All news with #cloud security tag

🔍 AWS Clean Rooms now publishes detailed SQL query metrics to CloudWatch for collaborations. Collaboration creators, analysis runners, or configured payors can enable detailed monitoring to capture query performance and resource utilization. This capability improves operational observability for workloads at scale and helps teams identify performance issues and optimize costs. For example, advertisers can monitor campaign lift analysis queries to tune performance and control spend.

🔁 Amazon Connect now supports storing and referencing nested JSON objects and lists directly within contact flows, enabling developers to save complete records and target specific elements such as an individual order. Flows can automatically iterate through arrays and maintain loop position, making it easy to present item-level details in sequence. Use cases include guiding callers through itineraries or recent transactions without repeated backend calls. These features are documented in the Amazon Connect Administrator Guide and available across all AWS regions where the service is offered.

🔒 Our Cloud-Delivered Security Services unify Advanced Threat Prevention, Advanced WildFire, Advanced DNS Security and Advanced URL Filtering into a single AI-powered fabric. Precision AI correlates billions of signals across networks, users and applications to shift organizations from reactive detection to proactive, patient-zero prevention. When fully enabled and integrated through a single management plane, CDSS reduces operational complexity, delivers consistent policy enforcement and blocks evolving threats in real time to protect business continuity.

🔒 Since the 2017 breach, Equifax has pursued a comprehensive security transformation, investing nearly $3 billion to rebuild technology and migrate to Google Cloud under NIST-aligned frameworks. The company reports that security is now embedded across processes and incentivized through employee bonuses, with regional CISOs adapting programs to EU rules like DORA and NIS2. Equifax says it neutralizes millions of threats daily and uses a hybrid approach to AI-driven attacks, combining multiple layers of controls rather than relying on a single technology.

🔒 Google Cloud senior leaders Nick Godfrey and Anton Chuvakin recap 2025 security developments and lessons learned across cloud and AI. They highlight five focus areas — securing cloud, securing AI, AI-enabled defense, threat intelligence, and building trust — and call out major items such as the announced Wiz acquisition, response to React2Shell (CVE-2025-55182), and the launch of AI Protection. The newsletter stresses fundamentals, governance, and using AI to empower defenders.

🔖 AWS now supports using AWS Organizations account tags across its cost management products. Account tags applied at the organization level automatically flow to all metered usage in tagged accounts, removing the need to maintain separate account lists in Cost Explorer, CUR 2.0/FOCUS, AWS Budgets, and Cost Categories. This also enables allocation for untaggable items like refunds, credits, and certain service charges. To enable, add tags in the AWS Organizations console and activate them on the Cost Allocation Tags page in Billing. The feature is generally available in all Regions except GovCloud (US) and China (Beijing/Ningxia).

📊 Cloudflare announces support for aggregations in R2 SQL, enabling GROUP BY, SUM, COUNT, HAVING and ORDER BY over data stored in R2 Data Catalog. The release introduces two distributed strategies — scatter-gather for pre-aggregates and shuffling with deterministic hash partitioning for global grouping and sorting. Developers can now run large-scale analytical queries and top-K reports on Parquet data without moving it or managing separate OLAP infrastructure.

🔒 AWS announces that AWS Control Tower now includes 176 additional AWS Security Hub controls in its Control Catalog. You can search, discover, enable and manage these controls directly from the Control Tower console or via the ListControls, GetControl and EnableControl APIs. The new AWS Config rules are searchable in all Regions where Control Tower is available, including AWS GovCloud (US); check each rule's supported-region list before deployment.

🔒 The Zeroday Cloud competition in London, hosted by Wiz Research with support from AWS, Microsoft, and Google Cloud, awarded $320,000 to teams that demonstrated 11 zero-day remote code execution vulnerabilities. Exploits affected critical cloud components including Redis, PostgreSQL, MariaDB, Grafana, and a Linux-kernel container escape that broke tenant isolation. Team Xint Code earned the top prize of $90,000. Attempts against AI tooling such as vLLM and Ollama were made but failed due to time exhaustion.

🔁 This post explains a Python-based solution to migrate automation rules from Security Hub CSPM (ASFF) to the new Security Hub that adopts the open OCSF schema. The toolkit discovers rules across specified Regions, evaluates each rule against predefined ASFF→OCSF field mappings, and converts compatible rules into a CloudFormation template preserving order and Regional context. Actions or criteria without OCSF equivalents are flagged or partially migrated; migrated rules are created in a DISABLED state by default to allow review and testing. The package includes discovery, transformation, and template-generation scripts plus a migration report to guide manual adjustments.

