Trending News: Salesforce Prescribes Agentforce for Health to Speed Time to Treatment and Improve Outcomes with Digital LaborHow Agentic AI Will Ease Healthcare’s Workforce CrisisAI Agents Can Cut Healthcare Paperwork by 30%, Study ShowsPrecina Set to Deliver 24/7, Personalized Diabetes Care Nationally with AgentforceCUDA Accelerated: How CUDA Libraries Bolster Cybersecurity With AIUFL Leverages Salesforce’s Agentforce To Provide World Class ServiceLeading Companies of All Sizes and Industries Are Transforming to Become Agentforce CompaniesAI Agents Will Become the New UI, and Apps Take a BackseatMarch Into Gaming With GeForce NOW’s 14 Must-Play Titles for SpringTelenor Builds Norway’s First AI Factory, Offering Sustainable and Sovereign Data ProcessingAgentic AI Leaders to Showcase Latest Advancements at NVIDIA GTC92% of Developers Report AI Agents Will Help Advance Their CareersSalesforce Announces Fourth Quarter and Fiscal Year 2025 ResultsMore than 1 billion people every month check out podcasts on YouTube.How Google is helping to close the digital divide in Hawaii and the PacificExplore How RTX AI PCs and Workstations Supercharge AI Development at NVIDIA GTC 2025Protect your personal information and easily take action on outdated content in Search results.Loss of Pulse Detection has received U.S. FDA clearance, and is now available on Pixel Watch 3.Season 7 of The Made by Google Podcast starts with Loss of Pulse Detection.Community managers in action: Leading a developer community for goodAchieving a Trusted Agentic AI Ecosystem: Salesforce Report Offers a RoadmapHow Salesforce Tackled the AI Adoption GapRead our first Health Impact Report.Achieving a Trusted AI Ecosystem: Salesforce Report Offers a RoadmapSign up for this year’s Gen AI Intensive live course from Google and Kaggle.We’re partnering on two projects to support watershed health in Tennessee.Get coding help from Gemini Code Assist — now for freeAnthropic’s Claude 3.7 Sonnet hybrid reasoning model is now available in Amazon BedrockHear more about AI “thinking models” in our latest podcast.AWS Weekly Roundup: Cloud Club Captain Applications, Formula 1®, Amazon Nova Prompt Engineering, and more (Feb 24, 2025)6 updates for Gemini on Pixel that make it better than everSalesforce and Google Bring Gemini to Agentforce, Enable More Customer Choice in Major Partnership ExpansionHow Top CIOs Are Unlocking AI ROINVIDIA Earth-2 Features First Gen AI to Power Weather Super-Resolution for Continental USGoogle Cloud and Salesforce are partnering to bring enterprise AI to more businesses.How to debug code with GitHub CopilotAI’s Human Factor: Why Trust Is Essential for Unlocking Digital Labor’s PotentialEngaging with the developer community on our approach to content moderationAI Models Are a Dime a Dozen: How Businesses Win By Moving Beyond the Hype with a Deeply Unified PlatformCIOs Who’ve Embraced AI Agents Share How To Get StartedAI Agents Will Enhance — Not Impair — Privacy. Here’s How.Here are 3 ways to beat procrastination from Google’s productivity expert.7 ways Pixel Call Assist helps you manage and screen callsAI Models Are a Dime a Dozen: How Businesses Win Moving Beyond the Hype with a Deeply Unified PlatformCalling All Creators: GeForce RTX 5070 Ti GPU Accelerates Generative AI and Content Creation Workflows in Video Editing, 3D and MoreInto the Omniverse: How OpenUSD and Synthetic Data Are Shaping the Future for Humanoid RobotsStep Into the World of ‘Avowed’ on GeForce NOWIt’s a Sign: AI Platform for Teaching American Sign Language Aims to Bridge Communication GapsTemenos’ Barb Morgan Shares How Chatbots and AI Agents Are Reshaping Customer Service in BankingNavigating Agentic AI’s Future: Balancing Innovation and ComplianceUse Lens to search your screen while you browse on iOSU.S. Drivers Look to AI Agents to Improve Car Buying and Ownership, New Survey RevealsTelcos Dial Up AI: NVIDIA Survey Unveils Industry’s AI TrendsMassive Foundation Model for Biomolecular Sciences Now Available via NVIDIA BioNeMoA new level unlockedMicrosoft unveils Majorana 1A new experiment to help people explore more career possibilitiesWe’re launching a new AI system for scientists.New creative updates to help advertisers generate lifestyle imageryDozens of new mobile apps are coming to cars with Google built-in.Physicists Tap James Webb Space Telescope to Track New Asteroids and City-Killer Rock​​Autodesk, IBM, and Indeed Reveal Strategies for AI Agent Adoption at WorkAdvanced Flood Hub features for aid organizations and governmentsWATCH: Can AI Agents Transform the Medical