Category: Security, Identity, & Compliance

A couple days ago, I had the honor of doing a live stream on generative AI, discussing recent innovations and concepts behind the current generation of large language and vision models and how we got there. In today’s roundup of news and announcements, I will share some additional information—including an expanded partnership to make generative […]

Since the devastating earthquake in Türkiye and Syria, HAQM has activated disaster relief services to quickly provide relief items to impacted areas. The company and HAQM customers have donated nearly 100,000 relief items so far, and donations continue to come in. The AWS Disaster Preparedness and Response team is providing trained technical volunteers and solutions […]

At AWS, security is the top priority. Starting today, HAQM Simple Storage Service (HAQM S3) encrypts all new objects by default. Now, S3 automatically applies server-side encryption (SSE-S3) for each new object, unless you specify a different encryption option. SSE-S3 was first launched in 2011. As Jeff wrote at the time: “HAQM S3 server-side encryption […]

Update (4/27/2023): HAQM S3 now automatically enables S3 Block Public Access and disables S3 access control lists (ACLs) for all new S3 buckets in all AWS Regions. Starting in April of 2023 we will be making two changes to HAQM Simple Storage Service (HAQM S3) to put our latest best practices for bucket security into […]

I am excited to announce the availability of AWS Key Management Service (AWS KMS) External Key Store. Customers who have a regulatory need to store and use their encryption keys on premises or outside of the AWS Cloud can now do so. This new capability allows you to store AWS KMS customer managed keys on […]

To identify potential security threats and vulnerabilities, customers should enable logging across their various resources and centralize these logs for easy access and use within analytics tools. Some of these data sources include logs from on-premises infrastructure, firewalls, and endpoint security solutions, and when utilizing the cloud, services such as HAQM Route 53, AWS CloudTrail, […]

HAQM Inspector is a vulnerability management service that continually scans workloads across HAQM Elastic Compute Cloud (HAQM EC2) instances, container images living in HAQM Elastic Container Registry (HAQM ECR), and, starting today, AWS Lambda functions and Lambda layers. Until today, customers that wanted to analyze their mixed workloads (including EC2 instances, container images, and Lambda […]

Today, we announce automated data discovery for HAQM Macie. This new capability allows you to gain visibility into where your sensitive data resides on HAQM Simple Storage Service (HAQM S3) at a fraction of the cost of running a full data inspection across all your S3 buckets. At AWS, security is our top priority. The […]