Amazon has chosen Adam Selipsky to run its Amazon Web Services division. Currently, Selipsky is CEO of Salesforce-owned data-visualization software maker Tableau. Andy Jassy made the decision as the current head of AWS, after he was chosen to replace Jeff Bezos as CEO of Amazon. CNBC reports: Amazon rules the market for public cloud infrastructure that companies use to run internal and external applications, a modern alternative to relying on in-house servers, storage and networking equipment. In 2019 industry research company Gartner estimated that Amazon had 45% of the market, more than any other company, including Microsoft and Google. As such, Selipsky becomes the most visible person in the growing industry, perhaps second only to Jassy, who enters a bigger job when he becomes Amazon CEO in the third quarter. Selipsky is one of the people several insiders had identified as a possible successor to Jassy. Selipsky had held a prominent position inside AWS, as vice president for sales, marketing and support, before leaving to run then-public Tableau in 2016. Salesforce bought Tableau for $15.7 billion in 2019.

Read more of this story at Slashdot.

Google Stadia has a "State Share" feature that lets people click on a screenshot or video clip of a game to play the level that was captured -- providing they own the game themselves. Andy Kelly reports via PC Gamer: This week I've been playing PixelJunk Raiders, a new roguelike developed exclusively for Stadia by Q-Games, which makes particularly good use of this feature. Levels in this game are procedurally generated, so if the algorithm spits out something especially cool, you can take a screenshot and share it online, letting people experience it for themselves. A small community has sprung up around this feature, with people sharing interesting, challenging, or otherwise interesting levels in public spreadsheets. There's also an asynchronous multiplayer element to it. You can go into someone's game state and drop weapons or handy gadgets like turrets or jump pads, then share the state again, creating a chain of people helping each other. Some players are even using states as supply drops, dumping weapons that you can scoop up then take back to your own missionsâ"which is very handy for PixelJunk Raiders in particular, a game that is both punishingly difficult and frequently stingy with its loot drops. You'll take any help you can get. Players can also use emotes to silently communicate across these chains. "Only a handful of Stadia games support State Share right now, including the Hitman trilogy," notes Kelly. "But even at this early stage it's impressive. Being able to show a friend something in a game and not just say 'look at this,' but actually let them play it themselves, feels kinda like the future."

Read more of this story at Slashdot.

"I am curious as to what other Slashdotters use for backing up of home machines," asks long-time Slashdot reader serviscope_minor: I moved away from the "bunch of disks with some off site" method. I found most of the methods generally had one or more of the following problems: poor Linux support, weak security (e.g. leaking file names), outrageously expensive, hard to set up, tied to a single storage supplier I don't fully trust, entirely proprietary (which makes me doubt long term stability), lack of file history, reputation for slowness, and so on. My current solution is Unixy: separate tools for separate jobs. Borg for backups to a local machine. Rclone for uploading to business cloud storage, versioned cloud storage to provide resistance against bitrot and other corruption. They're interested in "what other Slashdotters use," as well as "why and what your experience has been given more than superficial testing." So share you own thoughts in the comments. What do you use for backups at home?

Read more of this story at Slashdot.

"iCloud has had the occasional service issue, but its latest problem appears to be highly... specific," writes Engadget: Actor and author Rachel True claims iCloud has effectively locked her out of her account due to the way her last name was written. Reportedly, her Mac thought lower-case "true" was a Boolean (true or false) flag, leading the iCloud software on the computer to seize up. The problem has persisted for over six months, she said. True said she'd spent hours talking to customer service, and that Apple hadn't stopped charging her for service. She could switch to the free tier, although she'd also lose most of her online storage if she did. True has apparently resorted to imploring desperately in tweets to both @Apple and @AppleSupport. "Now that I a layman have explained problem to you a giant computer company, could u fix...?" "A thing I've learned about life so far is I hate being the test case." "When I get a dog I'm naming it Boolean Bobby Drop Tables True"

Read more of this story at Slashdot.

