9/5/2025, 12:00:00 AM ~ 9/8/2025, 12:00:00 AM (UTC)
Recent Announcements
Amazon RDS now supports the latest GDR updates for Microsoft SQL Server
Amazon Relational Database Service (Amazon RDS) for SQL Server now supports the latest General Distribution Release (GDR) updates for Microsoft SQL Server. This release includes support for Microsoft SQL Server 2016 SP3 KB5063762 (RDS version 13.00.6465.1.v1), SQL Server 2017 CU31 KB5063759 (RDS version 14.00.3500.1.v1), SQL Server 2019 CU32 KB5063757 (RDS version 15.00.4440.1.v1) and SQL Server 2022 CU20 KB5063814 (RDS version 16.00.4210.1.v1).\n The GDR updates address vulnerabilities described in CVE-2025-49758, CVE-2025-24999, CVE-2025-49759, CVE-2025-53727, and CVE-2025-47954. For additional information on the improvements and fixes included in these updates, see Microsoft documentation for KB5063762, KB5063759, KB5063757 and KB5063814. We recommend that you upgrade your Amazon RDS for SQL Server instances to apply these updates using Amazon RDS Management Console, or by using the AWS SDK or CLI. You can learn more about upgrading your database instance in the Amazon RDS SQL Server User Guide for upgrading your RDS Microsoft SQL Server DB engine.
Amazon CloudFront launches TLS security policy with post-quantum support
Amazon CloudFront announces support for hybrid post-quantum key establishment across all existing Transport Layer Security (TLS) security policies, providing enhanced protection against future quantum computing threats for client-to-edge connections. Additionally, CloudFront launched a new TLS 1.3 only security policy that enhances TLS options between viewers and edge locations. These updates allow customers to leverage quantum-resistant encryption while having more flexibility in configuring their CloudFront distributions to meet specific security and compliance requirements.\n The post-quantum cryptography (PQC) capabilities are automatically enabled for client-to-edge connections, providing future-proof encryption that ensures long-term data security and regulatory compliance readiness. PQC support is available on all existing security policies by default, requiring no customer configuration. The new TLS1.3_2025 policy, which supports TLS 1.3 only, enables customers to leverage the latest TLS protocol, which provides improved security and performance compared to earlier TLS versions. This is particularly useful for organizations that enforce using the most up-to-date security standards. These PQC capabilities and new security policy are available in all CloudFront edge locations. There are no additional charges for using PQC or the TLS1.3_2025 policy. To learn more about Post Quantum Cryptography and this new TLS policy and how to implement them in your CloudFront distributions, visit the CloudFront documentation. CloudFront documentation.
MediaConvert now supports Time-Addressable Media Store (TAMS)
AWS Elemental MediaConvert now integrates with Time-Addressable Media Store (TAMS), enabling customers to temporally reference and extract media asset segments. This capability allows MediaConvert customers to work more efficiently meet quick turn around deadlines. With TAMS integration, customers can extract highlights from live events for near real-time social media publishing, repurpose archived broadcast content into fresh programming or documentaries, and streamline media operations by connecting directly to existing broadcast infrastructure and content management systems.\n This integration is designed for customers who operate their own TAMS servers—MediaConvert does not host or manage a TAMS instance. By leveraging your own TAMS deployment, MediaConvert can ingest time-based media segments on demand and use them as inputs in your encoding workflows. Whether you’re modernizing a legacy archive, building automation around editorial workflows, or enabling UGC teams to clip and publish with precision, the combination of MediaConvert and TAMS provides a powerful foundation for flexible, high-performance media processing at scale. Please visit the TAMS specification and MediaConvert’s documentation for more information on this new feature.