Industry?Now you can use Deep Research in Gemini on the go.Buying books is now easier in the Google Play Books iOS app.By Paid Invitation: How Hackers Make Salesforce More Secure in the Agentic AI EraSalesforce Spring ’25 Release: New Agentforce Skills, Reasoning, and Integrations to Build a Digital Labor WorkforceAWS Weekly Roundup: AWS Developer Day, Trust Center, Well-Architected for Enterprises, and more (Feb 17, 2025)Support the open source projects you love this Valentine’s DayTaoiseach visits Google to celebrate the future of Ireland’s tech talentAWS CloudTrail network activity events for VPC endpoints now generally availableReference past chats for more tailored help with Gemini Advanced.5 ways Chrome Enterprise can secure your business every dayWelcome to the Google Pixel House at NBA All-Star Weekend.How “Everywhere Analytics” Will Drive Business Performance in 2025 and BeyondGeForce NOW Welcomes Warner Bros. Games to the Cloud With ‘Batman: Arkham’ SeriesPhysicists Tap James Web Space Telescope to Track New Asteroids and City-Killer RockVeo 2 is coming to Dream Screen on YouTube Shorts.16 startups using AI to make our world saferGitHub Availability Report: January 2025Clarifying some changes we made in Calendar.How Gemini added a new dimension to our I/O 2025 save the date puzzleThe Apple TV app is now available on Google Play for Android mobile devices.How GitHub uses CodeQL to secure GitHubHow Scaling Laws Drive Smarter, More Powerful AIGoogle Family Link brings new supervision tools for parentsNew digital protections for kids, teens and parents9 Android features to support workplace accessibilityHow Digital Labor Will Reshape the EnterpriseSafety First: Leading Partners Adopt NVIDIA Cybersecurity AI to Safeguard Critical InfrastructureHow betting on the cloud set the stage for gen AI at Deutsche BankA new partnership to advance the treatment of women’s cancerWhat Are Foundation Models?Whisk, a Google Labs experiment, is expanding to more than 100 new countries.Save the date: Google I/O is May 20-21, 2025.How to refactor code with GitHub CopilotNVIDIA CEO Awarded for Advancing Precision Medicine With Accelerated Computing, AIDefending 1 billion Chrome users with Enhanced ProtectionHow we’re working to keep students safe in the AI age
Fri. Feb 28th, 2025
Trending News: Salesforce Prescribes Agentforce for Health to Speed Time to Treatment and Improve Outcomes with Digital LaborHow Agentic AI Will Ease Healthcare’s Workforce CrisisAI Agents Can Cut Healthcare Paperwork by 30%, Study ShowsPrecina Set to Deliver 24/7, Personalized Diabetes Care Nationally with AgentforceCUDA Accelerated: How CUDA Libraries Bolster Cybersecurity With AIUFL Leverages Salesforce’s Agentforce To Provide World Class ServiceLeading Companies of All Sizes and Industries Are Transforming to Become Agentforce CompaniesAI Agents Will Become the New UI, and Apps Take a BackseatMarch Into Gaming With GeForce NOW’s 14 Must-Play Titles for SpringTelenor Builds Norway’s First AI Factory, Offering Sustainable and Sovereign Data ProcessingAgentic AI Leaders to Showcase Latest Advancements at NVIDIA GTC92% of Developers Report AI Agents Will Help Advance Their CareersSalesforce Announces Fourth Quarter and Fiscal Year 2025 ResultsMore than 1 billion people every month check out podcasts on YouTube.How Google is helping to close the digital divide in Hawaii and the PacificExplore How RTX AI PCs and Workstations Supercharge AI Development at NVIDIA GTC 2025Protect your personal information and easily take action on outdated content in Search results.Loss of Pulse Detection has received U.S. FDA clearance, and is now available on Pixel Watch 3.Season 7 of The Made by Google Podcast starts with Loss of Pulse Detection.Community managers in action: Leading a developer community for goodAchieving a Trusted Agentic AI Ecosystem: Salesforce Report Offers a RoadmapHow Salesforce Tackled the AI Adoption GapRead our first Health Impact Report.Achieving a Trusted AI Ecosystem: Salesforce Report Offers a RoadmapSign up for this year’s Gen AI Intensive live course from Google and Kaggle.We’re partnering on two projects to support watershed health in Tennessee.Get coding help from Gemini Code Assist — now for freeAnthropic’s Claude 3.7 Sonnet hybrid reasoning model is now available in Amazon BedrockHear more about AI “thinking models” in our latest podcast.AWS Weekly Roundup: Cloud Club Captain Applications, Formula 1®, Amazon Nova Prompt Engineering, and more (Feb 24, 2025)6 updates for Gemini on Pixel that make it better than everSalesforce and Google Bring Gemini