AWS Updates Feed

← トップに戻る

AWS Updates - 2026-02-16

AWS What's New

Amazon EC2 supports nested virtualization on virtual Amazon EC2 instances

Starting today, customers can create nested environments within virtualized Amazon EC2 instances. Previously, customers could only create and manage virtual machines inside bare metal EC2 instances. With this launch, customers can create nested virtual machines by running KVM or Hyper-V on virtual EC2 instances. Customers can leverage this capability for use cases such as running emulators for mobile applications, simulating in-vehicle hardware for automobiles, and running Windows Subsystem for Linux on Windows workstations.

 

Announcing Amazon DocumentDB long-term support (LTS) on 5.0

Starting today, Amazon DocumentDB (with MongoDB compatibility) offers Long-Term Support (LTS) on DocumentDB 5.0, enabling customers to reduce database upgrade frequency and maintenance overhead. LTS versions will receive only critical stability and security patches without introducing new features.

To get started, create a new DocumentDB cluster engine version 5.0.0, or patch your existing engine version 5.0.0 cluster during your next maintenance window. Verify you're running the required Engine Patch Version by connecting to your cluster and running db.runCommand({getEngineVersion: 1}). Ensure you're running Engine Patch Version 3.0.17983 or later.

This LTS release is available in all Amazon Web Services regions where DocumentDB is offered. For more details about DocumentDB LTS, and how to check to see what engine patch version you’re on, refer to the Long-Term Support (LTS) release for Amazon DocumentDB.

AWS Backup announces PrivateLink support for SAP HANA on AWS

AWS Backup now supports AWS PrivateLink for SAP HANA systems running on Amazon EC2. This enables customers to route all backup traffic through private network connections without traversing the public internet, helping organizations meet security and compliance requirements for regulated workloads.

Customers in regulated industries such as financial services, healthcare, and government agencies often require that all traffic remain on private networks. Previously, while SAP HANA application workloads could use AWS PrivateLink for secure, private communication with AWS services, backup traffic to AWS Backup had to traverse public endpoints. With this release, you can now use AWS PrivateLink for AWS Backup storage endpoints, ensuring your SAP HANA workloads on EC2 maintain end-to-end private connectivity for both application traffic and backup data. This helps organizations subject to HIPAA, EU/US Privacy Shield, and PCI DSS regulations implement fully private data protection strategies.

This feature is available in all AWS Regions where AWS Backup supports SAP HANA databases on EC2. To get started, update your Backint agent and add the backup-storage VPCE to your VPC.

AWS HealthImaging launches additional metrics for monitoring data stores

AWS HealthImaging has launched additional metrics through Amazon CloudWatch that enable monitoring storage at the account and data store levels. These new metrics help customers better understand their medical imaging storage and growth trends over time.

HealthImaging now provides customers with granular CloudWatch metrics to monitor their data stores. Customers can track storage by volume, number of image sets, and the number of DICOM studies, series, and instances. These metrics provide the insights needed to manage both single-tenant and multi-tenant workloads at petabyte scale. To learn more, visit Using Amazon CloudWatch with HealthImaging.

AWS HealthImaging is a HIPAA-eligible service that empowers healthcare providers and their software partners to store, analyze, and share medical images. AWS HealthImaging is generally available in the following AWS Regions: US East (N. Virginia), US West (Oregon), Asia Pacific (Sydney), and Europe (Ireland).

Announcing new high performance computing Amazon EC2 Hpc8a instances

AWS announces Amazon EC2 Hpc8a instances, the next generation of high performance computing optimized instance, powered by 5th Gen AMD EPYC processors (formerly code named Turin). With a maximum frequency of 4.5GHz, Hpc8a instances deliver up to 40% higher performance and up to 25% better price performance compared to Hpc7a instances, helping customers accelerate compute-intensive workloads while optimizing costs.


Built on the latest sixth-generation AWS Nitro Cards, Hpc8a instances are designed for compute-intensive, latency-sensitive HPC workloads. They are ideal for tightly coupled applications such as computational fluid dynamics (CFD), weather forecasting, explicit finite element analysis (FEA), and multiphysics simulations that require fast inter-node communication and consistent high performance.

