Weekly Cloud Info #W02 - 2025

Author

Walid LARABI
January 10, 2025

Hi!

Welcome to this week's cloud roundup! It's a quieter week for news, but we still have some feature announcements from various cloud providers.

Have a great read.

📰 Top picks of the week

AWS WAF Console Enhances Dashboard with New Top Insights Visualizations

AWS WAF Console has introduced new Top Insights visualizations in its dashboard for customers using CloudWatch logging. This feature allows users to view detailed traffic patterns, focusing on sources like client IPs and URI paths. It helps in identifying anomalies and optimizing WAF settings. The feature is available in all commercial AWS Regions, except for China.

AWS Enhances Data Privacy with Dynamic Data Masking in RDS and Aurora PostgreSQL

The article discusses dynamic data masking for sensitive information in Amazon RDS for PostgreSQL and Amazon Aurora PostgreSQL. It outlines techniques such as encryption, hashing, tokenization, and data masking to protect sensitive data while allowing necessary access. A focus is placed on implementing a dynamic data masking solution that responds to user permissions, showing unmasked data to authorized users only. The article also covers limitations of these techniques.

AWS DynamoDB Introduces Configurable Point-in-Time Recovery from 1 to 35 Days

Amazon DynamoDB now allows users to configure point-in-time recovery (PITR) periods from 1 to 35 days for better data protection. This feature enables restoration of data to any second within the specified recovery period, aiding compliance and regulatory needs. The configurable PITR is available in all AWS Regions, including GovCloud and China. Pricing is based on the size of the table with PITR enabled.

AWS: Enhanced Security for MSK Connect with PrivateLink Support

Amazon MSK Connect APIs now support AWS PrivateLink, enabling secure access from within your Amazon VPC without using the public internet. This allows private communication between MSK Clusters and MSK Connect connectors, meeting strict security requirements. Clients can perform various actions like creating and updating connectors through a private endpoint. AWS PrivateLink support is available in all regions where Amazon MSK Connect operates.

Alibaba Enhances Cloud Security with New Posture Management and Threat Detection Tools

Alibaba Cloud has launched enhanced security features for hybrid and multi-cloud environments, including a Cloud Security Posture Management tool with over 700 detection items. Its Cloud Threat Detection and Response system utilizes a large language model for threat identification and response. Additionally, Alibaba has upgraded its Dynamic Content Delivery Network to bolster edge security with advanced DDoS protection and API security. These measures aim to enhance compliance and risk management in cloud operations.

GCP: How to Create and Run GPU Jobs for Enhanced Performance

This article explains how to create and run a job using GPUs in Google Cloud Platform (GCP) console. It highlights common use cases like data processing and AI workloads, and outlines steps for setting up GPU tasks. Key considerations include selecting the GPU machine type, provisioning methods, and necessary IAM roles for job creation. For success, users must plan their task requirements before execution.

GCP Launches Parameter Manager for Secure Workload Parameter Management

The Parameter Manager in GCP provides a centralized way to store and manage workload parameters securely. It allows users to organize parameters into collections for easier access. Developers can interact with the service through REST API calls and Google client libraries. Key operations include creating, deleting, and listing parameters and their versions.

GCP's New Parameter Manager: Centralize Configuration with Enhanced Security Features

Parameter Manager is an extension of Secret Manager in GCP that centralizes configuration parameters for workloads. It simplifies management through a unified system, enabling consistent deployments and enhanced security with IAM permissions. Key features include data encryption, versioning, and support for various configuration formats. Additionally, it allows integration with Secret Manager for managing sensitive data efficiently.

Security Alert: New GorillaBot Malware Launches 20,000 Daily DDoS Attacks Worldwide

Researchers have uncovered a new botnet malware named GorillaBot that utilizes old Mirai code. From September 4 to 27, 2024, it issued over 20,000 DDoS attack commands daily, targeting more than 100 countries, especially the U.S. and China. GorillaBot employs various attack methods and can exploit Apache Hadoop vulnerabilities for remote code execution. It maintains persistence by creating an automatic startup service on infected systems.

Rust 1.84 Released: New Strict Provenance APIs and Enhanced Dependency Management

Rust 1.84 has launched, introducing strict provenance APIs that replace integer-pointer casts, enhancing code clarity for developers and compilers. It stabilizes the minimum supported Rust version (MSRV) aware resolver, simplifying dependency management. Additionally, a new trait solver is being implemented to improve the accuracy of trait implementations. Over a dozen APIs have also been stabilized in this release.

❤️ You might also like

  • Elon Musk says all human data for AI training ‘exhausted’ LINK

  • Omi, AI and a ‘brain interface’ LINK

  • NVIDIA AI chips are improving faster than Moore’s Law LINK

  • DeepFace is a lightweight face recognition and facial attribute analysis LINK

  • Nvidia announces $3,000 personal AI supercomputer called Digits LINK

  • Google new team to build AI that can simulate the physical world LINK

🏁 Enjoy this newsletter?

Forward it to a friend, and let them know they can subscribe here.