9/10/2025, 12:00:00 AM ~ 9/11/2025, 12:00:00 AM (UTC)
Recent Announcements
Introducing AWS CDK Refactor (Preview)
AWS Cloud Development Kit (CDK) CLI now enables safe infrastructure refactoring through the new ‘cdk refactor’ command in preview. This feature allows developers to rename constructs, move resources between stacks, and reorganize CDK applications while preserving the state of deployed resources. By leveraging AWS CloudFormation’s refactor capabilities with automated mapping computation, CDK Refactor eliminates the risk of unintended resource replacement during code restructuring.\n Previously, infrastructure as code maintenance often requires reorganizing resources and improving code structure, but these changes traditionally risked replacing existing resources due to logical ID changes. With the CDK Refactor feature, developers can confidently implement architectural improvements like breaking down monolithic stacks, introducing inheritance patterns, or upgrading to higher-level constructs without complex migration procedures or risking downtime of stateful resources. This allows teams to continuously evolve their infrastructure code while maintaining the stability of their production environments.
The AWS CDK Refactor feature is available in all AWS Regions where the AWS CDK is supported.
For more information and a walkthrough of the feature, check out the blog post and the documentation. You can read more about the AWS CDK here.
Amazon IVS now supports private ingest via interface VPC endpoints
Amazon Interactive Video Service (Amazon IVS) now supports media ingest via interface VPC endpoints powered by AWS PrivateLink. With this launch, you can securely broadcast RTMP(S) streams to IVS Low-Latency channels or IVS Real-Time stages without sending traffic over the public internet. You can create interface VPC endpoints to privately connect your applications to Amazon IVS from within your VPC or from on-premises environments over AWS Direct Connect. This provides private, reliable connectivity for your live video workflows.\n Amazon IVS support for media ingest via interface VPC endpoints is available today in the US West (Oregon), Europe (Frankfurt), and Europe (Ireland) AWS Regions. Standard AWS PrivateLink pricing applies. See the AWS PrivateLink pricing page for details.
To learn more, please visit the Amazon IVS private ingest documentation page.
AWS IoT SiteWise now supports retraining of anomaly detection models
Today, AWS announced new capabilities for native anomaly detection in AWS IoT SiteWise. This release includes automated model retraining, flexible promotion modes, and exposed model metrics, all designed to enhance the anomaly detection feature.\n The automated retraining capability allows models to be automatically retrained on a schedule ranging from a minimum of 30 days to a maximum of one year, eliminating the need to manually retrain models. This feature ensures that models stay up-to-date with changing equipment conditions or configurations, thereby maintaining optimal performance over time. Additionally, flexible promotion modes give customers the choice between service-managed and customer-managed model promotion. Automatic promotion enables AWS IoT SiteWise to evaluate and promote the best-performing model without customer intervention, while manual promotion allows customers to review comprehensive, exposed model metrics—including precision, recall, and Area Under the ROC Curve (AUC)—before deciding which model version to activate. This flexibility allows choice between a hands-off or human oversight approach. Multivariate anomaly detection is available in US East (N. Virginia) , Europe (Ireland) , and Asia Pacific (Sydney) AWS Regions where AWS IoT SiteWise is offered. To learn more, read the launch blog and user guide.
Amazon Bedrock AgentCore Gateway supports AWS PrivateLink invocation and invocation logging
Amazon Bedrock AgentCore Gateway now supports AWS PrivateLink invocation and invocation logging through Amazon CloudWatch, Amazon S3 and Amazon Data Firehose. Amazon Bedrock AgentCore Gateway provides an easy and secure way for developers to build, deploy, discover, and connect to agent tools at scale. With the PrivateLink support and invocation logging, you can apply network and governance requirements to agents and tools through AgentCore Gateway.\n The AWS PrivateLink support allows users and agents from a virtual private cloud (VPC) network to access AgentCore Gateway without going through the public internet. With invocation logging, you gain visibility into each invocation log and can deep dive into issues or audit activities. Amazon Bedrock AgentCore is currently in preview and it is available in US East (N. Virginia), US West (Oregon), Asia Pacific (Sydney), and Europe (Frankfurt). Learn more about the features from the AWS documentation. Learn more about Amazon Bedrock AgentCore and it’s services in the News Blog.
