VMware vDefend Community Blog

The modern enterprise is rapidly adopting a private cloud strategy for its environments. A recent research study involving 1,800 senior leaders revealed that their organizations are prioritizing private cloud to address challenges stemming from cost concerns, the need for predictability, AI workload requirements, lateral security, and compliance. With digital enterprises doubling down on private cloud strategies, IT and security teams face the challenge of securing workloads as quickly and efficiently as possible. With most ransomware breaches involving lateral propagation of threats to hunt for high-value assets, security strategies are evolving to ...

vDefend Release Announcement by Prashant Gandhi March 26, 2025 New enhancements include: Micro-segmentation Assessment, Air-gapped NDR, and Scale-out Data Lake Platform (Security Services Platform 5.0) For decades, enterprises have relied on perimeter defenses to protect their private cloud assets from external threats. Yet, in this era of ransomware, protecting only the perimeter has proven to be insufficient. Traditionally, only a handful of “crown jewel” applications were protected inside the private cloud. East-west traffic being ~4X more than north-south traffic, extending perimeter defenses internally proved neither scalable nor economically ...

by Stijn Vanveerdeghem February 25, 2025 Complex, multi-staged ransomware attacks are top of mind for organizations across all industries. VMware vDefend Advanced Threat Prevention has won the AAA award from SE labs in the Advanced Security test, confirming its excellent capabilities in detecting these advanced threats. We are very happy to announce that SE Labs has awarded VMware vDefend Advanced Threat Prevention (ATP) the AAA rating in Advanced Security testing. According to the report, “ VMware vDefend Advanced Threat Prevention was tested against a range of hacking attacks designed to compromise systems and penetrate target networks ...

by Nikodim Nikodimov February 6, 2025 At Broadcom, we are committed to providing cutting-edge security solutions to empower VMware Cloud Foundation customers with cyber-resilient private cloud. We are excited to announce the general availability of Lateral Security for VMware Cloud Foundation with VMware vDefend validated solution. New to VMware Validated Solutions? VMware Validated Solutions is a vetted portfolio of technical validated solutions designed to help customers build secure, high-performing, resilient, and efficient infrastructure for their applications and workloads deployed on VMware Cloud Foundation. The VMware ...

Introduction: VMware vDefend objects can be created in both the UI and API. The vDefend API can be interacted with using tools like Postman, cURL, and Terraform along with scripting languages like Python and Golang. In this guide, we will be using Postman. The API documentation can be found here and has all the information you need to perform CRUD actions against the NSX Manager. In this article, we will be focusing on the absolute basics of how to use the NSX Policy API to gather information. https://developer.broadcom.com/xapis/nsx-t-data-center-rest-api/latest/ Building the URL: All queries to the NSX Manager will start with what protocol ...

Announcement: Over the past year, our team has been hard at work on an initiative known as Project Cypress. The result is Intelligent Assist for vDefend, powered by GenAI and LLM. This new capability simplifies the way virtualization, network security, and SOC teams understand detailed, contextual information about active threats and their impact. Read all the details in this blog .

We are excited to unveil new vDefend Advanced Threat Prevention enhancements with the VCF 5.2.1 release: IDS/IPS Custom Signature Support: For our distributed and hypervisor-integrated IDS/IPS offering, customers can now import their own custom IDS/IPS signatures or those sourced from third-party threat feeds, enabling tailored defenses against industry-specific attacks. Malware Analysis Test Drive: This capability allows customers to upload artifacts (files/URLs) for in-depth analysis, providing crucial insights into highly evasive malware and zero-day threats. Read the full blog here.

VMware has established itself as a pioneer and global leader in the private cloud market with VMware Cloud Foundation (VCF). As applications are on-boarded on VCF, lateral security becomes paramount to prevent breaches and ransomware attacks. Read more in this blog by ANS General Manager Umesh Mahajan to understand the value of a radically simplified VMware security and load balancing portfolio.

Protecting enterprise crown jewels—applications and data requires an architectural approach. This blog highlights how VMware vDefend architecture and product portfolio delivers enterprises’ tactical needs to defend against relentless cyber attacks while ensuring a flexible and future-proof architecture to meet tomorrow’s security challenges.

vDefend is at the forefront of protecting your private cloud from ransomware and other threats with advanced security capabilities such as distributed firewall, gateway firewall, advanced threat prevention, security intelligence, and more. At VMware Explore Barcelona, there are so many sessions to choose from – our featured session with Application Networking and Security General Manager Umesh Mahajan, breakouts, tutorials, hands-on labs, and an opportunity to meet the experts. Read about the Explore Barcelona sessions here.

Read about the latest vDefend innovations, which focus on GenAI assist for threat defense, greater performance, assessment, and deployment flexibility for malware and ransomware prevention, VCF 9 integrations, and zero-trust lateral security enhancements. Read the blog here.

This blog by Head of Products Prashant Gandhi details the latest vDefend enhancements, including a a significant increase in scale, simplified Distributed Firewall operations, enhanced NDR threat defense, and streamlined Security Intelligence capacity planning. Read the blog to learn more.

Threat actors move stealthily through an enterprise network and try to blend their activity into regular background traffic. The only way to reliably distinguish between suspicious – but ultimately benign – network activity and true attacks is to add signal. Read this blog to understand why workload awareness should be a critical component of your overall security strategy. Read the blog here

As network/security professionals, it is critical to protect east/west network traffic with more than perimeter firewalls. It is essential to protect everything - from common services to business-critical applications. Read more about the multiple ways to establish increased visibility into the data center flows to achieve quick wins and begin to protect your workloads from potential threats. Read the blog here by Andrew Hrycaj and Stijn Vanveerdeghem