Microsoft is in danger of losing a contract to provide $10 billion of cloud computing services to the Pentagon, a deal the government has threatened to scrap altogether after years of legal squabbling. From a report: The U.S. Defense Department said it will reconsider the controversial procurement if a federal judge declines to dismiss Amazon's allegations that former President Donald Trump's meddling cost the company the winner-take-all contract. That means the fate of a cloud project the Pentagon considers critical for its war fighters may rest in the hands of the U.S. Court of Federal Claims, which could soon issue a ruling on Amazon's accusations. The Pentagon said last month it would take too long to prove in court that its decision to award Microsoft the lucrative cloud deal wasn't unduly influenced by the White House. If the judge allows Amazon to argue its bias claims in the case, the government may decide to stop fighting. "If the court denies the government's motion we will most likely be facing an even longer litigation process," Pentagon spokesman John Kirby said at a press conference late last month. "The DOD Chief Information Officer will reassess the strategy going forward." The warning is another twist in a contentious process that has involved years of legal challenges, behind-the-scenes lobbying and a public relations campaign by technology rivals to unseat Amazon as the original front-runner for the cloud contract when it was unveiled in 2018. More than a year after Microsoft was named the winner, the Defense Department is still fighting to execute the Joint Enterprise Defense Infrastructure cloud -- or JEDI, an acronym intended to evoke "Star Wars" imagery -- to serve as the primary data repository for military services worldwide. The deal is worth $10 billion over a decade. There are signs the Pentagon is already moving on. The Defense Department is talking up its other cloud contracts beyond JEDI, and some of the program's biggest cheerleaders have left the department, leaving new leaders to make decisions on a procurement they inherited from the Trump administration. Even Microsoft executives are trumpeting all the other work the company plans to keep doing for the Defense Department, in the event that its image-boosting JEDI deal goes south.

Read more of this story at Slashdot.

Google's cloud business reported operating loss of $5.61 billion in 2020. It brought in $13.06 billion in revenue for the year. It's the first time the company revealed the operating income metric for its cloud business. CNBC reports: Alphabet's latest push to show it's serious about its cloud unit comes as it tries to diversify revenue, which primarily comes from advertising, a business that showed vulnerability in 2020 -- particularly in the second quarter. Google Cloud includes infrastructure and data analytics platforms, collaboration tools, and "other services for enterprise customers." The company's past attempts to bolster its cloud unit under CEO Diane Greene, who left in 2018, failed to capture much market share. But, since former Oracle executive Thomas Kurian came to Google to lead its cloud efforts in 2019, the company has gone on hiring and acquisition sprees.

Read more of this story at Slashdot.

"Microsoft Corp. was wrapped into a massive cybersecurity attack late last year," reports MarketWatch, "but the unprecedented intrusion may actually end up being a positive for the company's bottom line." UBS analyst Karl Keirstead, who has a buy rating and a $243 price target, said while Microsoft products were leveraged by hackers in the attack on SolarWinds Corp.'s Orion IT management software, because they are commonplace, "the broader cyber-security community are not pointing fingers at Microsoft." Keirstead noted that the attack actually drove more customers into public cloud infrastructures like Azure, Amazon.com Inc.'s and Alphabet Inc.'s Google Cloud "given a view that cloud data centers are more secure and that constantly patching/updating on-premise software like Orion presents a security risk that can be transferred to Microsoft, Amazon or Google." "Bottom line, we believe this cyber-security attack could be a modest net positive for Microsoft," Keirstead said.

Read more of this story at Slashdot.

Logic magazine has interviewed an anonymous engineer at Amazon Web Services. An excerpt from the story, which touches a wide-range of topics including controversial work with the military and police and takes on other cloud providers: So when you use AWS, part of what you're paying for is security. Right; it's part of what we sell. Let's say a prospective customer comes to AWS. They say, "I like pay-as-you-go pricing. Tell me more about that." We say, "Okay, here's how much you can use at peak capacity. Here are the savings we can see in your case." Then the company says, "How do I know that I'm secure on AWS?" And this is where the heat turns up. This is where we get them. We say, "Well, let's take a look at what you're doing right now and see if we can offer a comparable level of security." So they tell us about the setup of their data centers. We say, "Oh my! It seems like we have level five security and your data center has level three security. Are you really comfortable staying where you are?" The customer figures, not only am I going to save money by going with AWS, I also just became aware that I'm not nearly as secure as I thought. Plus, we make it easy to migrate and difficult to leave. If you have a ton of data in your data center and you want to move it to AWS but you don't want to send it over the internet, we'll send an eighteen-wheeler to you filled with hard drives, plug it into your data center with a fiber optic cable, and then drive it across the country to us after loading it up with your data. What? How do you do that? We have a product called Snowmobile. It's a gas-guzzling truck. There are no public pictures of the inside, but it's pretty cool. It's like a modular datacenter on wheels. And customers rightly expect that if they load a truck with all their data, they want security for that truck. So there's an armed guard in it at all times. It's a pretty easy sell. If a customer looks at that option, they say, yeah, of course I want the giant truck and the guy with a gun to move my data, not some crappy system that I develop on my own.

