VMware Ups Its Cyber-Resiliency Game With NSX+ and Ransomware Recovery

VMware Ups Its Cyber-Resiliency Game With NSX+ and Ransomware Recovery

The News: At its VMware Explore conference, VMware announced new and enhanced existing capabilities for cyber-resiliency. Specifically, it launched its VMware NSX+ and NSX+ VPCs offerings, and it enhanced its Ransomware Recovery service. Additional detail is available in VMware’s press release.

VMware Ups Its Cyber-Resiliency Game With NSX and Ransomware Recovery

Analyst Take: Cyber-crime is continually on the rise and evolving. As a result, approaches for software-defined networking (SDN) are evolving to embrace principles of Zero Trust, in order to inhibit malicious access to the IT environment. Additionally, The Futurum Group sees demand for post-attack forensics and accelerated attack recovery. Arguably most critical is the ability to streamline operations for security and operations teams, to facilitate necessary collaboration against a backdrop of limited headcount and a rapidly changing threat landscape.

In response to these challenges, VMware launched its Ransomware Recovery Solution in Fall 2022. Futurum Labs had the opportunity to audit this solution. As will be discussed in our forthcoming Lab Insight report, we found the offering to be highly scalable, with value-adds including the ability to create secure copies via the Scale-out Cloud File System, as well as the ability to create customizable, automated disaster recovery (DR) workflows and orchestration.

As announced at VMware Explore 2023, VMware is enhancing its Ransomware Recovery service for cyber-resiliency that is sold as an add-on to VMware Cloud Disaster Recovery. The offering is designed to accelerate ransomware recovery with minimal data loss, and it is delivered as an integrated software-as-a-service (SaaS) solution. Specifically, it includes:

  • The creation of immutable backup copies that are operationally air-gapped in VMware’s Scale-out Cloud File System (SCFS).
  • Access control via authentication and role-based access control (RBAC) and optional multi-factor authentication (MFA).
  • Utilization of policy-based plans protection plans to determine the number, type, and location of copies, as well as the ability to more quickly execute recoveries of complex applications.
  • The ability to create a variety of recovery points that are minutes, months, or even years old – balancing the ability to mitigate data loss with near-term retention, with the ability to address situations where ransomware has been in the environment for a long time as well as forensics situations via deeper retention.
  • The ability to create an isolated recovery environment (IRE) that prevents reinfection from potentially-compromised systems during the validation process.
  • From a complementary perspective to the IRE, a wizard-driven recovery workflow that helps to rapidly validate multiple virtual machines (VMs), by first choosing recovery points, and powering on those VMs into the IRE to enable live behavioral analysis with validation scanning from VMware Carbon Black. This process enables security and IT teams to evaluate each VM independently prior to moving a known good copy back into production.
  • The ability to granularly recover specific files or folders, allowing for the recovery of more recent recovery points without risking re-infection by bringing the entire associated VM into a production inventory.

To the service, VMware has added the ability to protect Google Cloud VMware Engine workloads, as well as support for concurrent multi-VM recovery operations to further expedite recovery operations and reduce downtime. Additionally, slated for availability in Q3FY24 is the ability for customers to run production workloads in the cloud until forensics are completed. Also previewed at the event was what VMware is describing as a new “cybersecure storage;” specifically, customers will be able to integrate the Ransomware Recovery workflows with native vSAN snapshots. Not only does this stand to help optimize data transfer operations, it also can help customers to reduce the amount of data loss resulting from an attack.

In an additional response to customers’ evolving cyber-resiliency requirements, at VMware Explore 2023, VMware announced NSX+, previously called Project NorthStar, in order to enable consistent operations for networking and security across multi-cloud VMware Cloud environments. This includes centralized policy creation, deployment, and enforcement for security, comprehensive visibility across the network, and network detection and response (NDR) – all delivered as a cloud-hosted managed service. It also has launched NSX+ virtual private clouds (VPCs), which allows for network isolation on multi-tenant VMware cloud infrastructure via the centralized NSX interface. This enables organizations to set up dedicated, self-service environments for specific development or application teams, while still allowing IT operations teams to set operational guardrails for isolation.

Disclosure: The Futurum Group is a research and advisory firm that engages or has engaged in research, analysis, and advisory services with many technology companies, including those mentioned in this article. The author does not hold any equity positions with any company mentioned in this article.

Analysis and opinions expressed herein are specific to the analyst individually and data and other information that might have been provided for validation, not those of The Futurum Group as a whole.