Amazon RDS Proxy now supports Internet Protocol Version 6 (IPv6)
Amazon Relational Database Service (RDS) Proxy now offers customers the option to use Internet Protocol version 6 (IPv6) addresses to pool and share database connections coming from an application. The existing endpoints supporting Internet Protocol version 4 (IPv4) will remain available for backwards compatibility. Additionally, customers now have the option to specify RDS Proxy target connections using either IPv4 or IPv6.\n The continued growth of the Internet, particularly in the areas of mobile applications, connected devices, and IoT, has spurred an industry-wide move to IPv6. IPv6 increases the number of available addresses by several orders of magnitude so customers no longer need to manage overlapping address spaces in their VPCs. Many applications, including those built on modern serverless architectures, may need to have a high number of open connections to the database or may frequently open and close database connections, exhausting the database memory and compute resources. Amazon RDS Proxy allows applications to pool and share database connections, improving your database efficiency and application scalability. For information on supported database engine versions and regional availability of RDS Proxy, refer to our RDS and Aurora documentations.
Enhancing threat detection with Amazon GuardDuty new custom entity lists
Today, AWS announced the general availability of Amazon GuardDuty custom threat detection using entity lists. This new feature enhances threat detection capabilities in GuardDuty by extending support to incorporate your own domain-based threat intelligence into the service beyond originally supported custom IP list. You can now detect threats in GuardDuty using malicious domains or IP addresses defined in your custom threat list. As part of this update, GuardDuty introduces a new finding type, Impact:EC2/MaliciousDomainRequest.Custom, which is triggered when activity related to a domain in your custom threat list is detected. Additionally, you can use entity lists to suppress alerts from trusted sources, giving you greater control over your threat detection strategy.\n Entity lists offer enhanced flexibility compared to the previous IP address lists. These new lists can include IP addresses, domains, or both, allowing for more comprehensive threat intelligence integration. Unlike the legacy IP list format, entity lists provides simplified permission management and avoids impacting IAM policy size limits across multiple AWS Regions, making it easier to implement and manage custom threat detection across your AWS environment. GuardDuty custom entity list is available in all AWS Regions where GuardDuty is offered, excluding China Regions and GovCloud (US) Regions.
Amazon Aurora PostgreSQL Limitless Database now supports PostgreSQL 16.9
Amazon Aurora PostgreSQL Limitless Database is now available with PostgreSQL version 16.9 compatibility. This release contains product improvements and bug fixes made by the PostgreSQL community, along with Aurora Limitless-specific additions such as support for the hstore extension, the auto_explain extension, and various performance improvements. The hstore extension allows for storing sets of key/value pairs within a single PostgreSQL value, while the auto-explain extension logs execution plans of slow statements automatically.\n Aurora PostgreSQL Limitless Database makes it easy for you to scale your relational database workloads by providing a serverless endpoint that automatically distributes data and queries across multiple Amazon Aurora Serverless instances while maintaining the transactional consistency of a single database. Aurora PostgreSQL Limitless Database offers capabilities such as distributed query planning and transaction management, removing the need for you to create custom solutions or manage multiple databases to scale. As your workloads increase, Aurora PostgreSQL Limitless Database adds compute resources while staying within your specified budget, so there is no need to provision for peak, and compute automatically scales down when demand is low. Aurora PostgreSQL Limitless Database is available in the following AWS Regions: US East (N. Virginia, Ohio), US West (N. California, Oregon), Africa (Cape Town), Asia Pacific (Hong Kong, Hyderabad, Jakarta, Malaysia, Melbourne, Mumbai, Osaka, Seoul, Singapore, Sydney, Thailand, Tokyo), Canada (Central), Canada West (Calgary), Europe (Frankfurt, Ireland, London, Milan, Paris, Spain, Stockholm, Zurich), Israel (Tel Aviv), Mexico (Central), Middle East (Bahrain, UAE), and South America (Sao Paulo). For pricing details, visit Amazon Aurora pricing. To learn more, read the Aurora PostgreSQL Limitless Database documentation and get started by creating an Aurora PostgreSQL Limitless Database in only a few steps in the Amazon RDS console.
