Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup and NetBackup Appliances Hardening Guide
  3. Top recommendations to improve your NetBackup and NetBackup appliances security posture
  4. Enabling malware scanning and anomaly detection
NetBackup and NetBackup Appliances Hardening Guide

Enabling malware scanning and anomaly detection

Malware and ransomware programs may go undetected on the server and the storage system for days, weeks, or months. These long durations make it possible that the malware may be backed up along with the regular backups if existing antivirus and antimalware tools miss the signature. In a ransomware event, the best practice is to scan backups before recovery to find and eliminate malware before it is restored. To plan ahead before an actual cyber event, you can implement anomaly detection and malware scanning against production backups.

NetBackup provides unique built-in anomaly detection and malware scanning to help detect malware and ransomware early. Once malware scanning is enabled, make sure that critical events are sent to a security information and event management (SIEM) system for alerts and security incident orchestration through platforms like Service Now.

NetBackup Appliance additionally provides antimalware protection for the appliance OS.

Note:

NetBackup appliances do not support the installation of third-party antivirus software, including on application instances.

How to enable malware scanning and anomaly detection:

  • Flex Appliance

    Follow the same steps as NetBackup.

  • NetBackup Appliance

    Follow the same steps as NetBackup and also enable antimalware protection for the appliance OS.

    See About antimalware protection.

  • NetBackup

    See How to set up malware scanning.

    See About backup anomaly detection.

Feedback

Was this page helpful?
Previous

Enabling catalog protection

Next

Enabling security observability

Feedback

Was this page helpful?