Professional VMware Horizon 7.7 (VCP-DTM 2019) (2V0-51.19) Exam dumps
Killexams.com 2V0-51-19 exam dumps contain complete question pool, updated in March 2023 including VCE exam simulator that will help you get high marks in the exam. All these 2V0-51-19 exam questions are verified by killexams certified professionals and backed by 100% money back guarantee.
2V0-51-19 Professional VMware Horizon 7.7 (VCP-DTM 2019) (2V0-51.19)
Exam Name : Professional VMware Horizon 7.7 (VCP-DTM 2020)
Exam ID : 2V0-51.19
Exam Duration : 105 minutes
Questions in exam : 65
Passing Score : 300 / 500
Exam Center : PEARSON VUE
Real Questions : VMware 2V0-51.19 Real Questions
Recommended Practice : VMware Certified Professional - Desktop and Mobility 2020 (VCP-DTM 2020) Practice Test
Section Objectives Install and Configure Horizon Server Components - Describe techniques to prepare environment for Horizon
- Determine procedures to install Horizon Components
- Determine steps to configure Horizon Components
- Analyze End User Requirements for Display Protocol Performance
- Diagnose and solve issues related to connectivity between Horizon server Components Create and Configure Pools - Configure and Manage Horizon Pools
- Build and Customize RDSH Server and Desktop Images Configure and Manage Identity Manager - Install and Configure VMware Identity Manager
- Manage VMware Identity Manager Configure and Manage User Environment Manager - Install and Configure VMware User Environment Manager
- Manage VMware User Environment Manager Configure and Manage App Volumes - Install and Configure VMware App Volumes
- Manage VMware AppStacks and writeable Volumes Configure vRealize Operations for Horizon - Install and Configure the adapter instance and Horizon Broker Agent
Professional VMware Horizon 7.7 (VCP-DTM 2019) (2V0-51.19)
Vmware Professional test
© Provided by The Register
Beat Microsoft. Set agendas. Became essential. Hiked prices. Now we wait for Broadcom's reign
Special feature In a decade of watching VMware, I've encountered two unverified but irresistible legends about the company.…
One is set in the very, very early days of the company, perhaps even before it opened for business. In this legend, IBM approaches VMware because Big Blue had sniffed the wind, realized x86 servers were going to be a huge market, and wanted to make sure it could bring virtualization to the platform. VMware showed x86 server virtualization was possible, but IBM didn't take matters further.
The second tale involves a meeting in the mid-2000s when then-CEO Diane Green was approached by Amazon.com to discuss what at the time seemed like a very odd request to acquire extraordinary quantities of the ESXi hypervisor on slightly funky terms.
In this story, VMware walked away… and Amazon decided to create its own cut of the open source Xen hypervisor to underpin what became Amazon Web Services.
I mention these stories because today, February 10, is VMware's 25th birthday.
How different might the company be at 25 had IBM engaged, or Amazon made it lord of the cloud? How different might all of enterprise computing be if IBM had prioritized x86 virtualization instead of persisting with its own platforms, or if hybrid cloud and public cloud had been intertwined from the very beginning?
We'll never know.
What we can state with certainty is that VMware at 25 is a singular success: few enterprise software companies ever reach its size or manage to thrive for so long.
Fewer still survive a full-on attack by Microsoft, which came hard at VMware hard in the late 2000s using its favorite tactic of replicating rival products then bundling them at very low cost.
Microsoft tried that with Hyper-V to make it an irresistible alternative to vSphere. But VMware, and its customers, resisted.
vSphere has been the world's server virtualization platform of choice ever since.
The company started life serving developers with a desktop hypervisor so they could more easily test their work in multiple environments. Virtualization was already well known at that time in the mainframe and Unix worlds, but virtual machines on x86 were exotic.
VMware stretched into server virtualization and made it impressively mature just in time to surf server sprawl and the great recession of 2008 that put IT budgets under the microscope.
EMC saw VMware's success in that era, and cunningly acquired it because it saw abstraction of IT resources as the future. The former storage giant was true to its word in allowing VMware to operate independently, even when that meant it pursued virtual storage that made EMC's arrays less relevant.
Virtual storage also made hyperconverged infrastructure possible, creating a welcome new architectural option. VMware next took sufficient strides into software-defined networking that the likes of Cisco and Juniper felt the need to make similar moves which changed their offerings significantly.
All server makers know doing business with VMware is essential, and Dell knew that must not be allowed to change once its acquisition of EMC gave it stewardship of the virtualization giant.
All clouds have embraced VMware as a partner they need if they're to offer a hybrid service users want.
So VMware grew and grew and grew, with revenue on track to crack $12 billion this financial year.
Virtzilla, as The Register likes to call it in homage to its dominance of server virtualization, has not been immune to controversy or error. It misstepped badly with price increases that came to be known as "vTax." In 2015 it paid a colossal fine for misleading pricing. In 2023 it wore an $8 million fine after being accused of shifting revenue into more convenient quarters to make its numbers look prettier.
The company has spent the better part of a decade trying to sort out its container strategy, and I know I'm not alone in thinking that the resulting Tanzu portfolio isn't its most coherent or mature offering. Plenty of players think they have a chance to steal VMware's future by claiming the containerization crown and making virtual machines a legacy afterthought.
In accurate years the company has also had some software quality problems, which will be tested as cybercriminals focus on its platforms like never before.
VMware users of my acquaintance grumble about price and bundling of weaker products alongside the essential vSphere and vCenter.
But few quit the company. And plenty participate in its user groups, which have generated a vivid and prolix blogosphere.
Current and former VMware staffers I spoke to for this piece talked about working for the company as a career highlight, often leading to enduring friendships that outlasted their time at the company.
VMware CEO Raghu Raghuram this week posted birthday wishes, and ended his post with: "VMware can celebrate 25 years of success, and look forward to a promising future."
That future will be as the flagship of Broadcom's software division, which last year agreed to acquire VMware for $61 billion. Regulatory necessity means Broadcom has not been able to say much of substance while it concludes the transaction, other than a string of assurances that it treasures VMware and won't upset its customers, partners or wider community.
But when I talk to those stakeholders, they remain nervous.
As should we all. Software companies of VMware's scale and significance are rare, and represent important counterweights to the even larger – and often more ruthless – players that Virtzilla has been able to evade for so long. ®
Where applications, networking, infrastructure and security have always played off each other, it has been historically easy to treat each of those elements somewhat independently as well. But mobility has turned that view upside down and shifted it sideways. Network engineers need to support local, remote and mobile users, and provide proper infrastructure. Application and app development is more heavily slanted toward mobile environments, so security professionals must consider mobility from every angle.
Whatever part of mobility falls in your bailiwick – networking, infrastructure or security – you should find at least one of our top five mobility certifications worth your time and effort.
