Amazon leadership directed engineering teams to address a series of recent high-impact availability incidents that internal notes and reporting tied in part to “Gen-AI assisted changes,” citing that best practices and safeguards for these tools are not yet fully established. Following disruptions including a reported multi-hour impairment of the main retail site attributed to an erroneous code deployment, Amazon moved to tighten deployment governance by requiring senior engineer approval for AI-assisted changes and elevating attendance expectations for an operations review meeting led by SVP Dave Treadwell.
Reporting also linked at least two AWS operational incidents to the use of AI coding assistants being rolled out internally. One incident involved a prolonged interruption to an AWS cost calculator after an AI coding tool (reported as Kiro) made changes that resulted in deleting and recreating an environment; Amazon characterized that event as limited in scope and geography, and said another AI-linked incident did not impact a customer-facing AWS service. Separately, some engineers attributed increased severity-2 incident volume to staffing reductions, while Amazon disputed that layoffs were responsible for the outage pattern and described the availability review process as part of normal continuous improvement.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
3 events from the most recent confirmed update back to the earliest known activity.
An email attributed to Amazon Senior Vice President Dave Treadwell said AI-assisted changes would need approval from senior engineers before deployment, citing poor site availability. Amazon publicly said it would review website and app availability in its regular weekly operations process, without confirming AI as the cause of the incidents.
According to reported internal meeting notes, Amazon convened engineers to discuss several recent operational incidents described as having a high blast radius and allegedly associated with generative-AI-assisted changes. The notes said best practices and safeguards for such tools were not yet fully established.
Amazon's main retail website experienced a roughly six-hour disruption that internal reporting linked to an erroneous code deployment. Later coverage cited this incident as one of several recent operational problems with a high blast radius.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
2 references tracked. Mallory keeps watching after this page renders.
tomshardware.com
Open sourcearstechnica.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.