Amazon EC2 I8g instances now available in AWS US East (Ohio) region
AWS is announcing the general availability of Amazon EC2 Storage Optimized I8g instances in US East (Ohio) region. I8g instances offer the best performance in Amazon EC2 for storage-intensive workloads. I8g instances are powered by AWS Graviton4 processors that deliver up to 60% better compute performance compared to previous generation I4g instances. I8g instances use the latest third generation AWS Nitro SSDs, local NVMe storage that deliver up to 65% better real-time storage performance per TB while offering up to 50% lower storage I/O latency and up to 60% lower storage I/O latency variability. These instances are built on the AWS Nitro System, which offloads CPU virtualization, storage, and networking functions to dedicated hardware and software enhancing the performance and security for your workloads.\n Amazon EC2 I8g instances are designed for I/O intensive workloads that require rapid data access and real-time latency from storage. These instances excel at handling transactional, real-time, distributed databases, including MySQL, PostgreSQL, Hbase and NoSQL solutions like Aerospike, MongoDB, ClickHouse, and Apache Druid. They’re also optimized for real-time analytics platforms such as Apache Spark, data lakehouse and AI LLM pre-processing for training. I8g instances are available in 10 different sizes with up to 48xlarge including one metal size, 1.5 TiB of memory, and 45 TB local instance storage. They deliver up to 100 Gbps of network performance bandwidth, and 60 Gbps of dedicated bandwidth for Amazon Elastic Block Store (EBS). To learn more, visit the EC2 I8g page.
AWS HealthImaging now supports OpenID Connect (OIDC) authentication for DICOMweb APIs
AWS HealthImaging now supports OAuth 2.0-compatible identity providers for authentication of DICOMweb requests using OpenID Connect (OIDC). With OIDC authentication, you can manage secure access to DICOM resources using your organization’s standard procedures for creating, enabling, and disabling user accounts.\n With this launch, you can now use existing identity providers (IdPs)—such as Amazon Cognito, Okta, or Auth0—to issue JSON Web Tokens (JWTs) that authorize secure access to your DICOMweb endpoints. This launch makes it simpler to integrate AWS HealthImaging into existing medical imaging applications and expands HealthImaging’s support of DICOMweb standard interfaces that rely on OAuth 2.0-compatible authentication. Support for OIDC is limited to DICOMweb REST API requests. HealthImaging includes native support for AWS Identity and Access Management (IAM) users and roles for authentication of all API requests. Support for OpenID Connect (OIDC) is available in all AWS Regions where AWS HealthImaging is generally available: US East (N. Virginia), US West (Oregon), Asia Pacific (Sydney), and Europe (Ireland). To learn more, visit Using DICOMweb with AWS HealthImaging.
Amazon CloudWatch Network Monitoring adds flow visibility between Regions
With flow monitors in Amazon CloudWatch Network Monitoring, you can now monitor network performance of traffic flowing between AWS Regions across the AWS global network. Flow monitors provide near real-time visibility of network performance for workloads between compute instances such as Amazon EC2 and Amazon EKS, and AWS services such as Amazon S3 and Amazon DynamoDB. Flow monitors provide metrics to help you rapidly detect and attribute network-driven impairments for your workloads.\n With this release, flow monitors now help you to assess whether network performance issues on the AWS global network between a local and a remote Region are impacting your workloads. Because the flow monitor’s network health indicator (NHI) now also captures the health of the AWS global network on your workload’s network paths between Regions, you can quickly identify whether impairments in a local Region, in the AWS global network, or in the remote Region are affecting your workloads. This feature extends network visibility for flows to a remote Region’s public IP address, and for private traffic flowing to a remote Region over Amazon VPC peering or AWS Transit Gateway peering. For the full list of the AWS Regions where Network Monitoring for AWS workloads is available, visit the Regions list. To learn more, visit the Amazon CloudWatch Network Monitoring documentation.
AWS Elastic Beanstalk now supports dual-stack configuration for both Application Load Balancers (ALB) and Network Load Balancers (NLB), allowing environments to serve both IPv4 and IPv6 protocols. You can now set the IpAddressType option to “dualstack,” and Elastic Beanstalk will automatically configure your load balancer with dual-stack support, creating both A and AAAA DNS records. You can seamlessly update existing IPv4 environments to dual-stack or revert back as needed.\n This capability helps you reach users on IPv6-only networks while maintaining full IPv4 compatibility, supporting global accessibility requirements and IPv6 adoption mandates. The feature automatically handles DNS record management, simplifying IPv6 deployment for your applications and ensuring optimal performance for all users.
This feature is available in all AWS regions that support Elastic Beanstalk and Application and Network Load Balancers.
For detailed configuration steps, see the Elastic Beanstalk Developer Guide and Load Balancer documentation. Learn more about IPv6 networking in the Amazon VPC User Guide.