You’ll see some changes in our lineup this year. The Citrix Certified Professional – Mobility (CCP-M) and the Microsoft Certified Solutions Associate – Mobility (MCSA – Mobility) have been retired and are no longer available. To replace them, we added the Cisco Certified Network Professional – Wireless (CCNP – Wireless) along with GIAC’s Mobile Device Security Analyst (GMOB). The CCNP Wireless is geared more toward networking than toward mobility, but is popular with individuals and employers alike. Also, VMware’s AirWatch solution is now part of Workspace ONE yielding yet another change in the lineup.
Speaking of employers, we’ve listed the results of our informal search of several online job boards for our top five certifications. These numbers indicate how many postings across the U.S. included each certification in its qualifications or requirements on a specific day. This snapshot gives you a pretty good idea of the relative popularity of the certifications in the marketplace.
Job board search results (in alphabetical order, by certification)
| Certification | SimplyHired | Indeed | LinkedIn Jobs | >Linkup.com | >Total |
|---|---|---|---|---|---|
|
ACMP (Aruba) |
49 | 58 | 126 | 31 | 264 |
|
CCNP Wireless (Cisco) |
51 | 65 | 9 | 40 | 165 |
|
GMOB (GIAC) |
15 | 17 | 58 | 14 | 104 |
|
VCP-DTM 2019 (VMware) |
40 | 55 | 6 | 69 | 170 |
|
VCP-DW 2019 |
130 | 156 | 732 | 145 | 1,163 |
In fact, it was challenging to come up with a worthwhile lineup this year. One of the issues we found is that there simply aren’t a lot of meaningful mobility certs available. Mobile technology is changing so quickly that it appears that mobile certs are not viewed as keeping up with industry changes.
Read on to learn more about our featured certifications for mobility and mobile technologies.
ACMP: Aruba Certified Mobility Professional
Aruba Networks, acquired by Hewlett Packard Enterprise (HPE) in 2015, is perhaps best known for its network infrastructure solutions, but it’s also a major player in next-generation mobility networks.
The HPE certification program includes several Aruba mobility and network management credentials. The Aruba Certified Mobility Professional, or ACMP, identifies network engineers who install and maintain enterprise mobility and wireless LAN (WLAN) projects. It’s a step up from the Aruba Certified Mobility Associate (ACMA) and is a prerequisite for the more advanced Aruba Certified Mobility Expert (ACMX).
The primary difference between the associate- and professional-level credentials is a focus on skills in environments with a single “Mobility Controller” versus multiple controllers, respectively. The expert-level certification is concerned with implementation and troubleshooting in large-scale WLANs.
The ACMP exam covers concepts, networking and topology design for Layer 2 and Layer 3 networks. An ACMP is expected to have deep knowledge of Aruba First Network Solutions, mobility and WLAN products, UCC Voice, firewall roles and policies, operations, planning and design, intrusion detection systems, troubleshooting techniques, and applications/solutions.
ACMP facts and figures
| >Certification Name | Aruba Certified Mobility Professional (ACMP) V8 |
|---|---|
| Prerequisites & Required Courses | Aruba Certified Mobility Associate (ACMA) V6.4 (currently inactive) or V8
At least one to two years of experience deploying network solutions for the enterprise plus three years of experience working with wired LAN infrastructure and switching and routing technologies is recommended. Recommended training: Scalable WLAN Design and Implementation (SWDI) 8, Rev. 17.31 or Scalable WLAN Design and Implementation (SWDI) 8.4, Rev. 19.21 |
| Number of Exams | One exam: HPE6-A71, Scalable WLAN Design and Implementation (SWDI) 8.4 (60 questions, 90 minutes) |
| Cost per Exam | $230; exam administered by Pearson VUE. |
| >URL | https://www.arubanetworks.com/support-services/training-services/ |
| >Self-Study Materials | Search for “aruba” at the HPE Press site. Currently, you can purchase study guides, practice exams and self-directed labs. |
VCP-DW 2019: VMware Certified Professional – Digital Workspace 2019 (VCP-DW 2019)
Last year, we featured the VMware AirWatch Expert Accreditation: Enterprise Mobility in our list of the top five mobility certs. AirWatch, a VMware company, is an industry leader in enterprise mobility management. VMware rolled AirWatch into its Workspace ONE solution. Today, the AirWatch unified endpoint management (UEM) powers VMware’s Workspace ONE, providing end users with an integrated platform for digital workspaces. The featured cert for AirWatch/Workspace ONE is the VMware Certified Professional – Digital Workspace 2019 (VCP- DW 2019). The VCP-DW 2019 certification is geared to IT professionals able to configure and deploy Workspace ONE solutions. Ideal candidates are also able to manage and maintain solutions, as well as troubleshoot potential issues, and should be well versed in multiple operating systems (Android, iOS and Windows 10, for example).
To earn the credential, candidates should possess at least six months of experience working with Workspace ONE Platform (AirWatch EMM and Identity manager) and installing, configuring, managing, and optimizing computing solutions for end users. In addition, candidates must pass a single, professional-level exam. Depending on the current VMware certifications held, some candidates may also be required to attend mandatory training courses. The table below reflects the certification requirements based on credentials held.
VMware AirWatch Expert Accreditation requirements
| Credential | Experience | Training course | Exams |
|---|---|---|---|
| AirWatch accreditation | Workspace ONE and Digital Workspace | Required (AirWatch and Workspace ONE training required) | VCP – Digital Workspace 2018 OR Professional Workspace ONE 2019 |
| VCP6.x (DCV, CMA or NV) OR VCP7 (CMA or DTM) OR VCP-DTM 2018 | Workspace ONE and Digital Workspace | Recommended | VCP – Digital Workspace 2018 OR Professional Workspace ONE 2019 |
| VCP-DW 2018 | Workspace ONE and Digital Workspace | Recommended | Professional Workspace ONE 2019 |
| No VCP | Workspace ONE and Digital Workspace | Required | VCP – Digital Workspace 2018 OR Professional Workspace ONE 2019 |
* Six months of experience is recommended.
Although VMware encourages candidates to keep their technology skills current, there is no formal recertification requirement.