to Agentforce, Enable More Customer Choice in Major Partnership ExpansionHow Top CIOs Are Unlocking AI ROINVIDIA Earth-2 Features First Gen AI to Power Weather Super-Resolution for Continental USGoogle Cloud and Salesforce are partnering to bring enterprise AI to more businesses.How to debug code with GitHub CopilotAI’s Human Factor: Why Trust Is Essential for Unlocking Digital Labor’s PotentialEngaging with the developer community on our approach to content moderationAI Models Are a Dime a Dozen: How Businesses Win By Moving Beyond the Hype with a Deeply Unified PlatformCIOs Who’ve Embraced AI Agents Share How To Get StartedAI Agents Will Enhance — Not Impair — Privacy. Here’s How.Here are 3 ways to beat procrastination from Google’s productivity expert.7 ways Pixel Call Assist helps you manage and screen callsAI Models Are a Dime a Dozen: How Businesses Win Moving Beyond the Hype with a Deeply Unified PlatformCalling All Creators: GeForce RTX 5070 Ti GPU Accelerates Generative AI and Content Creation Workflows in Video Editing, 3D and MoreInto the Omniverse: How OpenUSD and Synthetic Data Are Shaping the Future for Humanoid RobotsStep Into the World of ‘Avowed’ on GeForce NOWIt’s a Sign: AI Platform for Teaching American Sign Language Aims to Bridge Communication GapsTemenos’ Barb Morgan Shares How Chatbots and AI Agents Are Reshaping Customer Service in BankingNavigating Agentic AI’s Future: Balancing Innovation and ComplianceUse Lens to search your screen while you browse on iOSU.S. Drivers Look to AI Agents to Improve Car Buying and Ownership, New Survey RevealsTelcos Dial Up AI: NVIDIA Survey Unveils Industry’s AI TrendsMassive Foundation Model for Biomolecular Sciences Now Available via NVIDIA BioNeMoA new level unlockedMicrosoft unveils Majorana 1A new experiment to help people explore more career possibilitiesWe’re launching a new AI system for scientists.New creative updates to help advertisers generate lifestyle imageryDozens of new mobile apps are coming to cars with Google built-in.Physicists Tap James Webb Space Telescope to Track New Asteroids and City-Killer Rock​​Autodesk, IBM, and Indeed Reveal Strategies for AI Agent Adoption at WorkAdvanced Flood Hub features for aid organizations and governmentsWATCH: Can AI Agents Transform the Medical Industry?Now you can use Deep Research in Gemini on the go.Buying books is now easier in the Google Play Books iOS app.By Paid Invitation: How Hackers Make Salesforce More Secure in the Agentic AI EraSalesforce Spring ’25 Release: New Agentforce Skills, Reasoning, and Integrations to Build a Digital Labor WorkforceAWS Weekly Roundup: AWS Developer Day, Trust Center, Well-Architected for Enterprises, and more (Feb 17, 2025)Support the open source projects you love this Valentine’s DayTaoiseach visits Google to celebrate the future of Ireland’s tech talentAWS CloudTrail network activity events for VPC endpoints now generally availableReference past chats for more tailored help with Gemini Advanced.5 ways Chrome Enterprise can secure your business every dayWelcome to the Google Pixel House at NBA All-Star Weekend.How “Everywhere Analytics” Will Drive Business Performance in 2025 and BeyondGeForce NOW Welcomes Warner Bros. Games to the Cloud With ‘Batman: Arkham’ SeriesPhysicists Tap James Web Space Telescope to Track New Asteroids and City-Killer RockVeo 2 is coming to Dream Screen on YouTube Shorts.16 startups using AI to make our world saferGitHub Availability Report: January 2025Clarifying some changes we made in Calendar.How Gemini added a new dimension to our I/O 2025 save the date puzzleThe Apple TV app is now available on Google Play for Android mobile devices.How GitHub uses CodeQL to secure GitHubHow Scaling Laws Drive Smarter, More Powerful AIGoogle Family Link brings new supervision tools for parentsNew digital protections for kids, teens and parents9 Android features to support workplace accessibilityHow Digital Labor Will Reshape the EnterpriseSafety First: Leading Partners Adopt NVIDIA Cybersecurity AI to Safeguard Critical InfrastructureHow betting on the cloud set the stage for gen AI at Deutsche BankA new partnership to advance the treatment of women’s cancerWhat Are Foundation Models?Whisk, a Google Labs experiment, is expanding to more than 100 new countries.Save the date: Google I/O is May 20-21, 2025.How to refactor code with GitHub CopilotNVIDIA CEO Awarded for Advancing Precision Medicine With Accelerated Computing, AIDefending 1 billion Chrome users with Enhanced ProtectionHow we’re working to keep students safe in the AI age
Fri. Feb 28th, 2025

