VMware Cloud Foundation Elevates Cyber Resilience, Compliance, and Security for the Modern Private Cloud
Broadcom (NASDAQ: AVGO) has announced significant security enhancements to VMware Cloud Foundation (VCF) to address cyber resilience and compliance challenges in regulated industries. The company introduced VCF Advanced Cyber Compliance, which offers continuous compliance enforcement, automated cyber recovery, and enhanced platform security.
Key innovations include new lateral security features for AI workloads, advanced threat detection capabilities, and fileless malware defense. The Avi Load Balancer received upgrades including post-quantum cryptography, mutual TLS authentication, and enhanced security for AI applications. These improvements address critical market needs, as research shows 65% of attacks to large organizations result in data encryption, and 71% of multinational enterprises struggle with cross-border regulatory compliance.
Broadcom (NASDAQ: AVGO) ha annunciato importanti miglioramenti di sicurezza per VMware Cloud Foundation (VCF) volti a rafforzare la resilienza informatica e la conformità nei settori regolamentati. È stato introdotto VCF Advanced Cyber Compliance, che fornisce applicazione continua delle regole di conformità, ripristino informatico automatizzato e una maggiore protezione della piattaforma.
Le innovazioni principali comprendono nuove funzionalità di sicurezza laterale per carichi di lavoro IA, capacità avanzate di rilevamento delle minacce e difesa contro malware fileless. Anche l'Avi Load Balancer è stato potenziato con crittografia post-quantistica, autenticazione mTLS e protezioni rafforzate per applicazioni AI. Questi aggiornamenti rispondono a esigenze concrete del mercato: le ricerche indicano che il 65% degli attacchi alle grandi organizzazioni causa cifratura dei dati e il 71% delle imprese multinazionali affronta difficoltà nella conformità regolatoria transfrontaliera.
Broadcom (NASDAQ: AVGO) ha anunciado importantes mejoras de seguridad para VMware Cloud Foundation (VCF) con el objetivo de reforzar la ciberresiliencia y el cumplimiento en industrias reguladas. La compañía presentó VCF Advanced Cyber Compliance, que ofrece aplicación continua de controles de cumplimiento, recuperación cibernética automatizada y mayor seguridad de la plataforma.
Las novedades clave incluyen nuevas funciones de seguridad lateral para cargas de trabajo de IA, capacidades avanzadas de detección de amenazas y defensa contra malware sin archivos. El balanceador de carga Avi recibió mejoras como criptografía post-cuántica, autenticación mutua TLS y seguridad reforzada para aplicaciones de IA. Estas mejoras responden a necesidades críticas del mercado: investigaciones muestran que el 65% de los ataques a grandes organizaciones provoca cifrado de datos y el 71% de las empresas multinacionales tiene dificultades con el cumplimiento regulatorio transfronterizo.
Broadcom (NASDAQ: AVGO)� 규제 산업� 사이� 회복력과 규정 준� 문제� 해결하기 위해 VMware Cloud Foundation(VCF)� 대� 주요 보안 강화 기능� 발표했습니다. 회사� 지속적� 규정 준� 적용, 자동화된 사이� 복구 � 플랫� 보안 강화� 제공하는 VCF Advanced Cyber Compliance� 도입했습니다.
주요 혁신으로� AI 워크로드� 위한 새로� 횡방� 보안 기능, 고급 위협 탐지 기능 � 파일리스 멀웨어 방어가 포함됩니�. Avi 로드 밸런서는 포스� 양자 암호�, 상호 TLS 인증 � AI 애플리케이션� 위한 향상� 보안� 포함� 업그레이드되었습니다. 이러� 개선 사항은 시장� 핵심 요구� 해결합니�. 연구� 따르� 대� 조직� 대� 공격� 65%가 데이� 암호화를 초래하며, 71%� 다국� 기업� 국경 � 규제 준수에 어려움� 겪고 있습니다.
Broadcom (NASDAQ: AVGO) a annoncé des améliorations significatives de la sécurité pour VMware Cloud Foundation (VCF) afin de renforcer la cybersécurité et la conformité dans les secteurs régulés. L'entreprise a lancé VCF Advanced Cyber Compliance, offrant une application continue de la conformité, une récupération cybernétique automatisée et une sécurité de plateforme renforcée.