VCP-DW 2019 facts and figures
| Certification Name | VMware Certified Professional – Digital Workspace 2019 (VCP- DW 2019) |
|---|---|
| >Prerequisites & Required Courses | Six months of experience working with Workspace ONE Platform (AirWatch EMM and Identity manager) and installing, configuring, managing, and optimizing computing solutions for end users |
| Number of Exams | One exam required: 2V0-761 VMware Certified Professional – Digital Workspace 2018 (65 questions, 135 minutes)
or 2V0-61.19 VMware Professional Workspace ONE 2019 (65 questions, 105 minutes) |
| Cost per Exam | $250 each |
| URL | https://www.vmware.com/products/workspace-one.html |
| >Self-Study Materials | The respective exam web pages contain links to recommended training and exam guides, along with additional resources, including the VMware Press, Certification Market Place, the VCP community, and Learning Zone. |
CCNP Wireless: Cisco Certified Network Professional Wireless
A newcomer to the top five list, the Cisco Certified Network Professional Wireless (CCNP Wireless) is an advanced credential geared to IT professionals working with Cisco wireless enterprise networks. Ideal candidates are able to design, implement and secure Cisco wireless networks as well as troubleshoot issues as they arise. As senior team members, CCNP Wireless certification holders can assess business requirements, make recommendations and implement solutions.
Earning the CCNP Wireless is not easy. Candidates must first obtain either the Cisco Certified Network Administrator Wireless (CCNA Wireless) or Cisco Certified Internetwork Expert (CCIE) credential. In addition, candidates must pass four exams covering designing, deploying, troubleshooting and security Cisco wireless enterprise networks.
On February 24, 2020, Cisco will roll out new certification exams. The CCNP Wireless cert will migrate to the new CCNP Enterprise credential. Cisco encourages all candidates currently working on their CCNP Wireless cert to continue, indicating that any work completed in preparation for earning the CCNP Wireless will be credited toward earning the new CCNP Enterprise certification.
For more information, interested candidates should visit the CCNP Wireless Migration Tool to learn more about how their exams map to the new Cisco certification. The last date to test on the existing CCNP Wireless exams is February 23, 2020.
The CCNP Wireless is valid for three years. To recertify, candidates must pass one of the following exams: a 642-XXX or 300-XXX professional-level exam, the CCIE written exam, the CCDE written or practical exam, or the CCAr interview and board review. Recertification requirements will change once Cisco releases its new exams, so credential holders should check with Cisco close to February 24, 2020, for the new recertification requirements.
CCNP Wireless facts and figures
| Certification Name | Cisco Certified Network Professional Wireless |
|---|---|
| Prerequisites & Required Courses | Cisco Certified Network Administrator Wireless (CCNA Wireless) or any Cisco Certified Internetwork Expert (CCIE) certification |
| Number of Exams | Four exams:
300-360 WIDESIGN 300-365 WIDEPLOY 300-370 WITSHOOT (55-65 questions, 90 minutes) 300-375 WISECURE |
| Cost per Exam | $300 each |
| URL | https://www.cisco.com/c/en/us/training-events/training-certifications/certifications/professional/ccnp-wireless.html |
| Self-Study Materials | Links to training resources, including self-study materials (study groups, learning library, books), e-learning, classroom training, practice exams, learning labs, games, and more, are maintained on the CCNP Wireless web page. Exam courses and trial questions, along with study recommendations are also available on the exam web pages. |
GMOB: GIAC Mobile Device Security Analyst (GMOB)
Making its first appearance on the top five list is GIAC’s Mobile Device Security Analyst (GMOB). Part of GIAC’s Penetration Testing certification domain, the GMOB is geared toward penetration testers, network or system administrators, ethical hackers, technical auditors and security professionals who support tables and mobile devices.
The GMOB certification validates a candidate’s ability to assess and secure mobile devices, mobile applications, systems and networks. Successful candidates are also able to mitigate damage from malware, stolen devices, and penetration testing; unlock and root mobile devices; manage iOS and Android devices; and analyze and manage network activity.
A single exam is required to earn the credential. While recommended, training is not required to earn any GIAC credential. Candidates have 120 days from the date the application is approved to attempt the exam.
To maintain the GMOB, certification holders must earn a minimum of 36 hours of continuing professional education (CPE) credits every four years and pay a renewal fee of $429.
GMOB facts and figures
| Certification Name | GIAC Mobile Device Security Analyst |
|---|---|
| >Prerequisites & Required Courses | None |
| Number of Exams | One exam (75 questions, 2 hours, 71% required to pass) |
| Cost per Exam | $769 if purchased in conjunction with training; $1,899 if purchased independently of training
Each certification attempt includes two practice exams ($318 value) |
| URL | https://www.giac.org/certification/mobile-device-security-analyst-gmob |
| Self-Study Materials | GIAC maintains links to exam objectives on the certification web page. Live and online training is also available, along with other learning resources.
Self-paced online training (called SANS OnDemand) and interactive virtual training (called SANS vLive) |
VCP-DTM (2019): VMware Certified Professional – Desktop and Mobility 2019
VMware tackles mobility with virtual desktop infrastructures and a host of technologies that enable administrators to support mobile users using virtualization tools and platforms.
The VMware Certified Professional – Desktop and Mobility 2019 (VCP-DTM 2019) certification identifies individuals who can configure and manage environments running on Horizon 7.5 and install, design, and manage Horizon with View in vSphere implementations. The VCP-DTM 2019 is well suited for professionals engaged in the delivery of personalized solutions online services geared to end users, applications and virtual desktops.
The path to earn the VCP-DTM 2019 varies depending on whether the credential seeker currently possesses a VCP and the type of VCP held. The table below reflects the requirements for the various paths to certification.
VCP-DTM 2019 requirements and prerequisites
| Credential | Experience | Training course | Foundation exams | Professional exams |
|---|---|---|---|---|
| VCP-DTM 2018 credential holders | Horizon 7.5 or 7.6 | Recommended | Not required | Horizon 7.7 exam 2019 |
| VCP6-DT, VCP6-DTM or VCP7-DTM | Horizon 7.5 or 7.6 | Recommended | Not required | Horizon 7.5 exam 2018 or Horizon 7.7 2019 |
| VCP-DTM | Horizon 7.5 or 7.6 | Required | Foundations 6, 6.5 or 6.7 | Horizon 7.5 exam 2018 or Horizon 7.7 2019 |
| VCP6 (in DCV, CMA, or NV) or VCP7-CMA or VCP6.5-DCV | Horizon 7.5 or 7.6 | Recommended | Not required | Horizon 7.5 exam 2018 or Horizon 7.7 2019 |
| VCP-DW 2018 | Horizon 7.5 or 7.6 | Recommended | Foundations 6, 6.5 or 6.7 | Horizon 7.5 exam 2018 or Horizon 7.7 2019 |
| No VCP | Horizon 7.5 or 7.6 | Required | Foundations 6, 6.5 or 6.7 | Horizon 7.5 exam 2018 or Horizon 7.7 2019 |
* Six months of experience is recommended.
In the past, VMware certifications expired after two years. However, on February 4, 2019, VMware announced that mandatory recertification is no longer required for active certifications.