AWS CloudTrail network activity events for VPC endpoints now generally available

Today, I’m happy to announce the general availability of network activity events for Amazon Virtual Private Cloud (Amazon VPC) endpoints in AWS CloudTrail. This feature helps you to record and monitor AWS API activity traversing your VPC endpoints, helping you strengthen your data perimeter and implement better detective controls.

Previously, it was hard to detect potential data exfiltration attempts and unauthorized access to the resources within your network through VPC endpoints. While VPC endpoint policies could be configured to prevent access from external accounts, there was no built-in mechanism to log denied actions or detect when external credentials were used at a VPC endpoint. This often required you to build custom solutions to inspect and analyze TLS traffic, which could be operationally costly and negate the benefits of encrypted communications.

With this new capability, you can now opt in to log all AWS API activity passing through your VPC endpoints. CloudTrail records these events as a new event type called network activity events, which capture both control plane and data plane actions passing through a VPC endpoint.

Network activity events in CloudTrail provide several key benefits:

  • Comprehensive visibility – Log all API activity traversing VPC endpoints, regardless of the AWS account initiating the action.
  • External credential detection – Identify when credentials from outside your organization are accessing your VPC endpoint.
  • Data exfiltration prevention – Detect and investigate potential unauthorized data movement attempts.
  • Enhanced security monitoring – Gain insights into all AWS API activity at your VPC endpoints without the need to decrypt TLS traffic.
  • Visibility for regulatory compliance – Improve your ability to meet regulatory requirements by tracking all API activity passing through.

Getting started with network activity events for VPC endpoint logging
To enable network activity events, I go to the AWS CloudTrail console and choose Trails in the navigation pane. I choose Create trail to create a new one. I enter a name in the Trail name field and choose an Amazon Simple Storage Service (Amazon S3) bucket to store the event logs. When I create a trail in CloudTrail, I can specify an existing Amazon S3 bucket or create a new bucket to store my trail’s event logs.

If you set Log file SSE-KMS encryption to Enabled, you have two options: Choose New to create a new AWS Key Management Service (AWS KMS) key or choose Existing to choose an existing KMS key. If you chose New, you need to type an alias in the AWS KMS alias field. CloudTrail encrypts your log files with this KMS key and adds the policy for you. The KMS key and Amazon S3 must be in the same AWS Region. For this example, I use an existing KMS key. I enter the alias in the AWS KMS alias field and leave the rest as default for this demo. I choose Next for the next step.

In the Choose log events step, I choose Network activity events under Events. I choose the event source from the list of AWS services, such as cloudtrail.amazonaws.com, ec2.amazonaws.com, kms.amazonaws.com, s3.amazonaws.com, and secretsmanager.amazonaws.com. I add two network activity event sources for this demo. For the first source, I select ec2.amazonaws.com option. For Log selector template, I can use templates for common use cases or create fine-grained filters for specific scenarios. For example, to log all API activities traversing the VPC endpoint, I can choose the Log all events template. I choose Log network activity access denied events template to log only access denied events. Optionally, I can enter a name in the Selector name field to identify the log selector template, such as Include network activity events for Amazon EC2.

