How to scare away your customers, exhibit 4821: #Broadcom #VMware:

"VMware distributor Arrow says minimum software subs set to jump from 16 to 72 cores.
Claims Broadcom will levy 20 percent #penalty for customers who don’t pay before renewal deadlines"

https://www.theregister.com/2025/03/28/arrow_vmware_licensing_change/

I don't know you, but if I were a customer for that product, I'd most probably start migration projects today.

VMware Aria Operations: Sicherheitslücke erlaubt Rechteausweitung

Broadcom warnt vor einer hochriskanten Lücke in VMware Aria Operations. Angreifer können dadurch ihre Rechte ausweiten.

https://www.heise.de/news/VMware-Aria-Operations-Sicherheitsluecke-erlaubt-Rechteausweitung-10336721.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

VMware: Unternehmen müssen künftig 72 statt 16 Kerne lizenzieren

Strafzahlungen kehren zurück und die Zahl der mindestens zu lizenzierenden Kerne steigt deutlich an: Broadcom setzt seine Umstrukturierung fort.

https://www.heise.de/news/VMware-Unternehmen-muessen-kuenftig-72-statt-16-Kerne-lizenzieren-10335539.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

VMware Workstation : la mise à jour automatique en panne après une modification chez Broadcom https://www.it-connect.fr/vmware-workstation-la-mise-a-jour-automatique-en-panne-apres-une-modification-chez-broadcom/ #Logiciel-OS #VMware

#ProxLB - an opensource & advanced VM loadbalancer for #Proxmox clusters. Including affinity & anti-affinity rules, maintenance mode (evacuating nodes) and more. I just published my slides about it.

Project: https://github.com/gyptazy/ProxLB
Slides: https://cdn.gyptazy.com/files/talks/ProxLB-Intelligent-Workload-Balancing-for-Proxmox-Clusters.pdf

VMware : le minimum de cœurs requis bondit de 16 à 72 pour les licences vSphere ! https://www.it-connect.fr/licences-vmware-minimum-coeurs-requis-bondit-de-16-a-72-coeurs/ #Virtualisation #Entreprise #VMware

Botti hat gestern seinen Kumpel C-3PO beim Spieleabend getroffen und musste ihm wieder mal die #Updates erklären Zum Glück sind die Windows-Fehler bald #Geschichte, dann können die beiden endlich wieder richtig zocken Hier die News: #Windows Update: Vorschauversion korrigiert nervige Fehler ️
Zum Artikel

#Spotify bringt neues Partnerprogramm nach Deutschland
Zum Artikel

1400 Instanzen ohne Lizenz: #VMware reicht Klage gegen #Siemens ein ️
Zum Artikel

#Nintendo mit virtuellen Spielkarten zur Übertragung von Games zwischen Konsolen
Zum Artikel

Botti findet Nintendos Idee mit den virtuellen Spielkarten super spannend Da wird er gleich Eve fragen, ob sie heute Abend eine Runde zocken will Aber vorher noch ein Witz: Was ist ein Roboters Lieblingsgetränk? Kaffee.java! mechanisches Kichern Bot out!

Them: we have until mid-April to renegotiate #VMware licensing fees with #Broadcom. We expect the cost to badly hurt.

Me: try calling #Vates. It seems they currently migrate plenty biz to #XCP_ng. They may have efficient migration tools now.

Them: we have to negotiate the licensing fees with Broadcom! This may hurt badly.

Me: ok

Microsoft: In two years, we're changing this update URL. Automatic updates will handle this gracefully, unless you did something weird. We'll remind you of this every 90 days.

Broadcom: We're going to break updates on all our products in 30 days unless you do these manual steps. You should probably get on that.

#Broadcom warns of authentication bypass in #VMware #Windows Tools

https://www.bleepingcomputer.com/news/security/broadcom-warns-of-authentication-bypass-in-vmware-windows-tools/

VMware corrige une faille importante dans les VMware Tools pour Windows : CVE-2025-22230 https://www.it-connect.fr/vmware-corrige-une-faille-vmware-tools-pour-windows-cve-2025-22230/ #ActuCybersécurité #Cybersécurité #Vulnérabilité #Windows #VMware

Broadcom’s VMware says Siemens pirated “thousands” of copies of its software - VMware is suing the US arm of industrial giant AG Siemens. The Broadcom co... - https://arstechnica.com/information-technology/2025/03/broadcoms-vmware-says-siemens-pirated-thousands-of-copies-of-its-software/ #broadcom #siemens #biz⁢ #vmware

VMware corrige une faille importante dans les VMware Tools pour Windows : CVE-2025-22230 https://www.it-connect.fr/vmware-corrige-une-faille-vmware-tools-pour-windows-cve-2025-22230/ #ActuCybersécurité #Cybersécurité #Vulnérabilité #Windows #VMware

VMware Tools ermöglichen Rechteausweitung in VMs

Aufgrund einer Schwachstelle in den VMware Tools können Angreifer ihre Rechte in einer VM erhöhen. Ein Update korrigiert das.

https://www.heise.de/news/VMware-Tools-ermoeglichen-Rechteausweitung-in-VMs-10328819.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

Authentication bypass CVE-2025-22230 impacts #VMware Windows Tools
https://securityaffairs.com/175858/security/authentication-bypass-cve-2025-22230-in-vmware-tools-for-windows.html
#securityaffairs #hacking

Seriously, Broadcom... what's the deal lately?

First up, we've got CVE-2025-22230 hitting VMware Tools for Windows. This nasty bug basically lets standard users inside a VM escalate their privileges to admin level. Yikes! With a CVSS score of 7.8, you'll want to jump on this fix ASAP. It impacts versions 11.x.x and 12.x.x, so upgrading to 12.5.1 needs to be right at the top of your list!

But wait, there's more. CrushFTP is also sounding the alarm about unauthenticated access vulnerabilities lurking on HTTP(S) ports in versions 10 and 11. It's definitely time to double-check those DMZ configurations. Rapid7 has confirmed that exploits are out there, allowing unauthorized access. Pretty intense, right?

Stuff like this is a stark reminder: while automated scans have their place, they just don't cut it alone. Real-deal penetration testing is absolutely essential. Those manual checks are what uncover the sneaky issues that automated tools often breeze right past.

What's your take on this recent wave? How are you keeping your own environments locked down tight? Let's talk

VMware turns its back on small businesses: 72-core license policy backlash

https://systemadministration.net/vmware-turns-its-back-on-small-businesses-new-licensing-policies-trigger-industry-backlash/

No April Fools' joke - the new #ProxLB release is scheduled for the 1st of April! Stay tuned!

ProxLB is an advanced #loadbalancer for #Proxmox clusters that brings in features like #DRS (known from #VMware), #maintenance mode and (anti-)#affinity groups.

What do you miss in #Proxmox or #XCPng?

My customers often told me, that when migrating from #VMware based setups, they would miss something like #DRS. As a result I published #ProxLB as a load balancer. Now, I do the same for #DPM and also some other things. What do you miss or what stops you or your business from switching to Proxmox or XCPng?

You can whine on r/sysadmin all you want bro but renewing that VMware license was already gross negligence by everyone involved
#sysadmin #vmware