VCP-DTM (2019) facts and figures
| Certification Name | VMware Certified Professional – Desktop and Mobility 2019 |
|---|---|
| Prerequisites & Required Courses | Six months of experience with Horizon 7.5 and 7.6
One required training course for VCP-DTM and candidates with no current VCP |
| Number of Exams | One or two exams required depending on current credentials held:
One Foundation Exam: 2V0-620: vSphere 6 Foundations exam (65 questions, 115 minutes, passing score 300); or 2V0-602: vSphere 6.5 Foundations exam (70 questions, 105 minutes, passing score 300); or 2Vo-01.19: vSphere 6.7 Foundations exam 2019 (65 questions, 105 minutes) Plus One Professional Desktop and Mobility Exam: 2VO-51.18: VMware Professional Horizon 7.5 exam 2018 (59 questions, 135 minutes) or 2VO-51.19: VMware Professional Horizon 7.7 exam 2019 (65 questions, 105 minutes) |
| Cost per Exam | All Foundation exams are $125; Professional Desktop and Mobility exams are $250. Exams administered by Pearson VUE. |
| >URL | https://mylearn.vmware.com/mgrReg/plan.cfm?plan=64296&ui=www_cert |
| Self-Study Materials | VMware provides several free learning videos on the VMware Education & Certification YouTube channel. The VMware Certification exam Prep page lists videos for each certification (for a fee) as well as links to private training, Lab Connect and free resources. |
Beyond the Top 5: More mobility certs
There are many more mobility certifications that can deliver job or promotion seekers an advantage in this IT niche.
Android professionals should check out the Android Certified Application Developer. If you’re interested in SAP, that company offers several SAP Mobile certifications on application mobility architectures that leverage the SAP Mobile Platform.
Professionals who work with Oracle Mobile Suite should consider either the Oracle Mobile Development Certified Implementation Specialist or the Oracle Cloud Platform Enterprise Mobile 2018 Associate Developer certification.
Some honorable mention goes to the Certified Casper certifications by Jamf and the Mobility certification from NetMotion. Also, keep your eye on the Credentialed Mobile Device Security Professional (CMDSP) from the Mobile Resource Group. This credential aims at Android and iOS device administrators and architects.
Cybercriminals are actively exploiting a two-year-old VMware vulnerability as part of a ransomware campaign targeting thousands of organizations worldwide.
Reports emerged over the weekend that VMware ESXi servers left vulnerable and unpatched against a remotely exploitable bug from 2021 were compromised and scrambled by a ransomware variant dubbed “ESXiArgs.” ESXi is VMware’s hypervisor, a technology that allows organizations to host several virtualized computers running multiple operating systems on a single physical server.
France’s computer emergency response team CERT-FR reports that the cybercriminals have been targeting VMware ESXi servers since February 3, while Italy’s national cybersecurity agency ACN on Sunday warned of a large-scale ransomware campaign targeting thousands of servers across Europe and North America.
U.S. cybersecurity officials have also confirmed they are investigating the ESXiArgs campaign. “CISA is working with our public and private sector partners to assess the impacts of these reported incidents and providing assistance where needed,” a CISA spokesperson told TechCrunch. “Any organization experiencing a cybersecurity incident should immediately report it to CISA or the FBI.”
Italian cybersecurity officials warned that the ESXi flaw could be exploited by unauthenticated threat actors in low-complexity attacks, which don’t rely on using employee passwords or secrets, according to the Italian ANSA news agency. The ransomware campaign is already causing “significant” damage due to the number of unpatched machines, local press reported.
More than 3,200 VMware servers worldwide have been compromised by the ESXiArgs ransomware campaign so far, according to a Censys search (via Bleeping Computer). France is the most affected country, followed by the U.S., Germany, Canada and the United Kingdom.
It’s not clear who is behind the ransomware campaign. French cloud computing provider OVHCloud backtracked on its initial findings suggesting a link to the Nevada ransomware variant.
A copy of the alleged ransom note, shared by threat intelligence provider DarkFeed, shows that the hackers behind the attack have adopted a “triple-extortion” technique, in which the attackers threaten to notify victims’ customers of the data breach. The unknown attackers are demanding 2.06 bitcoin — approximately $19,000 in ransom payments — with each note displaying a different bitcoin wallet address.
In a statement given to TechCrunch, VMware spokesperson Doreen Ruyak said the company was aware of reports that a ransomware variant dubbed ESXiArgs “appears to be leveraging the vulnerability identified as CVE-2021-21974” and said that patches for the vulnerability “were made available to customers two years ago in VMware’s security advisory of February 23, 2021.”
“Security hygiene is a key component of preventing ransomware attacks, and organizations who are running versions of ESXi impacted by CVE-2021-21974, and have not yet applied the patch, should take action as directed in the advisory,” the spokesperson added.
Updated with comment from CISA.
Organizations using older versions of VMWare ESXi hypervisors are learning a hard lesson about staying up-to-date with vulnerability patching, as a global ransomware attack on what VMware has deemed "End of General Support (EOGS) and/or significantly out-of-date products" continues.
However, the onslaught also points out wider problems in locking down virtual environments, the researchers say.
VMware confirmed in a statement Feb. 6 that a ransomware attack first flagged by the French Computer Emergency Response Team (CERT-FR) on Feb. 3 is not exploiting an unknown or "zero-day" flaw, but rather previously identified vulnerabilities that already have been patched by the vendor.
Indeed, it was already believed that the chief avenue of compromise in an attack propagating a novel ransomware strain dubbed "ESXiArgs" is an exploit for a 2-year-old remote code execution (RCE) security vulnerability (CVE-2021-21974), which affects the hypervisor's Open Service Location Protocol (OpenSLP) service.
"With this in mind, we are advising customers to upgrade to the latest available supported releases of vSphere components to address currently known vulnerabilities," VMware told customers in the statement.
The company also recommended that customers disable the OpenSLP service in ESXi, something VMware began doing by default in shipped versions of the project starting in 2021 with ESXi 7.0 U2c and ESXi 8.0 GA, to mitigate the issue.
Unpatched Systems Again in the Crosshairs
VMware's confirmation means that the attack by as-yet unknown perpetrators that's so far compromised thousands of servers in Canada, France, Finland, Germany, Taiwan, and the US may have been avoided by something that all organizations clearly need to do better — patch vulnerable IT assets — security experts said.
"This just goes to show how long it takes many organizations to get around to patching internal systems and applications, which is just one of many reasons why the criminals keep finding their way in," notes Jan Lovmand, CTO for ransomware protection firm BullWall.
It's a "sad truth" that known vulnerabilities with an exploit available are often left unpatched, concurs Bernard Montel, EMEA technical director and security strategist for security exposure management firm Tenable.