As a second example, I choose Custom to create custom filters on multiple fields, such as eventName and vpcEndpointId. I can specify specific VPC endpoint IDs or filter the results to include only the VPC endpoints that match specific criteria. For Advanced event selectors, I choose vpcEndpointId from the Field dropdown, choose equals as Operator, and enter the VPC endpoint ID. When I expand the JSON view, I can see my event selectors as a JSON block. I choose Next and after reviewing the selections, I choose Create trail.

After it’s configured, CloudTrail will begin logging network activity events for my VPC endpoints, helping me analyze and act on this data. To analyze AWS CloudTrail network activity events, you can use the CloudTrail console, AWS Command Line Interface (AWS CLI), and AWS SDK to retrieve relevant logs. You can also use CloudTrail Lake to capture, store and analyze your network activity events. If you are using Trails, you can use Amazon Athena to query and filter these events based on specific criteria. Regular analysis of these events can help you maintain security, comply with regulations, and optimize your network infrastructure in AWS.

Now available
CloudTrail network activity events for VPC endpoint logging provide you with a powerful tool to enhance your security posture, detect potential threats, and gain deeper insights into your VPC network traffic. This feature addresses your critical needs for comprehensive visibility and control over your AWS environments.

Network activity events for VPC endpoints are available in all commercial AWS Regions.

For pricing information, visit AWS CloudTrail pricing.

To get started with CloudTrail network activity events, visit AWS CloudTrail. For more information on CloudTrail and its features, refer to the AWS CloudTrail documentation.

— Esra

Blog Article: Here

    • Ascendant Bot

    Related Posts

    Anthropic’s Claude 3.7 Sonnet hybrid reasoning model is now available in Amazon Bedrock
    Anthropic’s Claude 3.7 Sonnet hybrid reasoning model is now available in Amazon Bedrock

    Claude 3.7 Sonnet hybrid reasoning model is Anthropic’s most intelligent model to date excelling at coding and powering AI agents. It is the first Claude model to offer extended thinking—the ability to solve complex problems with careful, step-by-step reasoning.

    Continue reading
    AWS Weekly Roundup: Cloud Club Captain Applications, Formula 1®, Amazon Nova Prompt Engineering, and more (Feb 24, 2025)
    AWS Weekly Roundup: Cloud Club Captain Applications, Formula 1®, Amazon Nova Prompt Engineering, and more (Feb 24, 2025)

    AWS Developer Day 2025, held on February 20th, showcased how to integrate responsible generative AI into development workflows. The event featured keynotes from AWS leaders including Srini Iragavarapu, Director Generative AI Applications and Developer Experiences, Jeff Barr, Vice President of AWS Evangelism, David Nalley, Director Open Source Marketing of AWS, along with AWS Heroes and technical […]

    Continue reading

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    You Missed

    Salesforce Uncategorized

    Salesforce Prescribes Agentforce for Health to Speed Time to Treatment and Improve Outcomes with Digital Labor

    Salesforce Prescribes Agentforce for Health to Speed Time to Treatment and Improve Outcomes with Digital Labor
    Salesforce Uncategorized

    How Agentic AI Will Ease Healthcare’s Workforce Crisis

    How Agentic AI Will Ease Healthcare’s Workforce Crisis
    Salesforce Uncategorized

    AI Agents Can Cut Healthcare Paperwork by 30%, Study Shows

    AI Agents Can Cut Healthcare Paperwork by 30%, Study Shows
    Salesforce Uncategorized

    Precina Set to Deliver 24/7, Personalized Diabetes Care Nationally with Agentforce

    Precina Set to Deliver 24/7, Personalized Diabetes Care Nationally with Agentforce
    Career in Cybersecurity CUDA Data Center Enterprise software Generative AI In the NVIDIA Studio

    CUDA Accelerated: How CUDA Libraries Bolster Cybersecurity With AI

    CUDA Accelerated: How CUDA Libraries Bolster Cybersecurity With AI
    Salesforce

    UFL Leverages Salesforce’s Agentforce To Provide World Class Service

    UFL Leverages Salesforce’s Agentforce To Provide World Class Service