Other insights from The Futurum Group:

VMware Doubles Down on Cross-Cloud Services

Breaking Down the Myths on Broadcom-VMware

Broadcom-VMWare Deal Approved by EU

Author Information

Krista Case

Krista Case brings over 15 years of experience providing research and advisory services and creating thought leadership content. Her vantage point spans technology and vendor portfolio developments; customer buying behavior trends; and vendor ecosystems, go-to-market positioning, and business models. Her work has appeared in major publications including eWeek, TechTarget and The Register.

Related Insights
Compliance as Code Is No Longer Optional: Why Manual Reviews Can’t Keep Up
July 4, 2026

Compliance as Code Is No Longer Optional: Why Manual Reviews Can’t Keep Up

Qodo's 'Compliance as Code' framework automates enterprise AI compliance through PR checks, solving the data privacy and security gaps that plague manual reviews at scale....
Brave's Browser Containers Raise the Bar for Privacy and Workflow Flexibility
July 3, 2026

Brave’s Browser Containers Raise the Bar for Privacy and Workflow Flexibility

As AI platform adoption accelerates to $181.3B projected market size, Brave's v1.92 release introduces native browser containers addressing data privacy concerns for 52.6% of enterprise decision makers managing multi-cloud AI...
The Hard(er) Challenge in Agent Governance Is Authorization
June 25, 2026

The Hard(er) Challenge in Agent Governance Is Authorization

Fernando Montenegro, VP at Futurum Group, argues that the launch of the Agent Control Standard does not close the agent governance gap, and that "shrinkage," not universal coverage, is the...
Can Cisco Widen Splunk’s Agentic SOC Capabilities With WideField
June 25, 2026

Can Cisco Widen Splunk’s Agentic SOC Capabilities With WideField?

Fernando Montenegro, VP at Futurum, examines Cisco's planned acquisition of WideField Security and how deeper identity and session intelligence could strengthen Agentic SOC capabilities as enterprises deploy more AI agents...
HPE Discover 2026: A Coherent AI Story That Now Has to Convert
June 24, 2026

HPE Discover 2026: A Coherent AI Story That Now Has to Convert

Fernando Montenegro and Tom Hollingsworth analyze HPE Discover 2026, where HPE built a networking-centered, full-stack AI story and now must convert that breadth into spending momentum and a security story...
Can Databricks’ Security Upgrades Finally Unify AI Innovation and Compliance at Scale?
June 19, 2026

Can Databricks’ Security Upgrades Finally Unify AI Innovation and Compliance at Scale?

Databricks announces Automatic Identity Management for Entra ID and Okta, removing compliance bottlenecks for regulated industries. New security enhancements enable zero-trust access across all major clouds....

Book a Demo

Welcome

The vision behind everything in Futurum’s Custom Research practice is this: research should show you what is happening, what comes next, and what to do about it. It should be personal to each audience, easy for people to grasp, and structured so LLMs can reason over it accurately. And it should be fast and turnkey; you want answers now, not another project to carry for quarters.

Whether you are defining business, channel, or go-to-market strategy; evaluating vendors or justifying ROI; or commissioning research to fill an emerging market need, we have your back, with a program that answers your questions with the objectivity and credibility to drive real decisions.

To do it, we bring unmatched data to bear: Futurum research, surveys, and market projections; validated market feeds; ETR’s 15 years of insight from 10,000 technology decision-makers; G2’s buyer and user data; and what our analysts hear every day. Add leading primary collection, from AI-moderated voice interviews to surveys and analyst-led interviews, all turnkey, and every project comes out credible, nuanced, and actionable.

And we don’t just drop the results in your lap. For internal work, we provide analyst-led sessions, interactive dashboards, and a range of formats. For market-facing work, Futurum delivers turnkey activation and amplification that actually gets seen, by people and by LLMs, through our media and share of voice. This is research that moves decisions and markets.

We will meet you wherever you are, from a fast-turn brief to a multi-year program, and shape the work to your goals, timeline, and budget. The right program for your moment.

If any of this is useful, I would love to talk.

Benjamin Brown, VP Custom Research, Futurum Research

Benjamin Brown

VP, Custom Research · The Futurum Group

Newsletter Sign-up Form

Get important insights straight to your inbox, receive first looks at eBooks, exclusive event invitations, custom content, and more. We promise not to spam you or sell your name to anyone. You can always unsubscribe at any time.

All fields are required






Thank you, we received your request, a member of our team will be in contact with you.