Read more of this story at Slashdot.

"If you just received a new iPhone 12, Apple Watch or iPad, you might not have gotten immediate satisfaction — Apple was having some iCloud issues," reports CNET: The issue started early on Christmas Day, according to the iCloud account and sign-in entry on Apple's system status page. More than a day later, as of late morning PT Saturday, the Apple system status page indicated that the issue with the storage service remained "ongoing." But by 2 p.m. PT Saturday, the iCloud issue was marked "resolved." No specifics were given about how widespread the problems might have been, only that "some users were affected." The company also noted issues with Apple ID sign-in.

Read more of this story at Slashdot.

When large companies like Netflix or Amazon want to test the resilience of their systems, they use chaos engineering tools designed to help them simulate worst-case scenarios and find potential issues before they even happen. Today at AWS re:Invent, Amazon CTO Werner Vogels introduced the company's Chaos Engineering as a Service offering called AWS Fault Injection Simulator. From a report: The name may lack a certain marketing panache, but Vogels said that the service is designed to help bring this capability to all companies. "We believe that chaos engineering is for everyone, not just shops running at Amazon or Netflix scale. And that's why today I'm excited to pre-announce a new service built to simplify the process of running chaos experiments in the cloud," Vogels said. As he explained, the goal of chaos engineering is to understand how your application responds to issues by injecting failures into your application, usually running these experiments against production systems. AWS Fault Injection Simulator offers a fully managed service to run these experiments on applications running on AWS hardware.

Read more of this story at Slashdot.

"A widely used hotel reservation platform has exposed 10 million files related to guests at various hotels around the world, thanks to a misconfigured Amazon Web Services S3 bucket," reports Threatpost. "The records include sensitive data, including credit-card details." Prestige Software's "Cloud Hospitality" is used by hotels to integrate their reservation systems with online booking websites like Expedia and Booking.com. The incident has affected 24.4 GB worth of data in total, according to the security team at Website Planet, which uncovered the bucket. Many of the records contain data for multiple hotel guests that were grouped together on a single reservation; thus, the number of people exposed is likely well over the 10 million, researchers said. Some of the records go back to 2013, the team determined — but the bucket was still "live" and in use when it was discovered this month. "The company was storing years of credit-card data from hotel guests and travel agents without any protection in place, putting millions of people at risk of fraud and online attacks," according to the firm, in a recent notice on the issue. "The S3 bucket contained over 180,000 records from August 2020 alone...." The records contain a raft of information, Website Planet said, including full names, email addresses, national ID numbers and phone numbers of hotel guests; card numbers, cardholder names, CVVs and expiration dates; and reservation details, such as the total cost of hotel reservations, reservation number, dates of a stay, special requests made by guests, number of people, guest names and more. The exposure affects a wide number of platforms, with data related to reservations made through Amadeus, Booking.com, Expedia, Hotels.com, Hotelbeds, Omnibees, Sabre and more.... A too-large percentage of cloud databases containing highly sensitive information are publicly available, an analysis in September found. The study from Comparitch showed that 6 percent of all Google Cloud buckets are misconfigured and left open to the public internet, for anyone to access their contents.

Read more of this story at Slashdot.

Come June 1, 2021, Google will change its storage policies for free accounts -- and not for the better. Basically, if you're on a free account and a semi-regular Google Photos user, get ready to pay up next year and subscribe to Google One. From a report: Currently, every free Google Account comes with 15 GB of online storage for all your Gmail, Drive and Photos needs. Email and the files you store in Drive already counted against those 15 GB, but come June 1, all Docs, Sheets, Slides, Drawings, Forms or Jamboard files will count against the free storage as well. Those tend to be small files, but what's maybe most important here, virtually all of your Photos uploads will now count against those 15 GB as well. That's a bid deal because today, Google Photos lets you store unlimited images (and unlimited video, if it's in HD) for free as long as they are under 16MP in resolution or you opt to have Google degrade the quality. Come June of 2021, any new photo or video uploaded in high quality, which currently wouldn't count against your allocation, will count against those free 15 GB. [...] In addition to these storage updates, there's a few additional changes worth knowing about. If your account is inactive in Gmail, Drive or Photos for more than two years, Google 'may' delete the content in that product.

Read more of this story at Slashdot.

