AWS WAF enhances Service Quotas capabilities, enabling organizations to proactively monitor and manage quotas for their cloud deployments. AWS WAF is a web application firewall that helps protect your web applications or APIs against common web exploits and bots that may affect availability, compromise security, or consume excessive resources. By leveraging AWS Service Quotas, you can quickly understand your applied service quota values for these WAF resources and request increases when needed. This enhanced integration brings three key benefits. First, you can now monitor the current utilization of your account-level quotas for WAF resources such as web ACLs, rule groups, and IP sets in the Service Quotas console. Second, certain service quota increase requests will now be auto-approved, enabling customers to access higher quotas faster. For example, smaller increases are usually automatically approved while larger requests are submitted to AWS Support. Lastly, you can now create https://aws.amazon.com/cloudwatch/ alarms to notify you when your utilization of a given quota exceeds a configurable threshold. This enables you to better adapt your utilization based on your applied quota values and automate your quota increase requests. You can access https://us-east-1.console.aws.amazon.com/servicequotas/home/services/s3/quotas through the AWS console, https://docs.aws.amazon.com/servicequotas/2019-06-24/apireference/Welcome.html, and CLI. Integration with AWS Service Quotas is available in all https://aws.amazon.com/about-aws/global-infrastructure/regional-product-services/ where AWS WAF is offered. You can learn more about AWS WAF by visiting https://docs.aws.amazon.com/waf/latest/developerguide/waf-chapter.html.  

This blog is based on the hands-on lab Leveraging AWS WAF to Defend an Insecure Web App from QA's...

Starting today, you can use AWS WAF in the AWS Asia Pacific (Malaysia) Region. AWS WAF is a web application firewall that helps you protect your web application resources against common web exploits and bots that can affect availability, compromise security, or consume excessive resources. You can protect the following resource types: Amazon CloudFront distributions, Amazon API Gateway REST APIs, Application Load Balancer, AWS AppSync GraphQL API, AWS App Runner, AWS Verified Access, and Amazon Cognito user pools. To see the full list of regions where AWS WAF is currently available, visit the AWS Region Table. Please note that only core AWS WAF features like AWS Managed Rules and rules are currently available in these new regions. For more information about the service, visit the AWS WAF page. AWS WAF pricing may vary between regions. For more information about pricing, visit the AWS WAF Pricing page.

Blocking malicious traffic with AWS WAF is only half the story — you also need clear, reliable logs so security and platform teams can…

When securing your cloud architecture, performance and efficiency are incredibly important. Learn more about how to strike a fine balance.

Deploy secure static websites on AWS with this Terraform toolkit. Automates S3, CloudFront, WAF, and DNS setup while optimizing costs and maintaining best practices.

The “Comprehensive Guide to AWS WAF” is course designed to provide participants with a thorough understanding of AWS Web Application…

AWS Amplify Hosting introduces Web Application Firewall protection in public preview, enabling developers to secure web applications with IP blocking, geo-...

Amazon CloudFront VPC Origins was announced on November 20, 2024. Have you had a chance to try it...

    AWS WAF announces general availability of Resource-level DDoS protection for Application Load Balancers (ALB) 0 views Eyal Estrin unread, 10:46 PM (27 minutes ago)    to https://aws.amazon.com/about-aws/whats-new/2025/06/aws-waf-general-availability-resource-level-ddos-protection-alb/ https://docs.aws.amazon.com/waf/latest/developerguide/waf-anti-ddos-alb.html https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-anti-ddos.html https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-ip-rep.html Eyal Estrin CISSP, CCSP, CISM, CISA, CDPSE, CCSK Blog: https://security-24-7.com | Books: https://amzn.to/42Xai9A | https://amzn.to/3Sggbtv Twitter: @eyalestrin | Bluesky: @eyalestrin.bsky.social Reply all Reply to author Forward

こんにちは。ウォンテッドリーのInfra Squadでエンジニアをしている笠井（@takayukikasai）です。 昨今サービス事業者を狙った様々なセキュリティ脅威が増加しています。DoS/DDoS攻撃やスクレイピングによる情報収集、Webアプリケーションの脆弱性を狙った攻撃など攻撃手法は多様化・高度化しています。IPアドレスベース...

Amazon Q Business enables secure, unauthenticated AI-powered web experiences for public sector agencies by leveraging AWS Amplify, AWS WAF, and comprehensive security controls.

As a DevOps engineer, you’re constantly looking for ways to balance rapid software delivery with rock-solid security. One crucial tool at your disposal is a Web Application Firewall (WAF). In the AWS ecosystem, that solution is AWS WAF—a service designed to protect your applications from common web exploits while giving you the flexibility and integrations essential to a modern DevOps workflow.

🚀 Amazon CloudFront now supports VPC Origins, allowing private network resources in your AWS account...

AWS introduces AntiDDoS AMR, a new AWS WAF feature that provides advanced Layer 7 DDoS protection with automatic traffic profiling, rapid detection, and customizable mitigation actions for web applications.

https://tech.dentsusoken.com/entry/waf_managed_rules_match_experiment

クラスメソッド株式会社の臼田氏、株式会社サーバーワークスの佐竹氏、 アマゾン ウェブ サービス ジャパン合同会社の勝原氏、株式会社サイバーセキュリティクラウドの黒田氏は、顧客とのやりとりで感じた傾向に触れながら、AWSのセキュリティ強化について話しました。全4回。前回はこちらから。

Amazon Cognito introduces AWS Web Application Firewall (AWS WAF) support in Cognito Managed Login. This new capability allows customers to protect their Managed Login endpoints configured in Cognito user pools from unwanted or malicious requests and web-based attacks. Managed Login, a fully-managed, hosted sign-in and sign-up experience that customers can personalize to align with their company or application branding, now offers an additional layer of protection against threat vectors through integration with AWS WAF web access control lists (web ACLs). This integration provides customers with powerful new capabilities to safeguard their applications against malicious attacks. With AWS WAF support, you can now define rules that enforce rate limits, gain visibility into web traffic to your applications, and allow or block traffic to Cognito Managed Login based on your specific business or security requirements. Additionally, the AWS WAF integration enables you to optimize costs by controlling bot traffic to your Cognito user pools. Managed Login and WAF support in Managed Login are offered as part of the Cognito Essentials and Plus tiers and are available in all AWS Regions where Amazon Cognito is available. Please note that AWS WAF charges apply for the inspection of user pool requests. For more information, see https://aws.amazon.com/waf/pricing/. To learn more, see Using https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html, and to get started, visit the https://console.aws.amazon.com/cognito/home.  

AWS WAF now offers resource-level DDoS protection for Application Load Balancers, enabling rapid detection and mitigation of attacks through an integrated on-host agent with IP reputation rules.