Today, AWS announces the general availability of Organizational Notification Configurations for AWS User Notifications. This launch allows AWS Organizations users to centrally configure and view notifications across their organization. You can use the Management Account or Delegated Administrators (DAs) to configure and view notifications about accounts included in specific organizational units (OUs) or all accounts rolling up to an organization. Once configured, events from any of the member accounts will generate a notification in the Management Account. User Notifications supports up to 5 DAs.\n You can use this capability to setup notifications for any supported Amazon EventBridge Event. For example, you can setup a notification configuration to send a push notification to the AWS Console Mobile Application anytime a user in any of the member accounts in your organization signs in to the console without MFA. Notifications will also be available in the Admin’s Console Notifications Center. This new capability is available in all AWS Regions where AWS User Notifications is available. To learn more about managing notifications across your organization with AWS User Notifications, please refer to the user guide.
Amazon RDS Custom now supports the latest GDR updates for Microsoft SQL Server
Amazon Relational Database Service (Amazon RDS) Custom for SQL Server now supports the latest General Distribution Release (GDR) updates for Microsoft SQL Server. This includes support for Microsoft SQL Server 2019 CU32 KB5063757 (RDS version 15.00.4440.1.v1) and SQL Server 2022 CU20 KB5063814 (RDS version 16.00.4210.1.v1).\n The GDR updates address vulnerabilities described in CVE-2025-49758, CVE-2025-24999, CVE-2025-49759, CVE-2025-53727, and CVE-2025-47954. For additional information on the improvements and fixes included in these updates, please see Microsoft documentation for KB5063757 and KB5063814. We recommend that you upgrade your Amazon RDS Custom for SQL Server instances to apply these updates using Amazon RDS Management Console, or by using the AWS SDK or CLI. You can learn more about upgrading your database instance in the Amazon RDS Custom User Guide.
AWS Backup now supports organization-wide reports in six additional regions
AWS Backup Audit Manager now supports cross-account, cross-Region reports in Asia Pacific (Hyderabad, Jakarta, Melbourne), Europe (Spain, Zurich), and Middle East (UAE) Regions.\n Now, you can use your AWS Organizations’ management or delegated administrator account to generate aggregated cross-account and cross-Region reports on your data protection policies and retrieve operational data about your backup and recovery activities. AWS Backup enables you to centralize and automate data protection policies across AWS services based on organizational best practices and regulatory standards, and AWS Backup Audit Manager is a feature within the AWS Backup service that allows you to audit and report on the compliance of your data protection policies to help you meet your business and regulatory needs. To find a full list of AWS Regions in which AWS Backup Audit Manager is available, please refer to the AWS Backup Regional availability. To learn more about AWS Backup Audit Manager, visit the product page and documentation. To get started, visit the AWS Backup console.
AWS Blogs
AWS Japan Blog (Japanese)
- Amazon Connect Update Summary — August 2025
- Unlock New Possibilities: Converting Assembler Programs to COBOL with AWS Mainframe Modernization
- Announcing extended support for Amazon DocumentDB (with MongoDB compatibility) version 3.6
- Upgrading Amazon DocumentDB 3.6 to 5.0 with near-zero downtime
- New Launch - AWS Asia Pacific (New Zealand) Region
- AWS will participate in the DocumentDB project to develop interoperable open source document database technology
- AWS Weekly Roundup: Amazon EC2, Amazon Q Developer, IPv6 Updates, etc. (September 1, 2025)
- Learn the new role-specific Jam Journey with AWS Skill Builder
- How to monitor AI agents using CloudWatch agents
AWS Cloud Financial Management
AWS Big Data Blog
AWS Database Blog
- Automating vector embedding generation in Amazon Aurora PostgreSQL with Amazon Bedrock
- Group database tables under AWS Database Migration Service tasks for PostgreSQL source engine
AWS DevOps & Developer Productivity Blog
AWS for Industries
Artificial Intelligence
- Accelerating HPC and AI research in universities with Amazon SageMaker HyperPod
- Exploring the Real-Time Race Track with Amazon Nova
AWS for M&E Blog
- Introducing: Guidance for audio quality control with TAG Video Systems and AWS
- KKBOX enhances music recommendations with Amazon Personalize