"This puts organizations at incredible jeopardy of being successfully penetrated," he tells Dark Reading. "In this case, with the … VMWare vulnerability, the threat is immense given the active exploitation."
However, even given the risks of leaving vulnerable systems unpatched, it remains a complex issue for organizations to balance the need to update systems with the effect the downtime required to do so can have on a business, Montel acknowledges.
"The issue for many organizations is evaluating uptime, versus taking something offline to patch," he says. "In this case, the calculation really couldn’t be more straightforward — a few minutes of inconvenience, or days of disruption."
Virtualization Is Inherently a Risk
Other security experts don't believe the ongoing ESXi attack is as straightforward as a patching issue. Though lack of patching may solve the problem for some organizations in this case, it's not as simple as that when it comes to protecting virtualized environments in general, they note.
The fact of the matter is that VMware as a platform and ESXi in particular are complex products to manage from a security perspective, and thus easy targets for cybercriminals, says David Maynor, senior director of threat intelligence at cybersecurity training firm Cybrary. Indeed, multiple ransomware campaigns have targeted ESXi in the past year alone, demonstrating that savvy attackers recognize their potential for success.
Attackers get the added bonus with the virtualized nature of an ESXi environment that if they break into one ESXi hypervisor, which can control/have access to multiple virtual machines (VMs), "it could be hosting a lot of other systems that could also be compromised without any additional work," Maynor says.
Indeed, this virtualization that's at the heart of every cloud-based environment has made the task of threat actors easier in many ways, Montel notes. This is because they only have to target one vulnerability in one instance of a particular hypervisor to gain access to an entire network.
"Threat actors know that targeting this level with one arrow can allow them to elevate their privileges and grant access to everything," he says. "If they are able to gain access, they can push malware to infiltrate the hypervisor level and cause mass infection."
How to Protect VMware Systems When You Can't Patch
As the latest ransomware attack persists — with its operators encrypting files and asking for around 2 Bitcoin (or $23,000 at press time) to be delivered within three days of compromise or risk the release of sensitive data — organizations grapple with how to resolve the underlying issue that creates such a rampant attack.
Patching or updating any vulnerable systems immediately may not be entirely realistic, other approaches may need to be implemented, notes Dan Mayer, a threat researcher at Stairwell. "The truth is, there are always going to be unpatched systems, either due to a calculated risk taken by the organizations or due to resource and time constraints," he says.
The risk of having an unpatched system in and of itself may be mitigated then by other security measures, such as continuously monitoring enterprise infrastructure for malicious activity and being prepared to respond quickly and segment areas of attack if a problem arises.
Indeed, organizations need to act on the assumption that preventing ransomware "is all but impossible," and focus on putting tools in place "to lessen the impact, such as disaster recovery plans and context-switched data," notes Barmak Meftah, founding partner at cybersecurity venture capital firm Ballistic Ventures.
However, the ongoing VMware ESXi ransomware attack highlights another issue that contributes to an inherent inability for many organizations to take the necessary preventative measures: the skill and income gaps across the globe in the IT security realm, Mayer says.
"We do not have enough skilled IT professionals in nations where wealthy companies are targets," he tells Dark Reading. "At the same time, there are threat actors across the globe who are able to make a better living leveraging their skills to extort money from others than if they took legitimate cybersecurity work."
Mayer cites a report by the international cybersecurity nonprofit (ICS2) that said to secure assets effectively, the cybersecurity workforce needs 3.4 million cybersecurity workers. Until that happens, "we need to ramp up training these workers, and while the gap still exists, pay those with the skills around the world what they are worth, so they don’t turn to being part of the problem," Mayer says.
Dateline Moscow and Kyiv: Rectification of names.
Ukraine at D+348: Preparing for the first anniversary of the invasion. (CyberWire) Russia moves conscripts to assembly areas, and a dark web souk appears on Moscow's electronic billboards.
Russia-Ukraine war live: Moscow repeats warning that Nato countries supplying Kyiv with arms risks ‘unpredictable escalation’ (the Guardian) Russian defence minister accuses Nato of trying to ‘prolong the conflict’
Ukraine Warns Russia Is Planning Major Offensive (Wall Street Journal) Kyiv says Russia is amassing troops and Preparing for a new push along the eastern front. This comes amid a signal that Ukraine may reshuffle in its military leadership following a corruption scandal.
Russia-Ukraine war: Wagner founder challenges Zelensky to a dogfight for control of Bakhmut (The Telegraph) The founder of Russia’s notorious Wagner mercenary group challenged Volodymyr Zelensky to a dogfight on Monday for the control of Bakhmut, as Ukraine braced for a renewed Russian offensive.
Ukraine releases video appearing to show Russian troops beating own wounded officer (the Guardian) Footage thought to show Wagner group fighters beating commander with what appear to be shovelsWarning: video contains footage that some viewers may find distressing
Austria’s About to deliver Russia a Soapbox at the OSCE (Foreign Policy) Vienna will allow sanctioned Russian parliamentarians to attend the next big security meeting on the anniversary of Russia’s invasion of Ukraine.
Perspectives on Ukraine and the Russian Invasion (Global ECCO) Dr. Douglas Borer, Department of Defense Analysis at the US Naval Postgraduate School, asked Dr. Myerson some questions about the causes of the Russian war against Ukraine, the role of allies in Ukraine’s defense, and his perspective on how the war might end.
How Russia Decides to Go Nuclear (Foreign Affairs) Deciphering the way Moscow handles its ultimate weapon.
U.S. Leadership on Ukraine Is Increasing European Dependence (World Politics Review) Unwillingly and unintentionally, US leadership on Ukraine war policy is increasing Europe’s dependence. That could be a problem.
American conservatives are right behind Ukraine – but they want a better strategy than Biden’s (The Telegraph) The White House has been reactive, often only moving after significant Congressional and international pressure
Japan’s Long-Awaited Return to Geopolitics (Foreign Policy) Tokyo’s abandonment of its post-1945 security stance is another fallout from Russia’s war.
Analysis: Swiss neutrality on the line as arms-for-Ukraine debate heats up (Reuters) Switzerland is close to breaking with centuries of tradition as a neutral state, as a pro-Ukraine shift in the public and political mood puts pressure on the government to end a ban on exports of Swiss weapons to war zones.
The Deeper Reason Netanyahu Won’t Arm Ukraine Against Russia (Foreign Policy) Jerusalem’s ties to Moscow are partly about security. They’re also about illiberalism.
The Ukraine war is fuelling and obscuring cyberattacks (The National) The fighting is dominating the attention that might otherwise be given over to understanding the links between online threats and modern warfare
Darknet drug market BlackSprut openly advertises on billboards in Moscow (The Record from Recorded Future News) It's unclear why BlackSprut was able to buy the Moscow billboard space, but Russia is known for some permissiveness toward darknet groups.