Hpc8a instances feature 192 cores, 768 GiB memory and 300 Gbps of Elastic Fabric Adapter (EFA) network bandwidth, enabling fast, low-latency cluster scaling for large-scale HPC workloads. Compared to Hpc7a instances, Hpc8a instances also provide up to 42% higher memory bandwidth, further improving performance for memory-intensive simulations and scientific computing workloads.

Hpc8a instances are available today in US East (Ohio) and Europe (Stockholm). Customers can purchase Hpc8a instances via Savings Plans or On-Demand instances. To get started, sign in to the AWS Management Console. For more information visit the Amazon EC2 Hpc8a instance page or AWS news blog.

Amazon EC2 M7i instances are now available in the Israel (Tel Aviv) Region

Starting today, Amazon Elastic Compute Cloud (Amazon EC2) M7i instances powered by custom 4th Gen Intel Xeon Scalable processors (code-named Sapphire Rapids) are available in the Israel (Tel Aviv) region. These custom processors, available only on AWS, offer up to 15% better performance over comparable x86-based Intel processors utilized by other cloud providers.

M7i deliver up to 15% better price-performance compared to M6i. M7i instances are a great choice for workloads that need the largest instance sizes or continuous high CPU usage, such as gaming servers, CPU-based machine learning (ML), and video-streaming. M7i offer larger instance sizes, up to 48xlarge, and two bare metal sizes (metal-24xl, metal-48xl). These bare-metal sizes support built-in Intel accelerators: Data Streaming Accelerator, In-Memory Analytics Accelerator, and QuickAssist Technology that are used to facilitate efficient offload and acceleration of data operations and optimize performance for workloads.

To learn more, visit Amazon EC2 M7i Instances. To get started, see the AWS Management Console.

AWS Glue 5.1 is now available in 18 additional regions

AWS Glue 5.1 is now available in eighteen additional AWS Regions: Africa (Cape Town), Asia Pacific (Hyderabad, Jakarta, Melbourne, Osaka, Seoul, Taipei), Canada (Calgary, Central), Europe (London, Milan, Paris, Zurich), Israel (Tel Aviv), Mexico (Central), Middle East (Bahrain, UAE), and US West (N. California).

AWS Glue is a serverless, scalable data integration service that simplifies discovering, preparing, moving, and integrating data from multiple sources. AWS Glue 5.1 upgrades core engines to Apache Spark 3.5.6, Python 3.11, and Scala 2.12.18, bringing performance and security enhancements. It also updates support for open table format libraries, including Apache Hudi 1.0.2, Apache Iceberg 1.10.0, and Delta Lake 3.3.2. Additionally, AWS Glue 5.1 introduces support for Apache Iceberg format version 3.0, adding default column values, deletion vectors for merge-on-read tables, multi-argument transforms, and row lineage tracking. This release also extends AWS Lake Formation fine-grained access control to write operations (both DML and DDL) for Spark DataFrames and Spark SQL. Previously, this capability was limited to read operations only. AWS Glue 5.1 also adds full-table access control in Apache Spark for Apache Hudi and Delta Lake tables, providing more comprehensive security options for your data.

With this expansion, AWS Glue 5.1 is now available in thirty-three AWS Regions.

You can get started with AWS Glue 5.1 using AWS Glue APIs, AWS Command Line Interface (CLI), AWS Software Development Kit (SDK), AWS Glue Studio, or Amazon SageMaker Unified Studio. To learn more, visit the AWS Glue product page and our documentation

Amazon Aurora now supports Server-Side Encryption at Rest

Amazon Aurora further strengthens your security posture by automatically applying server-side encryption by default to all new databases clusters, created starting today, using AWS-owned keys. This encryption is fully managed, transparent to users, with no cost or performance impact.