Fault Injection Service is now available in the Europe (Zurich) Region
AWS Fault Injection Service (FIS) is a fully managed service for running controlled fault injection experiments to improve application performance, observability, and resilience. Customers can test how their applications and people respond to real-world scenarios, including AZ Availability: Power Interruption and Cross-Region: Connectivity. Customers can create experiment templates in FIS to integrate experiments with continuous integration and release testing. Customers can also generate detailed reports of their FIS experiments and store them in Amazon S3, enabling them to audit and demonstrate compliance with both organizational and regulatory resilience testing requirements.\n With this launch, FIS expands to 24 regions, including: US East (Ohio and N. Virginia), US West (N. California, Oregon), Europe (Spain, Stockholm, Paris, Frankfurt, Ireland, London and Milan), Asia Pacific (Hong Kong, Mumbai, Seoul, Singapore, Sydney and Tokyo), Middle East (Bahrain), Canada (Central), South America (São Paulo), Africa (Cape Town), AWS GovCloud (US-East, US-West), and now Europe (Zurich). To learn more about AWS FIS, see our product page, documentation, and available regions.
Amazon EC2 C6in instances are now available in Asia Pacific (Thailand)
Starting today, Amazon Elastic Compute Cloud (Amazon EC2) C6in instances are available in AWS Region Asia Pacific (Thailand). These sixth-generation network optimized instances, powered by 3rd Generation Intel Xeon Scalable processors and built on the AWS Nitro System, deliver up to 200Gbps network bandwidth, for 2x more network bandwidth over comparable fifth-generation instances.\n Customers can use C6in instances to scale the performance of applications such as network virtual appliances (firewalls, virtual routers, load balancers), Telco 5G User Plane Function (UPF), data analytics, high performance computing (HPC), and CPU based AI/ML workloads. C6in instances are available in 10 different sizes with up to 128 vCPUs, including bare metal size. Amazon EC2 sixth-generation x86-based network optimized EC2 instances deliver up to 100Gbps of Amazon Elastic Block Store (Amazon EBS) bandwidth, and up to 400K IOPS. C6in instances offer Elastic Fabric Adapter (EFA) networking support on 32xlarge and metal sizes. C6in instances are available in these AWS Regions: US East (Ohio, N. Virginia), US West (N. California, Oregon), Europe (Frankfurt, Ireland, London, Milan, Paris, Spain, Stockholm, Zurich), Middle East (Bahrain, UAE), Israel (Tel Aviv), Asia Pacific (Hong Kong, Hyderabad, Jakarta, Malaysia, Melbourne, Mumbai, Osaka, Seoul, Singapore, Sydney, Tokyo, Thailand), Africa (Cape Town), South America (Sao Paulo), Canada (Central), Canada West (Calgary), and AWS GovCloud (US-West, US-East). To learn more, see the Amazon EC2 C6in instances. To get started, see the AWS Management Console, AWS Command Line Interface (AWS CLI), and AWS SDKs.
AWS Backup now supports selective backup of ACLs and ObjectTags in Amazon S3 backups
AWS Backup now lets you choose whether to include Access Control Lists (ACLs) and ObjectTags when backing up your Amazon S3 buckets.\n Previously, AWS Backup included these metadata components for all objects by default. This new capability lets you customize your backup approach based on your recovery needs, so you can include only the metadata you need. This capability is available in all AWS Regions where AWS Backup for Amazon S3 is available. For pricing and regional availability information, see the AWS Backup pricing page. To learn more about AWS Backup for Amazon S3, visit the product page and technical documentation. To get started, visit the AWS Backup console.
Amazon Managed Service for Prometheus now available in the AWS GovCloud (US) Regions
Amazon Managed Service for Prometheus is now available in the AWS GovCloud (US) Regions. Amazon Managed Service for Prometheus is a fully managed Prometheus-compatible monitoring service that makes it easy to monitor and alarm on operational metrics at scale.\n The list of all supported regions where Amazon Managed Service for Prometheus is generally available can be found in the user guide. Customers can send up to 1 billion active metrics to a single workspace and can create multiple workspaces per account, where a workspace is a logical space dedicated to the storage and querying of Prometheus metrics. To learn more about Amazon Managed Service for Prometheus, visit the product page.
AWS Blogs
AWS Big Data Blog
AWS Compute Blog
AWS Contact Center
AWS DevOps & Developer Productivity Blog
AWS for Industries
The Internet of Things on AWS – Official Blog
Artificial Intelligence
- TII Falcon-H1 models now available on Amazon Bedrock Marketplace and Amazon SageMaker JumpStart
- Oldcastle accelerates document processing with Amazon Bedrock
- How London Stock Exchange Group is detecting market abuse with their AI-powered Surveillance Guide on Amazon Bedrock
- Build trustworthy AI agents with Amazon Bedrock AgentCore Observability