Inside Safe City, Moscow’s AI Surveillance Dystopia (WIRED) Moscow promised residents lower crime rates through an expansive smart city project. Then Vladimir Putin invaded Ukraine.
Russia ends disclosure rules for officials, citing wartime secrecy needs (Washington Post) In the latest indication of expanded state secrecy in wartime Russia, President Vladimir Putin on Monday signed legislation that will exempt Russian lawmakers from a previous requirement that they disclose details of their income, expenses and property.
Russian Deficit Soars to $25 Billion on War Spending, Oil Embargo (Wall Street Journal) The government’s budget recorded its deepest deficit to start the year in more than a decade.
Attacks, Threats, and Vulnerabilities
Foreign states already using ChatGPT maliciously, UK IT leaders believe (CSO Online) Most UK IT leaders are concerned about malicious use of ChatGPT as research shows how its capabilities can significantly enhance phishing and BEC scams.
Ransomware Hits Unpatched VMware Systems: 'Send Money Within 3 Days' (Virtualization Review) Users who neglected to install security patches issued by VMware two years ago are now being hit by a big ransomware attack wave.
Massive ransomware attack targets VMware ESXi servers worldwide (CSO Online) Cybersecurity agencies globally — including in Italy, France, the US and Singapore — have issued alerts about a ransomware attack targeting the VMware ESXi hypervisor.
CISA steps up to help VMware ESXi ransomware victims (SC Media) CISA says any organization experiencing a cybersecurity incident tied to VMware ransomware campaigns should immediately report it to CISA or the FBI.
‘Massive’ new ESXiArgs ransomware campaign has compromised thousands of victims (The Record from Recorded Future News) Thousands of servers running an unpatched version of VMware's ESXi product are vulnerable to ESXiArgs ransomware, researchers say.
GuLoader Malware Using Malicious NSIS Executables to Target E-Commerce Industry (The Hacker News) South Korean and American e-commerce industries have been targeted by a GuLoader malware campaign.
Polygraph: Click Fraud Scammers Are Targeting Pay-Per-Click Affiliate Schemes (GlobeNewswire News Room) Pay-per-click affiliate schemes are vulnerable to sophisticated click fraud techniques....
Hackers hit Vesuvius, UK engineering company shuts down affected systems (Graham Cluley) Vesuvius, the London Stock Exchange-listed molten metal flow engineering company, says it has shut down some of its IT systems after being hit by a cyber attack.
British steel industry provider Vesuvius ‘currently managing cyber incident’ (The Record from Recorded Future News) Vesuvius Plc confirmed that the incident “involved unauthorized access to our systems,” but it did not provide further details.
Multiple DMS XSS (CVE-2022-47412 through CVE-20222-47419) (Rapid7) Through the course of routine security testing and analysis, Rapid7 has discovered several issues in on-premises installations of open source and freemium Document Management System (DMS) offerings from four vendors. While all of the discovered issues are instances of CWE-79: Improper Neutralization of Input During Web Page Generation, in this disclosure, we have ordered them from most severe to least.
CyRC special report: Secure apps? Don’t bet on it (Application Security Blog) The Cybersecurity Research Center conducted a security analysis of the 10 most popular Android sports and betting apps.
Highmark Health Suffers Phishing Attack, 300K Individuals Impacted (Health IT Security) Highmark Health notified 300,000 individuals of a phishing attack that potentially compromised protected health information.
Cybersecurity Incident Under Investigation in Berkeley County Schools - 19,000 Students Have Day Off (WV MetroNews) More than 19,000 students got the day out of school in Berkeley County on Monday (February 06), but it was a workday for staff. This after a cybersecurity incident in the district Friday. Berkeley County Schools sent out a message saying they are investigating the “cause and scope.”
West Virginia students returning to class after days-long outage following cyberattack (The Record from Recorded Future News) Nearly 20,000 students in West Virginia were forced to miss classes on Monday due to a cyberattack that crippled their school.
MTU close Cork campuses after a 'significant' IT breach (Cork Beo) All full-time and part-time classes have been cancelled
Trends
Cybercrime Shows No Signs of Slowing Down (Dark Reading) Look for accurate trends in attacks, strategies, and vulnerabilities to continue gaining steam throughout 2023.
Cyber Apocalypse 2023: Is The World Heading For A ‘Catastrophic’ Event? (Forbes) According to the 2023 Global Cybersecurity Outlook from the World Economic Forum, the world is facing more and potentially catastrophic cyber-attacks. Here, we explore what that means.
Blog | Permiso 2023 - End of Year Observations () The Permiso p0 labs team provides an overview of what they have observed from the front lines of cloud attacks over 2023, and where they expect cloud attacks to head next!
DataDome’s Inaugural E-Commerce Holiday Bot & Online Fraud Report Reveals the US as the Top Source of Bot Attacks (DataDome) Study finds US generated 10 times the number of bot attacks compared to China, the second highest source during the 2023 holiday season.
State of the Cloud 2023 (Wiz) The Wiz Threat Research team looks back on the past year to highlight trends and the state of cloud usage based on visibility across our customer base.
Marketplace
IronNet Signs Contract to Enhance Cybersecurity of U.S. Navy’s Naval Sea Systems Command (NAVSEA) Following Successful Pilot Program (Business Wire) Agreement addresses cyber threats against the Defense Industrial Base (DIB) by using the IronNet Collective Defense℠ Platform to Improve threat visibility and anonymized intelligence sharing
Bitwarden Boosts FIDO Alliance Membership (Business Wire) Bitwarden, the leading open source password manager trusted by millions, today announced that it has expanded its partnership in the FIDO Alliance, an
Netsurion CRO John Addeo Honored on 2023 CRN Channel Chiefs List (GlobeNewswire News Room) Netsurion, a leading provider of managed XDR, today announced that CRN®, a brand of The Channel...
Sumo Logic SVP of Global Partners and Alliances Named as a 2023 CRN Channel Chief (GlobeNewswire News Room) Sumo Logic (NASDAQ: SUMO), the SaaS analytics platform to enable reliable and secure cloud-native...
Aqua Security’s Jeannette Lee Heung Named a 2023 CRN Channel Chief (GlobeNewswire News Room) Lee Heung was behind the Aqua Advantage partner program launch driving a surge in channel revenue...
Axis Channel Leader Nicholas Mirizzi Receives 2023 CRN Channel Chief Honor (PR Newswire) Axis, the leading innovator in Security Service Edge, today announced that CRN®, a brand of The Channel Company, has recognized Nicholas...
