VMWare Security Blog

In September 2025, the cybercriminal group Storm-1175 exploited a zero-day vulnerability in GoAnywhere Managed File Transfer to deploy Medusa ransomware across multiple organizations. The attack succeeded despite perimeter defenses because no signature existed to detect it, and by the time one did, attackers had already established persistence and were moving freely through victim networks. This … Continued

The post Why Perimeter Firewall is Not Enough: Lessons from the GoAnywhere MFT Zero-Day appeared first on VMware Security Blog.

The “Invisible Corridor” Security doesn’t break all at once; it erodes in the shadows. The alert didn’t appear to be a crisis because, to your perimeter, everything looked normal. An authorized user, a permitted port, and a standard protocol—on paper was a valid connection. In reality, it was the “keys to the kingdom” being handed … Continued

The post Advancing Zero Trust Private Cloud with vDefend Lateral Security appeared first on VMware Security Blog.

This article was originally published May 2025 in: AI can transform Zero Trust security implementation and management from a complex manual and multi-year task into an highly-automated, rapidly-deployable solution for modern enterprises. As enterprises increasingly move workloads to private cloud for reasons such as performance, compliance and to leverage AI on-premise, security leaders face a … Continued

The post Game changer: How AI simplifies implementation of Zero Trust security objectives appeared first on VMware Security Blog.

When deploying Zero Trust to quickly address security gaps and improve segmentation posture in a brownfield or greenfield environment, customers need a prescriptive, multi-stage segmentation workflow designed to progressively secure east-west traffic in the VMware Cloud Foundation (VCF) private cloud. vDefend delivers Distributed Firewall (DFW) 1-2-3-4* — an automated workflow that helps security administrators systematically … Continued

The post vDefend DFW 1-2-3-4: Deploy Zero Trust Micro-segmentation in a Few Weeks to Rapidly Secure VCF Workloads appeared first on VMware Security Blog.

In today’s rapidly evolving threat landscape, effective security operations hinge on two critical pillars: automation and context aggregation. As organizations grapple with increasingly sophisticated attacks, the ability to seamlessly integrate diverse security solutions becomes paramount. This challenge is easily resolved through the successful integration of VMware vDefend Advanced Threat Prevention (ATP) with Security Information and … Continued

The post Stacking Your Defenses: Integrating Advanced Threat Prevention and SIEM appeared first on VMware Security Blog.

Announcing Micro-Segmentation Quick Start Wizard, NDR Sensor for datacenter-wide threat visibility, Fileless Malware Defense, and a tech preview of Lateral Security for Agentic AI In a world where cyber threats evolve by the nanosecond and AI/GenAI is reshaping every industry, security can feel like a game of endless catch-up. But what if you could not … Continued

The post Unleash Zero Trust: Secure Private Cloud and Agentic AI Workloads with VMware vDefend Innovations appeared first on VMware Security Blog.

VMware Explore 2025 is right around the corner! The agenda is bursting at the seams, and the catalog’s session scheduler is now available. Taking place in Las Vegas again this year from August 25 to 28, 2025, Explore 2025 will provide attendees with insights into cutting-edge technology purpose-built for private cloud environments. This year throws … Continued

The post VMware vDefend Sessions at Explore 2025 appeared first on VMware Security Blog.

Dubai Airports, responsible for managing both Dubai International (DXB) and Dubai World Central – Al Maktoum International (DWC), stands as a testament to the United Arab Emirates’ remarkable progress in establishing itself as a major international travel destination. DXB, a global aviation hub, retained its position as the world’s busiest international airport for the 11th … Continued

The post Dubai Airports Secures Critical Infrastructure with VMware vDefend appeared first on VMware Security Blog.

A home lab is an engineer’s paradise – offering a safe space to experiment, troubleshoot, and master new technologies at their own pace. VMware by Broadcom supports this method of hands-on learning, and now, with VMUG Advantage, membership benefits now include access to the VMware vDefend license. This new benefit allows Advantage members who pass … Continued

The post vDefend is now a part of VMUG Advantage appeared first on VMware Security Blog.

New enhancements include VPC-Aware Lateral Security, Self-Service Micro-segmentation, Streamlined vDefend Migration to VCF, and Global Centralized IDS/IPS Policy Management for Accelerated Threat Response and Enforcement  The modern enterprise is rapidly adopting a private cloud strategy for its environments. A recent research study involving 1,800 senior leaders revealed that their organizations are prioritizing private cloud to … Continued

The post VMware vDefend Integrations with VMware Cloud Foundation 9.0: Accelerating Lateral Security for All VCF Applications appeared first on VMware Security Blog.