Aurora now automatically encrypts all new database clusters created without custom encryption settings using server-side encryption by default. Existing clusters remain unaffected and you can continue using the current encryption configuration with customer-managed or AWS-managed KMS keys. This automatic encryption only applies to new clusters where no encryption configuration is provided. You cannot disable encryption on new clusters, but can choose customer-managed or AWS-managed KMS keys instead of server side encryption during cluster creation. Server side encryption provides encryption protection without requiring you to provision, rotate, or manage keys.

This update is available in all AWS Regions, including the AWS GovCloud (US) Regions. To learn more about encryption at rest, refer to our blog or see Aurora encryption documentation.

Amazon Aurora now supports Server-Side Encryption by default

Amazon Aurora further strengthens your security posture by automatically applying server-side encryption by default to all new databases clusters, created starting today, using AWS-owned keys. This encryption is fully managed, transparent to users, with no cost or performance impact.

Aurora now automatically encrypts all new database clusters created without custom encryption settings using server-side encryption by default. Existing clusters remain unaffected and you can continue using the current encryption configuration with customer-managed or AWS-managed KMS keys. This automatic encryption only applies to new clusters where no encryption configuration is provided. You cannot disable encryption on new clusters, but can choose customer-managed or AWS-managed KMS keys instead of server side encryption during cluster creation. Server side encryption provides encryption protection without requiring you to provision, rotate, or manage keys.

This update is available in all AWS Regions, including the AWS GovCloud (US) Regions. To learn more about encryption at rest, refer to our blog or see Aurora encryption documentation.

Kiro is now available in AWS GovCloud (US) Regions

Kiro brings agentic AI development capabilities to workloads with elevated compliance needs in AWS GovCloud (US-East) and AWS GovCloud (US-West) Regions. Kiro is an agentic AI with an integrated development environment (IDE) and command-line interface (CLI) that helps you go from prototype to production with spec-driven development. From simple to complex tasks, Kiro works alongside you to turn prompts into detailed specs, then into working code, docs, and tests—so what you build is exactly what you want and ready to share with your team.

Kiro's agents help you solve challenging problems and automate tasks like generating documentation and unit tests. With native Model Context Protocol (MCP) support, Kiro connects to documentation, databases, APIs, and other enterprise resources, providing capability for mission-critical development workflows.

Kiro in AWS GovCloud (US) Regions uses enterprise authentication via AWS IAM Identity Center. To learn more about building with Kiro in AWS GovCloud (US), read the blog post. For more details about Kiro in AWS GovCloud (US), visit the GovCloud documentation or contact your AWS account team for more information. To learn more about Kiro, visit the Kiro product page.

AWS News Blog

AWS Weekly Roundup: Amazon EC2 M8azn instances, new open weights models in Amazon Bedrock, and more (February 16, 2026)

I joined AWS in 2021, and since then I’ve watched the Amazon Elastic Compute Cloud (Amazon EC2) instance family grow at a pace that still surprises me. From AWS Graviton-powered instances to specialized accelerated computing options, it feels like every few months there’s a new instance type landing that pushes performance boundaries further. As of […]

Announcing Amazon SageMaker Inference for custom Amazon Nova models

AWS launches Amazon SageMaker AI Inference for custom Amazon Nova models. You can now configure the instance types, auto-scaling policies, and concurrency settings for custom Nova model deployments to best meet their needs.

Amazon EC2 Hpc8a Instances powered by 5th Gen AMD EPYC processors are now available

Amazon EC2 Hpc8a instances, powered by 5th Gen AMD EPYC processors, deliver up to 40% higher performance, increased memory bandwidth, and 300 Gbps Elastic Fabric Adapter networking, helping customers accelerate compute-intensive simulations, engineering workloads, and tightly coupled HPC applications.

AWS Security Blog

Building an AI-powered defense-in-depth security architecture for serverless microservices

Enterprise customers face an unprecedented security landscape where sophisticated cyber threats use artificial intelligence to identify vulnerabilities, automate attacks, and evade detection at machine speed. Traditional perimeter-based security models are insufficient when adversaries can analyze millions of attack vectors in seconds and exploit zero-day vulnerabilities before patches are available. The distributed nature of serverless architectures […]