to enforce strict route filtering, implement traffic steering via MED and AS-PATH prepending, and achieve stateful traffic symmetry through BGP community tagging. Policy named sets simplify managing large lists of prefixes and communities across multiple routers.
read more →

Amazon EVS adds support for VMware Cloud Foundation 9

🆕 Amazon Elastic VMware Service (EVS) now supports VMware Cloud Foundation (VCF) 9.0 and 9.1, enabling customers to run VCF directly within their Amazon VPC on EC2 bare-metal instances. You retain full control over installation, operations, and management of the VMware virtualization stack and can continue using existing tools, processes, and skills. AWS also launched the Solutions for EVS GitHub repository with examples, templates, and infrastructure-as-code artifacts to accelerate deployments. The release is available in all regions where Amazon EVS is offered.
read more →

Five key CSPM insights from Frost & Sullivan 2025

🔒 Frost & Sullivan’s 2025 Frost Radar reframes Cloud Security Posture Management (CSPM) as a continuous, risk‑based governance layer inside CNAPPs rather than a periodic compliance exercise. The report forecasts CSPM market growth through 2030 and highlights integration of posture with workload protection, identity, data security, and DevSecOps. It underscores Microsoft’s leadership in unifying posture with runtime telemetry and SecOps workflows.
read more →

EC2 Dedicated Hosts Now Support AMD SEV‑SNP

🔒 Amazon EC2 now supports AMD Secure Encrypted Virtualization‑Secure Nested Paging (SEV‑SNP) on Dedicated Hosts, allowing confidential computing workloads to run on physical servers dedicated to a single customer. Customers can allocate a Dedicated Host with SEV‑SNP enabled and launch compliant instances while retaining control over instance placement and host affinity. The host is provisioned with AMD security firmware at allocation to keep confidential environments current. Dedicated Host SEV‑SNP is available in all AWS commercial Regions with AMD instances.
read more →

AWS Config adds eight new resource types

🔔 AWS Config now supports eight additional resource types across key services including Amazon API Gateway, Amazon EC2, Amazon S3 Vectors, Network Firewall, OpenSearch Serverless, and OSIS. If you have recording enabled for all resource types, AWS Config will automatically begin tracking these new resources. The new types are also available for use in Config rules and Config aggregators, expanding discovery, assessment, audit, and remediation coverage.
read more →

CloudWatch Adds Alarms Directly From Log Queries

🔔 Amazon CloudWatch now lets you create alarms directly from log queries, enabling anomaly alerts without leaving the log analysis workflow. You can set thresholds on query results without first creating metric filters or custom metrics, simplifying monitoring and alerting. Alarms support standard CloudWatch actions such as Amazon SNS notifications and Amazon EventBridge integrations, and are available in all commercial AWS Regions except UAE and Bahrain. Configure these alarms via the CloudWatch console, AWS CLI, CloudFormation, or AWS SDKs.
read more →

Microsoft named a leader in Frost Radar for CARS

🔒 Microsoft highlights its recognition in Frost & Sullivan’s 2026 Frost Radar for Cloud/Application Runtime Security, emphasizing a shift from visibility to contextual risk reduction across cloud infrastructure, applications, APIs, and runtimes. The post explains how Microsoft Defender for Cloud integrated with Microsoft Defender XDR correlates posture, identity, data, and runtime signals to prioritize exploitable attack paths. It argues that unified platforms reduce alert fatigue, speed remediation, and enable continuous risk operations across development and runtime.
read more →

CloudWatch Logs adds resource tag enrichment

🔍 Amazon CloudWatch Logs now enriches log events with AWS resource tags at ingestion, enabling filtering, searching, and analysis by metadata such as team ownership, environment, cost center, or application name without changing logging instrumentation. Tags are applied at ingestion so you can use them immediately in log queries to scope analysis and incident investigations. The feature is available in all commercial AWS Regions except UAE, Bahrain, and Israel (Tel Aviv). Enable resource tags on telemetry in Amazon CloudWatch Settings, via the AWS CLI, or SDKs; tag enrichment is provided at no extra cost.
read more →

Amazon RDS IAM Database Authentication Scales Dynamically

🔒 Amazon RDS now supports dynamic connection rate scaling for IAM database authentication, so authentication throughput scales with instance resources. This allows enterprise workloads to use IAM authentication for high-volume connection patterns while depending on available CPU and memory. AWS recommends reusing IAM principals or authentication tokens to optimize performance. The feature is available in all Regions, including AWS GovCloud (US), for Aurora, PostgreSQL, MySQL, and MariaDB.
read more →

Amazon Neptune adds dual‑stack IPv6 support

🔷 Amazon Neptune now supports dual‑stack mode, allowing database clusters to accept connections over IPv4, IPv6, or both simultaneously. This enables organizations to adopt IPv6 while preserving compatibility with existing IPv4 deployments. Dual‑stack offers Private mode for internal, non‑internet IPv6 endpoints and Public mode for internet‑accessible IPv6 endpoints to support hybrid and internet‑facing applications. The feature is available in all AWS Regions that support Amazon Neptune.
read more →

EC2 Time Sync Adds Microsecond Accuracy to More Instances

🔧 Amazon Time Sync Service now supports microsecond accurate time on 26 additional EC2 instance types across all commercial regions. Built on the AWS Nitro System, the feature exposes nanosecond precision hardware timestamps from reference clocks in Nitro, enabling ordered event logging, one-way latency measurement, and faster distributed transactions. Customers enable this by creating a Precision Time Placement Group (PTPG) to launch instances with PHC enabled and can associate PTPGs with Cluster Placement Groups for combined low-latency and precise timing benefits.
read more →

EC2 Auto Scaling adds reservations‑then‑balanced AZ strategy

🔔 Amazon EC2 Auto Scaling introduces a new reservations-then-balanced Availability Zone distribution strategy that prioritizes launching instances into your capacity reservations before distributing remaining capacity across AZs. You can configure it in the AvailabilityZoneDistribution of your Auto Scaling group and target reservations by Capacity Reservation Group ARN or individual Capacity Reservation IDs. The feature is available today in all AWS commercial Regions at no extra charge beyond standard EC2 pricing for reservations, On-Demand, and Spot instances.
read more →