Amazon S3 starts rolling out new security best practice to new and existing buckets by default

Amazon S3 · 2026-04-06

Actions

Rate this issue

Technical Details

Regions	all
Cost Impact	Neutral
IaC Impact	High

What This Means

For DevOps Teams

Update your S3 bucket configurations and IaC templates to accommodate the new default security setting and ensure that your encryption strategies are aligned with the updated best practices.

For Platform Teams

Adopt the new S3 security best practice to strengthen the overall security posture of your cloud infrastructure and reduce the risk of data breaches.

For Executives

Evaluate the impact of the new S3 security setting on your organization's data protection strategy and ensure alignment with your compliance requirements to maintain a strong security posture.

Source

View original AWS announcement →

https://aws.amazon.com/about-aws/whats-new/2026/04/s3-default-bucket-security-setting/

Related Amazon S3 Updates

Amazon S3 Vectors expands to 17 additional AWS Regions (2026-03-31)
Amazon S3 Express One Zone now supports request metrics in Amazon CloudWatch (2026-03-31)
Amazon S3 Access Grants are now available in the AWS Asia Pacific (New Zealand) Region (2026-03-18)
Amazon SimpleDB now supports exporting domain data to Amazon S3 (2026-03-16)
Amazon Neptune now supports reading S3 data using openCyper (2026-03-16)

Actions

Technical Details

What This Means

Source

Related Amazon S3 Updates

Weekly AWS Digest in Your Inbox