Amazon will invest about $2.8 billion in Telangana to set up a new AWS Cloud region in the southern state of India, a top Indian politician announced on Friday. From a report: The investment will allow Amazon to launch an AWS Cloud region in Hyderabad by mid-2022, said K. T. Rama Rao, Minister for Information Technology, Electronics & Communications, Municipal Administration and Urban Development and Industries & Commerce Departments, Government of Telangana. The new AWS Asia Region will be Amazon's second infrastructure region in India, Amazon said in a press release. It did not disclose the size of the investment. [...] There is a lot in it for Amazon as well. Jayanth Kolla, chief analyst at consultancy firm Convergence Catalyst, told TechCrunch that by having more cloud regions in India, it will be easier for Amazon to comply with the nation's data localization policy. This compliance will also help Amazon, which currently leads the cloud market in India, attract more customers.

Read more of this story at Slashdot.

Apple's "System Status" page indicates 14 current issues, some of which began nearly five hours ago. CNET reports the services affected "include Find My, iCloud Account & Sign In, iCloud Backup, iCloud Bookmarks & Tabs, iCloud Calendar, iCloud Contacts, iCloud Drive, iCloud Keychain, iCloud Mail, iCloud Storage Upgrades, Photos and Screen Time." Engadget writes "the timing is less than ideal, even if this is likely to be a small interruption in the grander scheme of things." The issue comes weeks after an outage that affected both iCloud and Apple's media services. It also follows mere days after the debut of Apple One, where iCloud storage (also affected by the outage) plays an important role.

Read more of this story at Slashdot.

Cloudflare has released the beta of its new "browser isolation" service, which runs a web browser in the cloud, reports TechRadar. As more and more computing is done inside a browser as opposed to on a system itself, many enterprise organizations have begun to deploy browser isolation services where the browser doesn't actually run on a user's computer. Instead the browser runs on a virtual machine inside a cloud provider's data center. This means that any threats from the browser will stay in that virtual machine and won't be able to infect a corporate laptop or move laterally across an organization's network... Cloudflare Browser Isolation does thing a bit differently by sending the final output of a browser's web page rendering. As a result, the only thing every sent to a user's device is a package of draw commands to render the webpage and this also means that the company's new service will be compatible with any HTML5 compliant browser including Chrome, Safari, Edge and Firefox. As Cloudflare has data centers in 200 cities around the world, its browser isolation service should be able to deliver a responsive web browsing experience regardless of where a user is located. It's part of a larger push, since this week Cloudflare also released their network-as-a-service solution "Cloudflare One," which according to Cloudflare "protects and accelerates the performance of devices, applications, and entire networks to keep workforces secure." "After decades of building legacy corporate networks, organizations are left with clunky systems designed to protect their now empty offices. The only way to secure today's work-from-anywhere economy is to secure each individual employee, protecting their individual networks, devices, and access to business-critical applications," said Matthew Prince, CEO of Cloudflare... Companies have traditionally used a castle-and-moat approach to security, creating a barrier between the enterprise network and external threats. Now that applications have moved to the cloud, and more employees have moved outside of the office, that model is broken. Employees are frustrated with the speed and experience of VPNs, and organizations want an alternative to the expensive patchwork of legacy solutions required to secure and connect corporate offices to each other and the internet. Today's new landscape requires a zero trust approach, where organizations do not automatically trust any requests to corporate data or resources, and instead, verify every attempt to connect to corporate systems before allowing them access... This unified solution enables fast and safe connections to workplace applications, allows teams to use an app without exposing it to the public internet, makes personal devices safe for business use, and works in any environment with any cloud provider.

Read more of this story at Slashdot.

Tim Nolet, founder and chief technology officer of Checkly, tweeted on Friday: Oh @awscloud I really do love you! But next time you fork my OS project and present it as your new service, give the maintainers a short "nice job, kids" or something. Not necessary as per the APLv2 license, but still, ya know?

Read more of this story at Slashdot.