Jamie Hawkins of DH2i Honored as a 2023 CRN Channel Chief (DH2I) Recognized for Dedication, Innovative Strategies, and Programs That Have Driven Partner Success
Brillio Appoints Navneet Narula to Lead Global Banking and Financial Services Unit (CXOToday.com) Industry veteran tapped to turbocharge company’s burgeoning BFSI vertical Brillio, a leading digital transformation services and solutions provider
Moti Gindi, Former CVP of Security Products at Microsoft, Joins Apiiro as Chief Product Officer (GlobeNewswire News Room) Moti, who built Microsoft Defender into a multi-billion dollar business, joins Apiiro to scale the growing business...
Folio Photonics Expands Engineering Leadership Team with the Appointment of Greg Kittilson as Vice President of Engineering (Business Wire) Announces Great Leap Forward with Newly Patented Systems and Methods for Increasing Data Rate and Storage Density in Multi-Layer Optical Discs
Products, Services, and Solutions
Cognni Launches AI-Powered Automated Infosec Risk Assessment Product (GlobeNewswire News Room) The new risk-assessment tool can scan all the data held by an organization in minutes and provide a detailed report on risks and the mitigation measures...
Cequence Security Enhances API Security Testing Capabilities (Business Wire) Cequence Security, the leading provider of Unified API Protection, today announced it has enhanced the testing capabilities within its Unified API Pro
Keyfactor Global Channel Program Hits New Milestones as Businesses Prioritize Machine Identity Management (Business Wire) Keyfactor appoints Michael de Paris as VP of EMEA Channels; SVP of Global Channel Joe Tong named to 2023 CRN Channel Chief List.
Cadien Cyber Response Launches to Deliver Incident Response & Complex Digital Forensics Services (Dark Reading) Cadien Cyber Response, a US-based incident response and complex digital forensics firm, formally launched operations today and unveiled its team of leading industry and government cyber experts focused on reactive services.
Baffle Makes Multi-Tenant Data Security for SaaS Providers Even Easier (GlobeNewswire News Room) Record-level Encryption Isolates Customer Data; BYOK Gives Customers Complete Control
How Parallel Loop Empowers Torq Users to Rapidly Automate Bulk Data Processing Up to 10x (Torq) Torq is proud to introduce Parallel Loop, a new capability that enables users to process bulk data from myriad security tools with unprecedented ease. It also provides the power of orchestration like no other automation tool in the security automation industry with true parallelism. That means multiple tasks can be run simultaneously, and optionally, on […]
Snyk Achieves FedRAMP “In Process” Milestone (GlobeNewswire News Room) With Expected FedRAMP Authorization, Snyk to Address Crucial Need for Developer Security in Public Sector
Coalfire Compliance Essentials Optimized for Automated Evidence Collection (PR Newswire) Global cybersecurity pioneer Coalfire announced today major innovations to its Compliance Essentials solution, including advanced automated...
Deepwatch Advances SecOps Platform to Detect and Contain Identity Threats (Business Wire) Introduces Managed Extended Detection and Response (MXDR) for Rapid Containment of Identity Compromise
Technologies, Techniques, and Standards
Agencies Seek Public Input on Updates to Guiding Plan for Cyber R&D (Nextgov.com) The document is updated once every four years.
How Artificial Intelligence is Changing the Spy Game (SpyCast) Mike Susong (Website, LinkedIn) joins Andrew (Twitter; LinkedIn) to discuss the impact and potential of AI on the intelligence field. Mike is a former CIA case officer who now oversees global intelligence for a risk management company.
Why Crowdsourced Security is Devastating to Threat Actors (Security Intelligence) See how crowdsourcing security is an effective tool against phishing and other cyber threats.
How to deal with sneaky spear phishing- and more - on Safer Internet Day (WatchGuard Technologies) In support of a safer Internet for all here are some insights on today’s most prevalent threats and what you can do to stay cyber secure. Follow our tips and protect yourself and your business.
Design and Innovation
Microsoft announces surprise event for tomorrow with Bing ChatGPT expected (The Verge) Microsoft won’t be streaming this event, though.
The Race to Build a ChatGPT-Powered Search Engine (WIRED) A search bot you converse with could make finding answers easier—if it doesn’t tell fibs. Microsoft, Google, Baidu, and others are working on it.
Google has unveiled its ChatGPT rival and is promising its will offer AI-powered search 'soon' (Silicon Valley Business Journal) Google is following through on CEO Sundar Pichai's promise last week to open up it AI tools to the public.
Google launches ChatGPT rival called Bard (BBC) Google is launching an Artificial Intelligence (AI) powered chatbot called Bard to rival ChatGPT.
Google Releases ChatGPT Rival AI ‘Bard’ to Early Testers (Bloomberg) Microsoft expected to announce ChatGPT integration into Bing search engine
Academia
The SANS Institute Reopens HBCU Cyber Academy Application Window to Address Growing Need for Cybersecurity Professionals (PR Newswire) The SANS Institute is proud to announce the reopening of the HBCU Cyber Academy application window from February 1, 2023 to March 1, 2023. The...
Legislation, Policy, and Regulation
Chinese hacking probably outweighs balloon, experts say (Washington Post) Don’t forget about Chinese hackers
Quad Joint Statement on Cooperation to Promote Responsible Cyber Habits (The White House) We the Quad partners of Australia, India, Japan, and the United States are launching a public campaign to Improve cyber security across our nations: the
Wikipedia unblocked in Pakistan after Prime Minister's intervention (TechCrunch) Pakistan has unblocked Wikipedia in the South Asian market, three days after the online encyclopedia was censored in the nation.
What CISOs need to know about the renewal of FISA Section 702 (CSO Online) Section 702 of the Foreign Intelligence Surveillance Act sets out the rules for the US intelligence community around gathering information abroad—but is it inadvertently being used at home too?
Let Section 230 Stay (The Information) Gonzalez v. Google, which the Supreme Court will hear this month, is the culmination of years of litigation. The action—a consolidation of lawsuits filed against Google, Twitter and Facebook—attempts to hold these platforms liable for their automated recommendation of content to users. Social ...
Biden taps experts in threat intel, networking and satellite cybersecurity for telecom advisory board (SC Media) The Biden administration appointed new leaders for the National Security Telecommunications Advisory Council, while adding a number of other notable tech and cybersecurity executives.
Litigation, Investigation, and Law Enforcement
China’s tech weapons roll in to quell demonstrations, identify protesters (The Record from Recorded Future News) At a time when an errant spy balloon has raised new questions about President Xi Jinping’s absolute control over all things Chinese, we take a look at how his regime quelled last year’s Covid protests and how an arsenal of digital weapons helped tighten his grip on power.
U.S. senators question Meta over Chinese, Russian access to Facebook data -statement (Reuters) A bipartisan pair of U.S. senators said on Monday they had sent a letter to Meta CEO Mark Zuckerberg questioning the company about documents that they say reveal that Facebook developers in China and Russia had access to user data.
