All news with #product update tag

🔒 AWS Security Incident Response introduces a metered pricing model that charges per ingested security finding and includes a free tier for the first 10,000 findings per month. After the free tier, the per-finding rate is $0.000676 with tiered discounts at higher volumes. The consumption-based approach removes upfront commitments and minimum fees, enabling teams to scale response capability as needs evolve. Customers can monitor finding counts via Amazon CloudWatch at no extra cost, and the new pricing automatically applies in supported Regions starting November 21, 2025.

📧 Amazon Simple Email Service (Amazon SES) is now available in the Asia Pacific (Malaysia) and Canada West (Calgary) AWS Regions. This expansion lets customers send marketing, notification, and transactional emails from local AWS infrastructure, helping reduce latency and address data sovereignty and residency needs. Amazon SES, a scalable and cost-effective cloud email service, is now offered across 29 AWS Regions worldwide.

🚀 AWS Glue zero-ETL integrations now support AWS CloudFormation and the AWS Cloud Development Kit (CDK), enabling creation and management of zero-ETL integrations using infrastructure as code. This lets teams ingest data from DynamoDB and enterprise SaaS sources (Salesforce, ServiceNow, SAP, Zendesk) into Amazon Redshift, S3, and S3 Tables. CloudFormation and CDK support makes it easier to deploy, update, and version-control zero-ETL configurations consistently across multiple AWS accounts.

🚀 Amazon has expanded EC2 Image Builder with flexible AMI distribution features that let you distribute existing AMIs, retry failed distributions, and create custom distribution workflows. Distribution workflows introduce sequential steps—such as AMI copies, wait-for-action checkpoints, and attribute modifications—to support staged rollouts and approval gates with the same step-level visibility as build and test workflows. These capabilities work across regions and accounts and are available at no extra cost.

🚀 Amazon Lightsail now offers a new Nginx blueprint that includes IMDSv2 enforced by default and supports IPv6-only instances. With a few clicks you can provision a Lightsail VPS of your chosen size with Nginx preinstalled, using Lightsail instance bundles that combine OS, storage, and monthly data transfer. This blueprint is available in all AWS Regions where Lightsail runs; consult Lightsail documentation for supported blueprints and pricing details.

🗣️ Amazon Lex now supports Wait & Continue in ten additional languages — Chinese, Japanese, Korean, Cantonese, Spanish, French, Italian, Portuguese, Catalan, and German. The feature enables deterministic voice and chat bots to pause while customers gather information and then resume the interaction seamlessly. It enhances natural, multilingual self-service experiences and is available in all AWS Regions where Amazon Lex operates.

🔧 AWS Control Tower v4.0 introduces a controls-focused experience that gives customers direct access to more than 750 AWS managed controls without requiring a full Control Tower deployment. Customers can review the Control Catalog and deploy selected controls into their existing AWS Organization within minutes while retaining their current account structure. The release also separates S3 buckets and SNS notifications for cleaner operations and improved cost attribution.

🌐 AWS Security Token Service (STS) now supports IPv6 via new dual‑stack endpoints, allowing connections over IPv6, IPv4, or both. Dual‑stack access is supported over the public internet and privately from Amazon VPCs using AWS PrivateLink, so STS APIs can be invoked without traversing the public internet. This capability is available in all Commercial, GovCloud (US), and China Regions. Configure STS clients using the IAM user guide to enable dual‑stack endpoints.

🚀 Amazon EC2 now provides License-Included (LI) AMIs for Microsoft SQL Server 2025, enabling fast deployment of the latest SQL Server release on Windows EC2 instances. These managed images are created and maintained by AWS and default to TLS 1.3 for improved security and performance. AMIs include preinstalled management tools such as AWS Tools for Windows PowerShell, AWS Systems Manager, and AWS CloudFormation, plus network and storage drivers. The images are available in all commercial AWS Regions and AWS GovCloud (US), simplifying provisioning and lifecycle management for enterprise workloads.

🔒 Amazon Braket now lets customers set per-device spending limits for quantum processing units (QPUs), enabling tighter cost controls and automated validation of task submissions. Tasks that would exceed remaining budgets are rejected at submission, and limits apply only to on-demand QPU tasks—not to simulators, notebook instances, hybrid jobs, or Braket Direct reservation tasks. Available now in all supported AWS Regions at no additional charge, limits can be updated or deleted any time; researchers may also apply for AWS Cloud Credits for Research to offset experiments.

