Amazon Detective now integrates with Amazon Security Lake, enabling security analysts to query and retrieve logs stored in Security Lake. You can use this integration to get additional information from AWS CloudTrail logs and Amazon Virtual Private Cloud (Amazon VPC) Flow Logs stored in Security Lake while conducting security investigations in Detective.
Amazon EventBridge now supports partner integrations with Adobe and Stripe
Amazon EventBridge now supports partner integrations with Adobe I/O events and Stripe , enabling you to route events from these platforms to over 20 AWS services making it easier to build event-driven architectures for handling payments, invoices, ordering, and much more. By leveraging these integrations you can increase developer agility by spending less time writing integration code and build features faster that combine best-in-class Software-as-a-Service (SaaS) capabilities with AWS services.
Announcing AWS Console-to-Code (Preview) to generate code for console actions
Today, Amazon Web Services, Inc. (AWS) announced AWS Console-to-Code is in preview. It is a generative AI capability that makes it simple, fast, and cost-effective to move from prototyping in the AWS Management Console to deploying production code for your workloads. Customers can now generate code for their console actions in their preferred format. The code helps customers get started and bootstrap their automation pipelines for their workloads tasks.
Amazon Detective supports security investigations for Amazon GuardDuty ECS Runtime Monitoring
Amazon Detective now supports security investigations for threats detected by Amazon GuardDuty Elastic Container Service (ECS) Runtime Monitoring. Amazon Detective now provides enhanced visualizations and additional context for detections on ECS. You can use the new runtime threat detections from GuardDuty and the investigative capabilities from Detective to improve your detection and response for potential threats to your container workloads.
IAM Access Analyzer introduces custom policy checks powered by automated reasoning
AWS Identity and Access Manager (IAM) Access Analyzer now provides custom policy checks to validate that IAM policies adhere to your security standards ahead of deployments. Custom policy checks use the power of automated reasoning—security assurance backed by mathematic proof— to help security teams proactively detect nonconformant updates to policies. For example, IAM policy changes that are more permissive than their previous version. Security teams can use these checks to streamline their reviews, automatically approving policies that conform with their security standards, and inspecting more deeply when they don’t. This new kind of validation provides you higher security assurance in the cloud.
You can now manage and back up FSx for ONTAP FlexGroup volumes using the AWS Console and API
Amazon FSx for NetApp ONTAP, a service that provides fully-managed shared storage built on NetApp’s popular ONTAP file system, now allows you to create, manage, and back up FlexGroup volumes using the AWS Management Console, FSx CLI, and AWS SDK, making it even easier to manage and protect your data at-scale.
Introducing Amazon GuardDuty ECS Runtime Monitoring, including AWS Fargate
Today, AWS announces Amazon GuardDuty ECS Runtime Monitoring, an expansion of Amazon GuardDuty that introduces runtime threat detection for Amazon Elastic Container Service (Amazon ECS) workloads—including serverless container workloads running on AWS Fargate.
Amazon Inspector expands AWS Lambda code scanning with generative AI powered remediation
Amazon Inspector code scanning for AWS Lambda functions now includes assisted code remediation using generative artificial intelligence (AI) and automated reasoning. Amazon Inspector code remediation for Lambda function provides in-context code patches for multiples classes of vulnerabilities detected during security scans for AWS Lambda function. It extends the Amazon Inspector capabilities to assess custom proprietary Lambda code for security issues like injection flaws, data leaks, weak cryptography, or missing encryption based on AWS security best practices. Upon discovering vulnerabilities, Amazon Inspector provides actionable security findings, including affected code snippets and remediation suggestions. As part of supported findings, Amazon Inspector provides code patches associated with the vulnerabilities, simplifying the process of updating vulnerable code.
Announcing new enhancements to Amazon CodeWhisperer
Today, AWS announces new updates to Amazon CodeWhisperer, including support for Infrastructure as Code (IaC), AI-powered code remediation, and expanded language support for security scanning, all generally available. CodeWhisperer is also now available in Visual Studio, in preview. These updates help to enable faster and more efficient software development by offloading undifferentiated work and delivering more automation, security, efficiency, and accelerated code delivery for customers, and provides this support in more places where developers love to work.
FSx for ONTAP now supports creating Multi-AZ file systems in Shared VPC participant accounts
Amazon FSx for NetApp ONTAP now enables you to create Multi-AZ file systems in Shared VPCs from participant accounts, making it even easier for your organization to decentralize how you administer network and storage resources.