da Agency

AWS Config now supports 30 new resource types

AWS Config now supports 30 additional AWS resource types across key services including Amazon Bedrock AgentCore and Amazon Cognito. This expansion provides greater coverage over your AWS environment, enabling you to more effectively discover, assess, audit, and remediate an even broader range of resources. With this launch, if you have enabled recording for all resource types, then AWS Config will automatically track these new additions. The newly supported resource types are also available in Config rules and Config aggregators. You can now use AWS Config to monitor the following newly supported resource types in all AWS Regions where the supported resources are available: Resource Types:

AWS::AppSync::DataSource
AWS::Deadline::LicenseEndpoint

AWS::Batch::ConsumableResource
AWS::Deadline::QueueEnvironment

AWS::Bedrock::DataSource
AWS::Detective::OrganizationAdmin

AWS::BedrockAgentCore::Gateway
AWS::GameLift::ContainerFleet

AWS::BedrockAgentCore::Memory
AWS::GameLift::ContainerGroupDefinition

AWS::Cognito::IdentityPoolRoleAttachment
AWS::GameLift::GameServerGroup

AWS::Cognito::LogDeliveryConfiguration
AWS::GameLift::Location

AWS::Cognito::UserPoolUICustomizationAttachment
AWS::IoT::TopicRule

AWS::Connect::RoutingProfile
AWS::Omics::ReferenceStore

AWS::DataBrew::Dataset
AWS::PCAConnectorAD::Template

AWS::DataBrew::Job
AWS::PCAConnectorSCEP::Challenge

AWS::DataBrew::Project
AWS::ResourceExplorer2::View

AWS::DataBrew::Recipe
AWS::ResourceGroups::Group

AWS::DataBrew::Ruleset
AWS::Scheduler::ScheduleGroup

AWS::DataBrew::Schedule
AWS::VerifiedPermissions::IdentitySource

Quelle: aws.amazon.com

da Agency

AWS announces pricing for VPC Encryption Controls

AWS is launching pricing for VPC Encryption Controls, a security and compliance feature that enables you to audit and enforce encryption-in-transit of all traffic flows within and across Virtual Private Clouds (VPCs) in a region. VPC Encryption controls can be enabled in two modes: Monitor mode detects presence of any unencrypted traffic within your VPCs, and Enforce Mode ensures all data-in-transit is encrypted and prevents the bring up of any resources that allow unencrypted traffic within your VPC.  Starting March 1, 2026, VPC Encryption Controls will transition from a free preview to a paid feature. You will be charged a fixed hourly rate for every non-empty VPC (VPC that has network interfaces in them) that has Encryption Controls enabled in either monitor or enforce mode. There will be no charge for empty VPCs that have encryption controls enabled. When you enable encryption support on a Transit Gateway, standard VPC Encryption Controls charges apply to all VPCs attached to that Transit Gateway irrespective of their encryption controls mode (monitor, enforce or off) even if they are empty.  To learn more about VPC Encryption Controls and view detailed regional pricing, visit the VPC Encryption Controls documentation and VPC pricing page.
Quelle: aws.amazon.com