12/15/2025, 12:00:00 AM ~ 12/16/2025, 12:00:00 AM (UTC)
Recent Announcements
Amazon Connect now supports multiple choice and date questions in evaluation forms
Amazon Connect provides two new evaluation question types to capture deeper insights on human and AI agent performance. Managers can now create questions that allow multiple answer selections, such as the products that the customer was interested in during a sales conversation. Additionally, managers can capture dates for customer and agent actions within evaluation forms. For example, you can record when a customer applied for a loan and when it was approved.\n This feature is available in all regions where Amazon Connect is offered. To learn more, please visit our documentation and our webpage.
Amazon Elastic VMware Service (Amazon EVS) is now available in additional Regions
Today, we’re announcing that Amazon Elastic VMware Service (Amazon EVS) is now available in all availability zones in the US West (N. California), Asia Pacific (Hyderabad), Asia Pacific (Malaysia), Canada West (Calgary), Mexico (Central), and South America (São Paulo) Regions. This expansion provides more options to leverage the scale and flexibility of AWS for running your VMware workloads in the cloud.\n Amazon EVS lets you run VMware Cloud Foundation (VCF) directly within your Amazon Virtual Private Cloud (VPC) on EC2 bare-metal instances, powered by AWS Nitro. Using either our step-by-step configuration workflow or the AWS Command Line Interface (CLI) with automated deployment capabilities, you can set up a complete VCF environment in just a few hours. This rapid deployment enables faster workload migration to AWS, helping you eliminate aging infrastructure, reduce operational risks, and meet critical timelines for exiting your data center. The added availability in these Regions gives your VMware workloads lower latency through closer proximity to your end users, compliance with data residency or sovereignty requirements, and additional high availability and resiliency options for your enhanced redundancy strategy. To get started, visit the Amazon EVS product detail page and user guide.
Announcing cost allocation using users’ attributes
AWS announces a new cost allocation feature that uses existing workforce user attributes like cost center, division, organization, and department to track and analyze AWS application usage and cost. This new capability enables customers to allocate per-user monthly subscription and on-demand fees of AWS applications, such as Amazon Q Business, Amazon Q Developer, and Amazon QuickSight, to respective internal business units.\n Customers should import their workforce users’ attributes to IAM Identity Center, the recommended service for managing workforce access to AWS applications. After importing the attributes, customers can enable one or more of these attributes as cost allocation tags from the AWS Billing and Cost Management console. When users access AWS applications, their usage and cost are automatically recorded with selected attributes. Cloud Financial Operations (FinOps) professionals can view and analyze costs in AWS Cost Explorer and AWS CUR 2.0, gaining visibility into how different teams drive AWS usage and costs. Support for cost allocation using user attributes is generally available in all AWS Regions, excluding GovCloud (US) Regions and China (Beijing) and China (Ningxia) Regions. To learn more, see organizing and tracking cost using AWS cost allocation tags.
Amazon EKS introduces enhanced network security policies
Today, we’re announcing enhanced network policy capabilities in Amazon Elastic Kubernetes Service (EKS), allowing customers to improve the network security posture for their Kubernetes workloads and their integrations with cluster-external destinations. This enhancement builds on network segmentation features previously supported in EKS. Now you can centrally enforce network access filters across the entire cluster, as well as leverage Domain Name System (DNS) based policies to secure egress traffic from your cluster’s environment.\n As customers continue to scale their application environments using EKS, network traffic isolation is increasingly fundamental for preventing unauthorized access to resources inside and outside the cluster. To address this, EKS introduced support for Kubernetes NetworkPolicies in the Amazon VPC Container Network Interface (VPC CNI) plugin, allowing you to segment pod-to-pod communication at a namespace level. Now you can further strengthen the defensive posture for your Kubernetes network environment by centrally managing network filters for the whole cluster. Also, cluster admins now have a more stable and predictable approach for preventing unauthorized access to cluster-external resources in the cloud or on-prem using egress rules that filter traffic to external endpoints based on their Fully Qualified Domain Name (FQDN). These new network security features are available in all commercial AWS Regions for new EKS clusters running Kubernetes version 1.29 or later, with support for existing clusters to follow in the coming weeks. ClusterNetworkPolicy is available in all EKS cluster launch modes using VPC CNI v1.21.0 or later. DNS-based policies are only supported in EKS Auto Mode-launched EC2 instances. To learn more, visit the Amazon EKS documentation or read the launch blog post here.
AWS Billing and Cost Management now supports PDF export and CSV data download for Dashboards
Today, AWS announces PDF export and CSV data download capabilities for AWS Billing and Cost Management Dashboards. These new features enable you to export your customized dashboards as PDF files for offline analysis and sharing, and download individual widget data in CSV format for detailed examination in spreadsheet applications. With these capabilities, you now have more ways to distribute AWS cost insights across your organization, in addition to sharing dashboards with can-view or can-edit access.\n Billing and Cost Management Dashboards allows you to export entire dashboards or individual widgets as PDF files directly from the console, eliminating the need for screenshots or manual formatting. The PDF export feature provides formatted reports that maintain consistent appearance and preserve dashboard layouts, making them ideal for sharing with stakeholders during board meetings, reviews, or strategic planning sessions. For detailed data analysis needs, you can export individual widget data in CSV format, enabling analysts to perform granular examination of specific cost metrics in their preferred spreadsheet tools. AWS Billing and Cost Management Dashboards PDF and CSV export features are available at no additional cost in all AWS commercial Regions, excluding AWS China Regions. To get started, visit the AWS Billing and Cost Management console and select “Dashboards” from the left navigation menu. For more information, see the AWS Billing and Cost Management Dashboards export user guide.