Police hacked Exclu 'secure' message platform to snoop on criminals (BleepingComputer) The Dutch police announced on Friday that they dismantled the Exclu encrypted communications platform after hacking into the service to monitor the activities of criminal organizations.
Finnish psychotherapy extortion suspect arrested in France (Naked Security) Company transcribed ultra-personal conversations, didn’t secure them. Criminal stole them, then extorted thousands of vulnerable patients.
How Sam Bankman-Fried’s Psychiatrist Became a Key Player at Crypto Exchange FTX (Wall Street Journal) Hired as a coach at the crypto exchange, George Lerner was there for its dramatic downfall.
Politie leest opnieuw mee met criminelen (Politie) De politie en het Openbaar Ministerie in Nederland zijn er opnieuw in geslaagd toegang te krijgen tot data van een cryptocommunicatiedienst van criminelen en de afgelopen vijf maanden hun…
Eurocops shut down Exclu encrypted messaging app (Register) German and Dutch authorities say the app was a favorite of organized criminals and drug smugglers
Security News
Kyle Alspach
By exploiting the vulnerabilities in VMware’s vRealize Log Insight tool, an attacker could seize control of an impacted system, the U.S. cybersecurity agency said Wednesday.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is urging the deployment of patches for vulnerabilities affecting a VMware log management and analytics tool, including two vulnerabilities that have received a “critical” severity rating from VMware.
The two critical vulnerabilities affecting VMware’s vRealize Log Insight tool could be leveraged to enable remote execution of code on a system by an unauthenticated user, the company said. In other words, “a remote attacker could exploit these vulnerabilities to take control of an affected system,” CISA said in its advisory Wednesday.
“CISA encourages users and administrators to review VMware Security Advisory VMSA-2023-0001 and apply the necessary updates,” the agency said.
[Related: Microsoft Seeing Exploits Of Windows Zero Day Vulnerability]
While both VMware and CISA are referring to the affected tool as vRealize Log Insight in their advisories, presumably because that is the more-recognizable name, the tool has actually been renamed and is official now known as VMware Aria Operations for Logs, according to VMware’s website.
The two VMware vulnerabilities that could enable remote code execution are:
- A “directory traversal” vulnerability (tracked at CVE-2022-31706), through which “an unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution,” VMware said. The vulnerability has been given a “critical” severity rating with a score of 9.8 out of 10.0.
- A broken access control vulnerability (tracked at CVE-2022-31704), with which “an unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution,” VMware said. The vulnerability has also been given a “critical” severity rating with a score of 9.8 out of 10.0.
The two other vRealize Log Insight vulnerabilities disclosed this week by VMware include a deserialization vulnerability (with a severity score of 7.5, considered to be of “important” severity) and an information disclosure vulnerability (with a severity score of 5.3, considered to be of “moderate” severity).
When it comes to the ongoing issue of needing to address vulnerabilities in software, the key for organizations is to get a handle on what the actual business impact will be from any given vulnerability — and then prioritize accordingly, according to Brad Davenport, vice president of technical architecture for cybersecurity, networking and collaboration at Logicalis US, No. 66 on the 2023 CRN Solution Provider 500.
“With so many different solutions in your infrastructure, with so many different software suites, you can’t possibly be expected to be 100 percent patched all of the time,” Davenport told CRN. “It’s a constant prioritization game to determine what ultimately is the business impact, and then to really prioritize those things.”
Being able to prioritize in that way, however, is an area that many businesses struggle with. Many businesses “have not yet reached that level of maturity, where they understand what the actual business impact of vulnerabilities are,” he said.
That’s prompted many organizations to seek out advisory services for these types of scenarios from providers that offer them such as Logicalis US, Davenport said.
“What we’ve tried to do is push that conversation further outside of the IT decision makers, and talk more generally with the business leaders and business owner about risks” from issues such as software vulnerabilities, he said.
Cloud News
O’Ryan Johnson
‘I truly believe this is the age of the partner. Look at edge, look at AI, look at all of the trends that we‘re seeing throughout the IT industry. There’s just so much opportunity, where do you focus? The way to do it is by partnering together,’ says VMware head of worldwide partner and commercial organization Ricky Cooper.
VMware’s head of worldwide partner and commercial organization, Ricky Cooper, is on a mission to recruit the best partners around the globe: resellers, systems integrators and distributors who can understand and solve the complex technical problems that drive progress.
“The only way we are going to succeed is to have partners on board who understand our technology, and can deploy our technology,” Cooper told CRN.
With the coming launch of Partner Connect 2.0 Cooper said VMware will reward partners who have invested in reaching technical designations such as solution competencies, master services competencies, validated services offerings, and who are cloud verified. Partners with those abilities will earn more points towards tier progression.
“I keep referring to the fact that this is the age of the partner,” Cooper said. “And I truly believe this is the age of the partner … Look at edge, look at AI, look at all of the trends that we’re seeing throughout the IT industry. There’s just so much opportunity, where do you focus? The way to do it is by partnering together.”
But it can’t be a one-way street, Cooper said, with only the partner investing in their employees and VMware’s success. He said rewarding technically mature partners with tier progression is the first step. The second is passing along work for those partners.
“One we’ll reward and two we will also make a huge effort to ensure that we’re passing as many services opportunities as we can to our partner ecosystem, and you’ll see a huge change,” he said. “There was a tendency before, when the pie is a bit smaller, and you’ve got large ELAs, we were taking on a lot of that services. work ourselves. Things are really opening up... how does a partner ensure they have got increased profitability? By becoming an expert in our technology, and being a valued services partner, and taking on some of these services.”
VMware is on a path to forging more strategic relationships with a smaller set of partners through the new Pinnacle Tier of its Partner Connect Program, Cooper said. It will dedicate a worldwide leader to the Pinnacle Tier to centralize VMware’s Pinnacle Programs and form a community for its largest resellers. He said Pinnacle Partners will have a much tighter level of engagement such as executive sponsorship, managed account coverage, and joint business plan development.
Pinnacle Partners will also have access to a Big Bet program which drive jointly aligned goals with targeted outcomes and is separate to the Partner Connect program and incentives.
“We will invest resources, marketing dollars, Test Labs, etc. in the Big Bets program,” he said. We can’t share with you at this time which partners make up the Pinnacle Tier, but we can tell you the list will include major reseller partners, amongst other partner types.”
The company is in the midst of a $61 billion takeover by chipmaker giant Broadcom. Broadcom CEO Hock Tan singled out the need to move more VMware customers into subscription licenses as well as Broadcom’s embrace of VMware’s partner ecosystem in his first comments on the proposed deal back in May.
Here’s more of what Cooper had to say.