🔒 Amazon Elastic Container Registry (ECR) Public now supports PrivateLink for the US East (N. Virginia) SDK endpoint. This enables private, secure connectivity from an Amazon VPC to the ECR Public SDK endpoint, reducing exposure to the public internet. Organizations can maintain network privacy, meet stricter security requirements, and simplify access patterns when creating and managing ECR Public repositories. Use cases include protecting sensitive image pulls and streamlining CI/CD network architecture.

☁️ Cloud access security brokers (CASBs) act as gatekeepers between enterprise endpoints and cloud services, offering visibility into user activity, enforcement of access policies, and protection of sensitive data across SaaS, IaaS, and cloud-native apps. Deployments may be forward or reverse proxy, or API-driven, and vendors increasingly fold in DLP, SWG, CSPM, and UEBA capabilities. Key selection factors include supported deployment modes, agent strategy, application/API coverage, and alignment with an SSE or SASE roadmap.

🔔 Amazon Connect real-time metric alerts now report the specific agents, queues, contact flows, or routing profiles that exceeded thresholds, eliminating the need for manual investigation. For example, alerts on elevated queue wait times will include the exact queues affected so managers can reassign staff promptly. These enriched notifications can be delivered via email, Tasks, and Amazon EventBridge, and the capability is available in all regions where Amazon Connect is offered. The change is designed to accelerate operational response and improve customer experience.

🔒 The Palo Alto Networks State of Cloud Security Report 2025 warns that rapid enterprise AI adoption has massively expanded the cloud attack surface, with 75% running AI in production and 99% reporting at least one AI-targeted incident last year. It finds GenAI-assisted coding accelerating insecure code into production and AppSec teams unable to keep pace with weekly deploys. The research highlights rising API attacks, persistent identity weaknesses, and widespread tool sprawl, and argues for agentic security to unify cloud and SOC operations.

🔒 Hybrid and multicloud environments have expanded the attack surface, creating operational complexity and fractured visibility across public clouds, private data centers and edge locations. Palo Alto Networks and Nutanix recommend an open, unified security layer that enforces consistent policies, provides inline east‑west visibility, and uses tag‑driven automation to ensure protections follow workloads. This approach aims to replace fragmented point solutions with cohesive, scalable defense-in-depth.

🔒 This AWS Security Blog post explains how to implement HTTP Strict Transport Security (HSTS) consistently across distributed AWS architectures using Amazon API Gateway, Application Load Balancers, and Amazon CloudFront. It presents concrete, service-specific configuration steps, example mappings and code snippets, and recommended curl commands to validate header delivery. The guidance highlights centralized header enforcement options to reduce fragmentation and align with the AWS Well-Architected Framework security principles. Practical advice covers testing, header override behaviors, and phased rollout using conservative max-age values before enabling preload in production.

🔒 AWS has expanded service availability for Dedicated Local Zones, enhancing options for compute, storage, backup, and recovery to address strict data residency and digital sovereignty requirements. The announcement adds newer EC2 generation 7 instance types with accelerated computing, EBS gp3 and io1 volumes, and additional Amazon S3 One Zone storage classes. It also introduces EBS Local Snapshots and local AMI support to keep backups and images within customer-specified perimeters, helping regulated and government customers meet compliance needs.

🔒 Google is offering public sector teams a no-cost 30-day test drive of Google Workspace, providing full access to its cloud-native productivity suite with embedded Gemini AI. The pilot includes guided setup, user onboarding, workflow testing, and an impact assessment report to quantify productivity and security benefits. Workspace with Gemini has FedRAMP High authorization and Google Public Sector cites CMMC Level 2 validation for internal systems handling CUI. Agencies can evaluate real workflows commitment-free and gather data to inform adoption decisions.

🚀 Amazon announces that EMR Managed Scaling is now available to EMR on EC2 customers in Asia Pacific (Malaysia, New Zealand, Taipei, Thailand), Canada West (Calgary), Mexico (Central), and US Gameday Northeast (Illinois). The feature automatically resizes EC2 instances to optimize performance and cost; you set minimum and maximum compute limits and EMR adjusts capacity using workload-driven algorithms. It supports Apache Spark, Apache Hive and YARN-based workloads on EMR on EC2 versions 6.14 and above and can use EC2 Spot Instances for additional savings.

🔐 Check Point has extended CloudGuard Network Security to provide full auto-scaling support for Oracle Cloud Infrastructure, enabling firewalls to grow and shrink automatically with workload demand. The integration leverages OCI Instance Pools to automate deployment and scaling of security gateways, while preserving centralized policy control. This update broadens CloudGuard’s native support across 20 public and private cloud vendors, delivering consistent security and operational agility as customers move workloads to OCI.