Parmi les innovations clés figurent de nouvelles fonctions de sécurité latérale pour les charges de travail IA, des capacités avancées de détection des menaces et une protection contre les malwares sans fichiers. L'Avi Load Balancer a été amélioré avec la cryptographie post-quantique, l'authentification mutuelle TLS et une sécurité accrue pour les applications IA. Ces améliorations répondent à des besoins critiques du marché : les études montrent que 65 % des attaques contre les grandes organisations entraînent un chiffrement des données et que 71 % des entreprises multinationales rencontrent des difficultés de conformité réglementaire transfrontalière.
Broadcom (NASDAQ: AVGO) hat bedeutende Sicherheitsverbesserungen für VMware Cloud Foundation (VCF) angekündigt, um Cyber-Resilienz und Compliance-Herausforderungen in regulierten Branchen zu adressieren. Das Unternehmen stellte VCF Advanced Cyber Compliance vor, das kontinuierliche Durchsetzung von Compliance, automatisierte Cyber-Wiederherstellung und verstärkte Plattformsicherheit bietet.
Wesentliche Neuerungen sind neue laterale Sicherheitsfunktionen für KI-Workloads, erweiterte Bedrohungserkennungsfähigkeiten und Schutz gegen fileless Malware. Der Avi Load Balancer wurde mit postquantensicherer Kryptographie, gegenseitiger TLS-Authentifizierung und verbesserter Sicherheit für KI-Anwendungen aufgerüstet. Diese Verbesserungen sprechen zentrale Marktbedürfnisse an: Untersuchungen zeigen, dass 65 % der Angriffe auf große Organisationen zu Datenverschlüsselung führen und 71 % der multinationalen Unternehmen Schwierigkeiten bei grenzüberschreitender regulatorischer Compliance haben.
- None.
- Complex regulatory compliance challenges affecting 71% of multinational enterprises
- High vulnerability to cyber attacks with 65% resulting in data encryption
- Increasing security risks from new agentic AI workloads requiring additional protection
Insights
Broadcom enhances VMware's security portfolio with comprehensive compliance and AI workload protection capabilities, strengthening its enterprise value proposition.
Broadcom's latest VMware Cloud Foundation (VCF) enhancements represent a strategic evolution of the platform's security capabilities, directly addressing two critical market challenges: regulatory compliance complexity and emerging AI workload vulnerabilities. The new VCF Advanced Cyber Compliance service delivers automated compliance management at scale—particularly valuable as 71% of multinational enterprises struggle with cross-border regulatory adherence. This is not merely incremental improvement but a significant competitive differentiator in regulated industries like healthcare and finance where compliance failures carry substantial penalties.
The innovations in vDefend are especially noteworthy for their focus on securing agentic AI workloads—an emerging attack vector that few security vendors are adequately addressing. By implementing Zero Trust lateral security specifically for AI systems, Broadcom is positioning VMware technology at the forefront of secure AI infrastructure, potentially capturing market share as organizations rapidly deploy these workloads.
The integration of post-quantum cryptography in Avi Load Balancer demonstrates forward-thinking security architecture that addresses long-term cryptographic resilience. While quantum computing threats aren't immediate, this future-proofing creates enterprise value and reduces eventual migration costs for customers.
These enhancements collectively strengthen Broadcom's enterprise value proposition by embedding advanced security directly into the infrastructure layer—aligning with the industry shift toward consolidated platforms rather than point solutions. This integrated approach should yield higher attachment rates for Broadcom's security portfolio and potentially improve customer retention through deeper platform entrenchment.
Broadcom's VMware security enhancements demonstrate an architecture-first approach to cybersecurity that addresses several critical gaps in traditional security models. The most significant advancement is their approach to lateral security for AI workloads—a crucial development as agentic AI systems create novel attack surfaces through their dynamic interactions with system components.
The vDefend enhancements reveal sophisticated understanding of modern attack methodologies. The new fileless malware detection capabilities target a particularly dangerous threat vector�in-memory attacks leveraging PowerShell and scripting languages that bypass traditional file-scanning defenses. By integrating with Windows' Antimalware Scan Interface, vDefend can intercept malicious scripts before execution, addressing a vulnerability that many endpoint protection platforms struggle with.
The introduction of Network Detection and Response sensors shows VMware is expanding beyond infrastructure security into comprehensive threat detection across the data center. This approach enables enterprise-wide campaign detection rather than just isolated incident response.