🚀 Amazon Web Services has made Amazon MSK Serverless generally available in the South America (São Paulo) region, enabling customers to connect Apache Kafka applications without managing cluster capacity. MSK Serverless automatically provisions and scales compute and storage resources on demand, letting teams run Kafka with reduced operational overhead. This expansion aligns São Paulo with AWS's global GA regions.

🚀 Amazon MQ now supports RabbitMQ 4.2, bringing native AMQP 1.0 support, a Raft-based metadata store (Khepri), local shovels, and message priorities for quorum queues. The release also includes throughput and memory management improvements and a range of bug fixes. Brokers can be created on m7g instance types via the Console, CLI, or SDKs, with automatic patch-version management and configurable resource limits. Note that mirroring of classic queues is no longer supported; quorum queues remain the sole replicated, durable queue type.

🔍 Amazon CloudWatch Application Map now detects and visualizes services that are not instrumented with Application Signals, providing out-of-the-box observability coverage across distributed environments. It also offers cross-account, unified views and retains a history of recent changes so teams can correlate configuration modifications with performance shifts. These enhancements aim to reduce MTTR and are available at no additional cost in most AWS commercial regions.

🔧 AWS Step Functions' TestState API now supports local unit testing of complete workflows, including advanced constructs like Map and Parallel states, without deploying state machines to AWS. Developers can mock AWS service integrations and opt into API contract validation so mocked responses align with actual service outputs, improving test fidelity. TestState calls integrate with frameworks such as Jest and pytest and can be used in CI/CD pipelines; the feature is available via the AWS SDK and CLI in all Regions where Step Functions is offered.

🎨 Amazon QuickSight now provides expanded dashboard theming to help organizations maintain consistent brand identity across analytics dashboards and embedded experiences. Authors can customize interactive sheet backgrounds with gradients and angles, implement sophisticated card styling with configurable borders and opacity, and control typography for titles and subtitles at the theme level. These theme-level controls help ensure visual consistency across departments and enable embedded dashboards to match host application styling so analytics appear native. The enhancements address enterprise needs for professional, brand-aligned presentation and are available in all supported QuickSight regions.

⏳ Amazon SageMaker Unified Studio now supports long-running background sessions using corporate identities via AWS IAM Identity Center's trusted identity propagation (TIP). Users can launch interactive notebooks and data processing on SageMaker, Amazon EMR, and AWS Glue that persist when they log off or experience network or credential interruptions. Sessions retain corporate permissions and can run up to 90 days (default 7 days), reducing the need for continuous monitoring and improving productivity for multi-hour or multi-day workloads.

🚀 Amazon Redshift Serverless now offers a lower base capacity of 4 RPUs, reducing the prior minimum from 8 RPUs and enabling entry-level analytics at roughly $1.50 per hour. Each RPU provides 16 GB of memory, so the 4‑RPU configuration supplies up to 64 GB of memory and supports up to 32 TB of Redshift managed storage with limits such as 100 columns per table. The configuration is available in multiple Asia Pacific, European, Middle East, African and Mexico regions and is suited for both development and lightweight production workloads. You continue to pay per-second for active RPU-hours, helping lower cost for sporadic or small-scale analytics.

🔒 Amazon CloudFront now supports TLS 1.3 for connections to origins, automatically enabled across custom origins, Amazon S3, and Application Load Balancers with no configuration changes required. The upgrade provides stronger encryption and reduced handshake latency, delivering up to 30% faster connection establishment when an origin supports TLS 1.3. CloudFront will negotiate TLS 1.3 where supported while maintaining backward compatibility with older TLS versions. This support is available at no additional charge in all CloudFront edge locations and benefits sensitive workloads such as financial services, healthcare, and e-commerce.

🚀 Amazon EC2 C7i instances are now available in the Asia Pacific (Melbourne) Region, powered by custom 4th Gen Intel Xeon Scalable processors (Sapphire Rapids) exclusive to AWS. They deliver up to 15% better performance over comparable Intel-based offerings and up to 15% better price-performance versus C6i. C7i offers larger sizes up to 48xlarge, two bare-metal sizes (metal-24xl, metal-48xl) with built-in Intel accelerators and supports AMX and up to 128 EBS volumes to scale data-intensive workloads.

🔐 Amazon CloudFront now supports CWT (CBOR Web Tokens) and CAT (Common Access Tokens), providing a compact, binary alternative to JWTs using CBOR and protected with COSE. Developers can validate, generate, and refresh tokens directly in CloudFront Functions with sub-millisecond execution and seamless integration with the CloudFront Functions KeyValueStore for secure key management. CAT extends CWT with fine-grained access controls such as URL patterns, IP restrictions, and HTTP method limits, enabling edge-enforced authorization without additional charge.