At the end of September, Amazon debuted two especially futuristic products within five days of each other: a small autonomous surveillance drone, called Ring Always Home Cam, and a palm recognition scanner, called Amazon One. "Both products aim to make security and authentication more convenient -- but for privacy-conscious consumers, they also raise red flags," reports Wired. From the report: Amazon's latest data-hungry innovations are not launching in a vacuum. The company also owns Ring, whose smart doorbells have had myriad security issues and have been widely criticized for bringing unprecedented surveillance to traditionally semi-private spaces. Meanwhile, the biometric data that Amazon Go will collect is particularly sensitive, because unlike a password you can't simply change it if a hacker steals it or it gets unintentionally exposed. Amazon has a strong record for maintaining the security of its massive cloud infrastructure, but there have been lapses across the sprawling business. The stakes are already phenomenally high; the more data the company holds the more risk it takes on. "Amazon has a major genomics cloud platform, so maybe they hold your DNA and now they're going to have your palm as well? Plus all of these devices inside your house. And your purchase history on Prime. That's a lot of information. That's a lot of personal information," says Nina Alli, executive director of Defcon's Biohacking Village and a health care security researcher. "When you give away this data you're giving a company the ability to access and manage you, not the other way around." [...] Additionally, while companies like Apple and Samsung have brought biometric fingerprint and face scanners to the masses by making sure the data never leaves the device, Amazon One takes the opposite approach. Kumar writes that "palm images are never stored" on Amazon One itself. Instead they are encrypted and sent to a special high security area of Amazon's cloud to be converted into "palm signatures" based on the unique and distinctive features of a user's hand. Then the service compares that signature to the one on file in each user's account and returns a match or no match answer back down to the device. It makes sense that Amazon doesn't want to store databases of people's palm data locally on publicly accessible machines that could be manipulated. But the system could perhaps have been set up to generate a palm signature locally, delete the image of a person's hand, and send only the encrypted signature on for analysis. The fact that all of those palm images will be going for cloud processing creates a single point of failure. "I'm worried that people could read your palm vein pattern in other ways and construct an analog. It's only a matter of time," says Joseph Lorenzo Hall, a longtime security and privacy researcher and a senior vice president at the nonprofit Internet Society. "Both the home drone and the palm payment are going to rely heavily on the cloud and on the security provided by that cloud storage. That's worrying because it means all the risks -- rogue employees, government data requests, data breach, secondary uses -- associated with data collection on the server-side could be possible. I'm much more comfortable having a biometric template stored locally rather than on a server where it might be exfiltrated." An Amazon spokesperson told WIRED, "We are confident that the cloud is highly secure. In addition, Amazon One palm data is stored separately from other personal identifiers, and is uniquely encrypted with its own keys in a secure zone in the cloud."

Read more of this story at Slashdot.

"Google LLC is reportedly planning to relinquish direct control over its open-source Knative project to a five-seat steering committee that will have rules to prevent any single organization from having more than two seats," reports SiliconANGLE. "The plan is designed to stymie criticism that Google is secretly planning to retain control over key open-source projects it has developed, according to a report today on the tech news website The Protocol." Knative is an open-source project first developed by Google that provides components for deploying, running and managing serverless, cloud-native applications on top of Kubernetes, a container management platform that was also built by Google and open-sourced in 2015... Google is planning to make some major changes to Knative's governance structure, according to the report. Seats on the committee will now be held by individuals rather than specific companies, and elections will be held later this year to select two new members. In addition, the report said, Google is considering eventually expanding the committee to seven members as a way to include representatives from Knative's user community. The plan comes just a few months after Google angered some members of the open-source software community when it reneged on a promise to hand over control of another project, Istio, to the Cloud Native Computing Foundation, a Linux Foundation project that was founded in 2015 to help advance container technology. In July Google said that it instead of transferring Istio to the CNCF, it would create a neutral organization called Open Usage Commons to manage its trademark policies, while control would be maintained by the project's steering committee. That decision upset many of Google's partners, most notably IBM Corp., which has also contributed greatly to the development of Istio.

Read more of this story at Slashdot.

IBM announced this morning that the company would be spinning off some of its lower-margin lines of business into a new company and focusing on higher-margin cloud services. Ars Technica reports: During an investor call, CEO Arvind Krishna acknowledged that the move was a "significant shift" in how IBM will work, but he positioned it as the latest in a decades-long series of strategic divestments. "We divested networking back in the '90s, we divested PCs back in the 2000s, we divested semiconductors about five years ago because all of them didn't necessarily play into the integrated value proposition," he said. Krishna became CEO in April 2020, replacing former CEO Ginni Rometty (who is now IBM's executive chairman), but the spin-off is the capstone of a multi-year effort to apply some kind of focus to the company's sprawling business model. The new spin-off doesn't have a formal name yet and is referred to as "NewCo" in IBM's marketing and investor relations material. Under the spin-off plan, the press release claims IBM "will focus on its open hybrid cloud platform, which represents a $1 trillion market opportunity," while NewCo "will immediately be the world's leading managed infrastructure services provider." (This is because NewCo will start life owning the entirety of IBM Global Technology Services' existing managed infrastructure clients, which means about 4,600 accounts, including about 75 percent of the Fortune 100.) See also: Cringely Predicts IBM 'Disappears Into Red Hat'

Read more of this story at Slashdot.