ACM now supports automated certificate management for Kubernetes
AWS Certificate Manager (ACM) now automates certificate provisioning and distribution for Kubernetes workloads through AWS Controllers for Kubernetes (ACK). Previously, ACM automated certificate management for AWS-integrated services like Application Load Balancers and CloudFront. However, using ACM certificates with applications terminating TLS in Kubernetes required manual steps: exporting certificates and private keys via API, creating Kubernetes Secrets, and updating them at renewal. This integration extends ACM’s automation to any Kubernetes workload for both public and private certificates, enabling you to manage certificates using native Kubernetes APIs.\n With ACK, you define certificates as Kubernetes resources, and the ACK controller automates the complete certificate lifecycle: requesting certificates from ACM, exporting them after validation, updating Kubernetes Secrets with the certificate and private key, and automatically updating those Secrets at renewal. This enables you to use ACM exportable public certificates (launched in June 2025) for internet-facing workloads or AWS Private CA private certificates for internal services in Amazon EKS or other Kubernetes environments. Use cases include terminating TLS in application pods (NGINX, custom applications), securing service mesh communication (Istio, Linkerd), and managing certificates for third-party ingress controllers (NGINX Ingress, Traefik). You can also distribute certificates to hybrid and edge Kubernetes environments. This feature is available in all commercial, AWS GovCloud (US), and AWS China regions where ACM is available. To learn more, visit the Git hub link or read our documentation and our pricing page.
Amazon EC2 M7a instances are now available in the Europe (London) Region
Starting today, the general-purpose Amazon EC2 M7a instances are now available in AWS Europe (London) Region. M7a instances, powered by 4th Gen AMD EPYC processors (code-named Genoa) with a maximum frequency of 3.7 GHz, deliver up to 50% higher performance compared to M6a instances.\n With this additional region, M7a instances are available in the following AWS Regions: US East (Ohio), US East (N. Virginia), US West (Oregon), Asia Pacific (Sydney, Tokyo), and Europe (Frankfurt, Ireland, Spain, Stockholm, London). These instances can be purchased as Savings Plans, Reserved, On-Demand, and Spot instances. To get started, visit the AWS Management Console, AWS Command Line Interface (CLI), and AWS SDKs. To learn more, visit the M7a instances page.
AWS Blogs
AWS Japan Blog (Japanese)
- Accelerating CMMC Response: How AWS and Wiz Can Help Public Sector Organizations
- Contribution: Automated translation of scripts for financial briefings etc. using AI generated by SCRIPTS Asia – Fusion of Amazon Bedrock and Knowledge –
- AWS Weekly — 2025/12/8
- Migrating from AWS CodeDeploy to Amazon ECS Embedded Blue/Green Deployment
- Amazon CloudWatch introduces integrated data management and analytics for operations, security, and compliance
- Weekly Generative AI with AWS — 2025/12/08
- Active Exploitation Activities of Chinese-Related Threat Actors Against the React2Shell Vulnerability (CVE-2025-55182)
- Interview with Brother Industries Co., Ltd.: IoT Platform Operation and AWS Use Cases
AWS News Blog
AWS Open Source Blog
AWS Big Data Blog
- Accelerate Apache Hive read and write on Amazon EMR using enhanced S3A
- Amazon EMR HBase on Amazon S3 transitioning to EMR S3A with comparable EMRFS performance
- How Socure achieved 50% cost reduction by migrating from self-managed Spark to Amazon EMR Serverless
AWS Contact Center
Containers
- Amazon EKS introduces enhanced network policy capabilities
- Automate java performance troubleshooting with AI-Powered thread dump analysis on Amazon ECS and EKS
AWS Database Blog
- Create a SQL Server Developer Edition instance on Amazon RDS for SQL Server
- Inside Booking.com’s ultra-low latency feature platform with Amazon ElastiCache
AWS for Industries
- Navigating the EU Data Act for IoT Solutions: Part 1- Healthcare Industry lens
- Pharmacy in the Cloud: AWS transforms medication safety and operations
- How to Build an Enterprise-Scale GenAI Gateway
Artificial Intelligence
- Checkpointless training on Amazon SageMaker HyperPod: Production-scale training with faster fault recovery
- Adaptive infrastructure for foundation model training with elastic training on SageMaker HyperPod
- Customize agent workflows with advanced orchestration techniques using Strands Agents
- Operationalize generative AI workloads and scale to hundreds of use cases with Amazon Bedrock – Part 1: GenAIOps
- Applying data loading best practices for ML training with Amazon S3 clients
Networking & Content Delivery
AWS Security Blog
- What AWS Security learned from responding to recent npm supply chain threat campaigns
- Amazon Threat Intelligence identifies Russian cyber threat group targeting Western critical infrastructure
AWS Storage Blog
- Architecting high performance AI-driven data applications with Spice AI and AWS
- Building an open warehouse architecture: Supabase’s integration with Amazon S3 Tables