Business
Identity-Based Attacks Are Now Targeting Backup Policies. New Anomaly Detection Feature from N-able Closes That Window
BURLINGTON, Mass., February 26, 2026--N-able, Inc. (NYSE: NABL), a global cybersecurity company delivering business resilience, today expanded its Anomaly Detection capabilities in Cove Data Protection to combat the surge in identity-driven cyberattacks targeting backup environments. The new functionality delivers real-time alerts when suspicious or unauthorized changes to backup policies are detected – giving customers an early warning system against the credential-based tactics attackers use t
About this update from N-able, Inc.
[{"type":"image","alt":"","displaySize":"","headline":null,"caption":"","credit":null,"className":"","disableSlideshowImg":false,"size":{"original":{"width":2166,"height":383,"url":"https://media.zenfs.com/en/business-wire.com/549b83898a7d8e219dee1949a00ea851"},"resized":{"url":"https://s.yimg.com/ny/api/res/1.2/3d5iA4kwnKmVhhlgY8VZZQ--/YXBwaWQ9aGlnaGxhbmRlcjt3PTk2MDtoPTE3MDtjZj13ZWJw/https://media.zenfs.com/en/business-wire.com/549b83898a7d8e219dee1949a00ea851","width":960,"height":170},"lightbox":{"url":"https://s.yimg.com/ny/api/res/1.2/rPxBnlvwbkj25bLeZTy.2g--/YXBwaWQ9aGlnaGxhbmRlcjt3PTI0MDA7aD00MjQ7Y2Y9d2VicA--/https://media.zenfs.com/en/business-wire.com/549b83898a7d8e219dee1949a00ea851","width":1200,"height":212}},"lazy":false},{"type":"text","content":"Latest feature detects anomalous behavior in backup environments, identifying credential-based threats before they become catastrophic breaches","length":143,"tagName":"p","attribs":{}},{"type":"text","content":"BURLINGTON, Mass., February 26, 2026--(BUSINESS WIRE)--N-able, Inc. (NYSE: NABL), a global cybersecurity company delivering business resilience, today expanded its Anomaly Detection capabilities in Cove Data Protection to combat the surge in identity-driven cyberattacks targeting backup environments. The new functionality delivers real-time alerts when suspicious or unauthorized changes to backup policies are detected – giving customers an early warning system against the credential-based tactics attackers use to disable or corrupt backups before deploying ransomware.","length":574,"tagName":"p"},{"type":"text","content":"Identity-based attacks have become a major driver of successful cyberattacks, with AI making these schemes even more convincing. With stolen or phished credentials, attackers can gain access to backup software and weaken backup policies. The 2025 Verizon Data Breach Investigations Report found that roughly 88% of basic web application breaches involved stolen credentials, making it clear how widespread this tactic has become. Once inside, attackers – and sometimes well-intentioned employees - can alter retention policies, exclude critical data from backups, and delete protected devices. These are subtle changes that can go unnoticed for weeks or even months before the attacker triggers the final ransomware event.","length":722,"tagName":"p"},{"type":"text","content":"To giv...