CybersecurityVulnerability Management

AWS Unveils AI-Powered Platform to Streamline Vulnerability Management

Analyst 207||Source: InfoSecMag
A sleek workstation with a laptop and futuristic devices on a neutral surface in a bright tech lab setting.

"Every recommendation includes the reasoning behind it. As you gain confidence, you can graduate Continuum to enforce mode, enabling remediation that can be increasingly automated based on categories and risk profiles you define,” AWS said.

What AWS is offering with Continuum

AWS on June 17 introduced Continuum, a new Amazon-made platform designed to manage the full lifecycle of code vulnerabilities on AWS infrastructure. Announced at AWS Summit New York, Continuum is available in a gated preview and is presented as an integrated system with access to an organization’s full environment — both structured data that lives in AWS and unstructured sources such as documents, communications and business priorities.

Four explicit capabilities: discovery through remediation

AWS describes Continuum as a single platform that follows vulnerabilities from initial discovery to remediation. The company lists four capabilities in sequence: (1) code vulnerability discovery, where Continuum ingests an existing backlog of vulnerabilities and performs its own scans of the environment; (2) code vulnerability prioritization, where Continuum evaluates, enriches and prioritizes findings using contextual information and produces an evidence-backed list of priorities; (3) code vulnerability validation, where Continuum attempts to surface false positives, provides additional context and constructs working exploit examples in a sandboxed environment; and (4) code vulnerability mitigation and remediation, where Continuum assesses existing defenses — including blocking and compensating controls and detection mechanisms — and then recommends mitigation or remediation via network changes, policy changes or code patches.

AWS Security Agent, frontier AI models, and STRIDE output

The Continuum platform includes an AWS Security Agent powered by what AWS describes as frontier AI models. That agent is intended to assist software developers and security engineers with penetration testing, code scanning and threat modelling. AWS said the output from these tools will be presented in the Spoofing, Tampering, Repudiation, Information disclosure, Denial of service, Elevation of privilege (STRIDE) format. AWS has rebranded those capabilities inside Continuum as Continuum pen testing, Continuum code scanning and Continuum threat modelling.

Human-in-the-loop, enforcement mode, and the stated motivation

AWS emphasized that Continuum always begins “in learn mode” with a human in the loop. The company framed that design as deliberate: recommendations include the reasoning behind them, and organizations can choose to “graduate” Continuum to an enforce mode to enable progressively automated remediation according to categories and risk profiles they define. AWS explained the launch as a response to an “urgent need for a shift” in security workflows — shifting from traditional telemetry-and-dashboard models toward “telemetry, context, reasoning and actions.” AWS also linked the urgency to advances in AI, saying that “Models like Claude Mythos can now find software vulnerabilities and reason through complex attack paths at machine-speed, leading to an exponentially increasing backlog of vulnerabilities.”

How security teams, software developers, and enterprise customers are positioned

  • Security teams and software developers: Continuum is positioned to change daily workflows by combining backlog ingestion, automated scanning, contextual prioritization and sandboxed validation. The inclusion of the AWS Security Agent and STRIDE-formatted outputs targets both offensive testing (pen testing) and defensive coding and threat modelling tasks for engineers and security practitioners.
  • Enterprise customers in financial services, automotive and technology: AWS confirmed customers across these sectors were already using Continuum in its preview. For these organizations, Continuum’s ability to draw on structured and unstructured internal data and recommend network, policy or code-level fixes is presented as a way to reduce a growing remediation backlog.

Continuum is one element among a set of announcements that also included new AI models and an AWS Context knowledge graph intended to give agents access to contextual information. The product is being billed by AWS as a workflow shift — and it is being released into a reality AWS itself describes as one where automated models can rapidly expand the universe of identified vulnerabilities.

Continuum’s preview and the company’s emphasis on human oversight leave concrete questions for adopters: how organizations will calibrate the transition from learn mode to enforce mode, how sandboxed exploit construction will be governed, and how evidence-backed prioritization will map to existing change and risk processes. For now, AWS has placed Continuum in controlled preview while inviting customers across multiple sectors to try a platform that stitches telemetry, context and reasoning into a single product offering.

Original story: https://www.infosecurity-magazine.com/news/aws-continuum-ai-vulnerability/

Cloud InfrastructureCloud SecurityEmerging ThreatsRisk ManagementVulnerability ManagementAWSAI-Powered PlatformContinuumAutomated RemediationVulnerability Lifecycle Management
Related Intelligence

Continue Reading

Blurred laptop screen on office table surrounded by coworkers.

AI Agents Emerge as Unchecked Identities in Enterprise Security

The equation for enterprise security is no longer simple: with AI agents now connected to critical business services, controlling identities is no longer enough to control risk. These emerging insiders have quietly become privileged - and potentially invisible - attack paths that security and identity programs must urgently address.

Analyst 207
Security analysts work at computer workstations and a large wall screen in a brightly-lit operations center.

AI Shifts Threat Management from Reactive to Proactive Stance

With a sprawling security stack of 40+ tools, enterprise teams are drowning in overlapping alerts and manual handoffs, leaving gaping holes for adversaries to exploit. This disjointed approach leaves teams scrambling to respond to threats, with attackers enjoying a lengthy 43-day window to wreak havoc.

Analyst 207
Windows desktop with Recycle Bin open, showing a file and a confirmation dialog with a partially obscured filename.

Microsoft Updates Trigger Recycle Bin Filename Glitch

Microsoft just revealed a frustrating glitch in the Recycle Bin that displays a confusing filename when you permanently delete an item, showing a cryptic code instead of the file's original name. Luckily, the issue only affects the deletion confirmation dialog and doesn't change the file's name in the Recycle Bin or when it's restored.

Analyst 207
Dusty, idle computer servers and network equipment in a dimly lit, abandoned server room.

Shadow AI Exposes Access Control Gaps

The real risk of Shadow AI isn't about employees sharing sensitive info, but about unauthorized AI agents operating within your organization, connected to critical systems, and taking actions that can lead to data breaches and access-control failures. A staggering 65.4% of unused chatbots still have active credentials, leaving a gaping hole in your security.

Analyst 207