Security Segmentation Assessment is a new feature in Security Services Platform (SSP) 5.0 that enhances Security Intelligence by delivering a comprehensive, data-driven view of the organization’s current security posture. It not only highlights segmentation gaps but also provides actionable recommendations to harden your environment against modern threats. This capability is available with both VMware vDefend … Continued

The post Accelerating Micro-segmentation Adoption with Security Segmentation Assessment appeared first on VMware Security Blog.

Update July 15, 2025 Today, Broadcom has released the following new VMware security advisory: VMSA-2025-0013 – VMware ESXi, Workstation, Fusion, and Tools updates address multiple vulnerabilities (CVE-2025-41236, CVE-2025-41237, CVE-2025-41238, CVE-2025-41239) The advisory documents the remediation of the Critical, Important, and Moderate severity vulnerabilities demonstrated at the Pwn2Own 2025 hacking contest. Customers should review the security … Continued

The post VMware and Pwn2Own 2025 – Berlin appeared first on VMware Security Blog.

New enhancements include: Micro-segmentation Assessment, Air-gapped NDR, and Scale-out Data Lake Platform (Security Services Platform 5.0) For decades, enterprises have relied on perimeter defenses to protect their private cloud assets from external threats. Yet, in this era of ransomware, protecting only the perimeter has proven to be insufficient. Traditionally, only a handful of “crown jewel” … Continued

The post VMware vDefend: Accelerate Enterprise’s Zero Trust Private Cloud Journey with Micro-segmentation and NDR Innovations appeared first on VMware Security Blog.

Complex, multi-staged ransomware attacks are top of mind for organizations across all industries. VMware vDefend Advanced Threat Prevention has won the AAA award from SE labs in the Advanced Security test, confirming its excellent capabilities in detecting these advanced threats. We are very happy to announce that SE Labs has awarded VMware vDefend Advanced Threat … Continued

The post SE Labs awards VMware vDefend Advanced Threat Prevention “AAA” Rating! appeared first on VMware Security Blog.

At Broadcom, we are committed to providing cutting-edge security solutions to empower VMware Cloud Foundation customers with cyber-resilient private cloud. We are excited to announce the general availability of Lateral Security for VMware Cloud Foundation with VMware vDefend validated solution. New to VMware Validated Solutions? VMware Validated Solutions is a vetted portfolio of technical validated solutions … Continued

The post Introducing Lateral Security for VMware Cloud Foundation with VMware vDefend Validated Solution appeared first on VMware Security Blog.

Introduction VMware vDefend objects can be created in both the UI and API. The vDefend API can be interacted with using tools like Postman, cURL, and Terraform along with scripting languages like Python and Golang. In this guide, we will be using Postman. The API documentation can be found here and has all the information … Continued

The post Getting Started with VMware vDefend Automation: Part 1 appeared first on VMware Security Blog.

VMware vDefend’s GenAI co-pilot innovation speeds up ransomware threat defense with context-driven explainability of the attack chain, correlated threat campaign insights, and guided remediation. There’s a lot of euphoria around generative AI/GenAI today, not just among enterprises but also among threat actors wanting to cast a wider net for ransom. As these technologies evolve, they … Continued

The post Introducing Intelligent Assist for VMware vDefend: Turbocharge Threat Defense with GenAI-Driven Intelligence appeared first on VMware Security Blog.

VMware Cloud Foundation (VCF) seamlessly integrates on-premises virtual infrastructure with the agility of the public cloud. This empowers customers to establish their own private cloud within a secure and controlled data center environment, delivering scalability, rapid innovation, and effective cost management. Security is a crucial consideration for any cloud environment. Organizations should design and implement … Continued

The post Secure VCF Management Workload Domain with VMware vDefend appeared first on VMware Security Blog.

The latest enhancements to the VMware vDefend portfolio include custom IDS/IPS signature options tailored for industry-specific attacks and a malware analysis test drive for advanced malware analysis.  In today’s evolving threat landscape, digital enterprises face sophisticated, laterally mobile cyberattacks within their private cloud environments. Traditional perimeter defenses are simply insufficient to secure east-west application traffic. … Continued

The post VMware vDefend: Latest Enhancements in Advanced Threat Prevention appeared first on VMware Security Blog.

VMware Explore Barcelona 2024 preparations are underway, and we couldn’t be more excited!  Mark your calendars for this year’s European event at Fira Gran Via in Barcelona from 4 – 7 November. The content catalog and session scheduling tool are now available, waiting for you to choose your favorites. In today’s ever-evolving cybersecurity arena, vDefend … Continued

The post VMware vDefend Security Sessions at VMware Explore Barcelona 2024 appeared first on VMware Security Blog.