The Model Context Protocol (MCP) security features represent one of the first commercial implementations specifically designed to secure agentic AI communications, with session persistence and authorization controls that can prevent unauthorized model access or manipulation.
Broadcom is effectively differentiating by focusing on automated compliance enforcement with the new VCF Advanced Cyber Compliance service. This directly addresses operational challenges in regulated environments where continuous monitoring and remediation are required, but often difficult to implement consistently at scale.
These capabilities collectively position VMware's security portfolio as infrastructure-native rather than bolted-on, potentially reducing security gaps while simplifying management—a compelling proposition for security teams facing tool proliferation challenges.
New VCF and Advanced Services Innovations Address Compliance Complexities in Regulated Industries and Security Gaps posed by New Agentic AI Workloads
LAS VEGAS, Aug. 26, 2025 (GLOBE NEWSWIRE) -- VMware Explore 2025—Today, Broadcom Inc. (NASDAQ: AVGO) announced VMware Cloud Foundation (VCF) Advanced Cyber Compliance and new innovations across VMware vDefend and VMware Avi Load Balancer to strengthen resilience, compliance and security for customers adopting a modern private cloud in regulated industries.
Cyber resilience and compliance are top of mind to C-Suite executives, board members and IT practitioners as most organizations today face complex challenges that put their data at risk. Research shows that
“Cyber-attacks and failure to meet regulatory requirements carry significant human and financial consequences,� said Paul Turner, vice president of products, VMware Cloud Foundation Division at Broadcom. “A cyber-resilient private cloud based on VMware Cloud Foundation and Advanced Services provides a unified approach to infrastructure hardening, threat prevention, compliance, and cyber recovery that inherently eliminates the complexities and vulnerabilities of disparate point solutions. With our latest innovations, we’re taking the next step in simplifying cyber compliance and better protecting AI workloads.�
New Cyber Compliance Advanced Service for VMware Cloud Foundation
Many customers operating in highly-regulated environments require increased cyber-risk governance and automated compliance management at scale. Broadcom is announcing VCF Advanced Cyber Compliance, a new Advanced Service that combines industry-leading technologies to deliver enhanced cyber compliance, resiliency, and platform security for VCF environments. The offering is built around three key business outcomes:
- Continuous Compliance Enforcement at Scale: VCF SaltStack capabilities, accessible directly from the VCF Operations console, will enable fully-automated monitoring and desired state remediation at scale to provide continuous compliance for VCF environments and eliminate visibility silos. Additionally, customers will gain access to managed and secure data engine images, with enterprise support and automated patching to strengthen compliance for critical databases.
- Automated Cyber and Data Recovery: the service will enable fully automated cyber and disaster recovery to isolated, on-premises VCF clean rooms. Integrated push-button VM network isolation will enable rapid recovery from ransomware and IT disruptions such as power outages, natural disasters, and hardware failures. Secure restore operations are powered by end-to-end cyber recovery workflows with integrated validation tools that identify and help clean both fileless and file-based strains of malware. VCF Advanced Cyber Compliance will also strengthen resilience for data engines with automated operational cloning, backup and restore
- Enhanced Platform Security and Incident Response: the offering will enable customers to access secure-by-design container images with enterprise support, advanced secure computing to bolster protection at the core of the infrastructure and reduce the attack surface, and premium compliance and risk management with proactive assessments and early access to compliance updates.
VMware vDefend and VMware Cloud Foundation Protect the Modern Private Cloud
With VCF and VMware vDefend, advanced micro-segmentation, adherence to Zero Trust principles, and enhanced threat detection embedded directly into the compute, storage, and networking layers make security intrinsic for critical enterprise workloads. The vDefend Advanced Service for VCF helps customers achieve greater application and threat visibility, implement Zero Trust lateral security, and deploy a multi-layer defense against modern malware and ransomware attacks. The newest VMware vDefend innovations for the modern private cloud include:
- Lateral Security for AI Workloads: vDefend is introducing a tech preview for Zero Trust lateral security specifically for agentic AI workloads running on VMware Cloud Foundation. This capability will address the new attack surface created by AI workloads by securing communication paths and access controls with a Zero Trust model.
