AWS Launches New Feature to Enhance Cloud Security

New tools will help customers better protect digital assets, detect critical security issues, prevent cyberattacks, and more.

AWS re:Inforce, the company's annual cloud security event, brings together security experts, partners, and developers from around the world to tackle emerging security challenges in the era of generative artificial intelligence (AI).

As organizations face increasingly sophisticated cyber threats, AWS has announced a series of new features to simplify security management while providing more comprehensive protection, including:

AWS Security Hub : helps customers quickly detect and prioritize existing threats to their systems

AWS Security Hub helps customers identify their most critical security issues and respond quickly to mitigate risk. It acts as a 'security command center', connecting the dots between different types of security alerts and vulnerabilities. This helps security teams quickly detect and prioritize existing threats to their cloud systems.

By bringing all of this information together in a single dashboard, Security Hub provides a more complete picture of your organization’s security posture, eliminating the need to manually gather information from multiple security tools. AWS Security Hub is now available for customer preview.

AWS Shield: Proactively Protecting Customers' Online Systems

AWS Shield enhances the way websites and online applications are protected by proactively finding configuration errors and network security weaknesses.

The service now creates a map of customers' security assets, identifying vulnerabilities to common attacks like SQL injection (when hackers try to access data through web forms) and DDoS attacks (when attackers overload a website with fake traffic to bring it down).

AWS Shield provides an intuitive dashboard that displays issues by severity, along with step-by-step guidance to quickly resolve issues. Customers can even use Amazon Q, the most powerful artificial intelligence-powered assistant for the workplace, to get guidance through simple conversations rather than navigating through complex security settings.

Amazon GuardDuty : Introducing Extended Threat Detection for Container-Based Applications

AWS also announced a feature expansion for Amazon GuardDuty Extended Threat Detection (XTD), which now supports protecting container-based applications running on Amazon Elastic Kubernetes Service (EKS). GuardDuty connects various security signals across customers’ systems to detect sophisticated attack patterns that other tools may miss.

By monitoring EKS audit logs, runtime behavior, and AWS service activity, GuardDuty can identify complex, multi-stage attacks. These advanced detection capabilities allow security teams to spend less time investigating potential issues and instead address real threats, minimizing business impact.