- Accelerating Zero Trust Implementation: New automation-driven workflows will fast-track multi-stage segmentation for private cloud workloads, securing foundational services first, then progressively applying granular application-level protection. New Firewall Rule Analysis will optimize Distributed Firewall rules by identifying redundancies and misconfigurations, allowing lean and efficient security policies. Together, these features will streamline lateral security.
- Extended Threat Detection: A new Network Detection and Response (NDR) sensor will provide comprehensive, data center-wide threat visibility. It can be deployed into existing monitoring fabrics to collect traffic from all data center workloads and network devices. This enables the detection of enterprise-wide threat campaigns, enhancing overall security posture.
- Fileless Malware Defense: vDefend will include advanced capabilities for fileless malware detection, directly targeting stealthy in-memory attacks that leverage PowerShell, VBScript, and Jscript. By integrating with the Antimalware Scan Interface (AMSI) for Windows workloads, vDefend inspects and intercepts malicious scripts before execution. This enhancement closes a major blind spot by providing in-memory detection and rich telemetry for forensic analysis.
Boosting Security for VMware Cloud Foundation with Avi Load Balancer
VMware Avi Load Balancer with VMware Cloud Foundation enables customers to deploy layered threat defense to help protect workloads against web-level attacks. The newest Avi Load Balancer innovations for VCF-based modern private clouds include:
- Post-quantum Cryptography (PQC): PQC addresses the concern that quantum computing would break current encryption schemes and hence can compromise privacy and data confidentiality. Avi will support National Institute of Standards and Technology (NIST) specified PQC algorithms designed to ensure quantum resistant cryptography.
- Mutual Authentication for TLS (mTLS): In vSphere Kubernetes Service environments, Avi’s mTLS capability will support cryptographic authentication for both client and server connections, further enhancing security for Kubernetes application traffic.
- WAF Assessment and Report: Avi will provide a built-in Web Application Firewall (WAF) assessment tool, enabling customers to quickly assess security posture for web-centric attacks and generate a report. This enables VCF administrators to enable Avi WAF protection progressively across VCF applications, starting with high-risk areas.
- MCP Traffic Security for Agentic AI Workloads: Model Context Protocol (MCP) is being increasingly adopted by AI developers for agentic AI applications. Avi is introducing a tech preview of securing MCP traffic with WAF while providing MCP session persistence and authorization to help reduce the new attack surface.
Additional Resources
- Read all of the
- Read the to learn about the Cloud Reset taking place
- Learn more about
- Follow VMware Cloud Foundation social channels on , and
Sources
About VMware Explore
VMware Explore is the definitive cloud event for IT practitioners seeking to unravel IT complexity, stay on top of AI-driven advancements, and spur professional growth. VMware Explore 2025 will welcome a vibrant community of IT experts with the in-depth technical content they want and the hands-on labs and certifications they need. Attendees will see firsthand how VMware solutions simplify private cloud, so they can shift from managing their clouds to reaping the benefits of a modern, future-proof solution. To learn more about VMware Explore, please visit:
About Broadcom
Broadcom Inc. (NASDAQ: AVGO) is a global technology leader that designs, develops, and supplies a broad range of semiconductor, enterprise software and security solutions. Broadcom's category-leading product portfolio serves critical markets including cloud, data center, networking, broadband, wireless, storage, industrial, and enterprise software. Our solutions include service provider and enterprise networking and storage, mobile device and broadband connectivity, mainframe, cybersecurity, and private and hybrid cloud infrastructure. Broadcom is a Delaware corporation headquartered in Palo Alto, CA. For more information, go to .
Broadcom, the pulse logo, and Connecting Everything are among the trademarks of Broadcom. The term "Broadcom" refers to Broadcom Inc., and/or its subsidiaries. Other trademarks are the property of their respective owners. The information in this news release is for informational purposes only and may not be incorporated into any contract. There is no commitment or obligation to deliver any items presented herein.
Media Contact:
Roger T. Fortier
VCF Division, Broadcom
+1.408.348.1569
FAQ
What new security features did Broadcom announce for VMware Cloud Foundation in 2025?
How does VMware's new VCF Advanced Cyber Compliance service address security challenges?
What improvements were made to VMware's Avi Load Balancer in 2025?
How does VMware's vDefend protect against fileless malware attacks?
What specific AI security features were introduced in VMware Cloud Foundation?
