N-able Expands AI-Driven SOC Capabilities to Further Business Resilience for Worldwide Customers

Key Terms

powershell technical

PowerShell is a command-line shell and scripting language used to automate and manage computer systems, especially on Windows platforms. For investors, mentions of PowerShell matter because it relates to a company’s IT efficiency, ability to scale operations, and cybersecurity posture—think of it as a programmable remote control or conveyor belt for a company’s computers that speeds routine work but can also be a vector for technical failures or attacks if misused.

security operations center (soc) technical

A security operations center (SOC) is a centralized team and facility that continuously watches over a company’s digital systems and data, detects suspicious activity, and responds to cyber incidents to keep operations running. Think of it as a 24/7 digital command center or neighborhood watch for a business; its effectiveness matters to investors because strong monitoring and rapid response reduce the risk of costly breaches, downtime, regulatory penalties, and damage to reputation, all of which can affect a company’s value.

managed detection and response (mdr) technical

Managed detection and response (MDR) is an outsourced cybersecurity service that continuously watches a company’s digital systems for threats, investigates suspicious activity, and takes action to stop or limit breaches — like hiring a 24/7 alarm monitoring and rapid-response team for a building. It matters to investors because effective MDR lowers the risk of costly data breaches, operational downtime, regulatory penalties and reputational damage, making a company more stable and protectable as an investment.

dns technical

DNS is the internet’s lookup system that translates human-friendly website names into the numeric addresses computers use, like a phonebook that finds a business by name and returns its street address. Investors care because problems with DNS — outages, hijacks or misconfigurations — can make a company’s website, online sales, customer logins and email inaccessible, potentially harming revenue, reputation and short-term market value.

single-event process execution (sepe) ai model technical

A single-event process execution (SEPE) AI model is a specialized artificial intelligence system designed to carry out one specific task or trigger-driven workflow reliably each time it is needed, like a robot programmed to perform a single chore on command. For investors, SEPE models matter because they can cut labor costs, reduce human error, speed up time-sensitive operations and improve compliance for discrete events—benefits that translate to predictable savings, lower operational risk and clearer performance metrics.

command-and-control (c2) technical

Command-and-control (C2) refers to a system where authority is centralized, and instructions flow from a single source to manage operations or activities. In a financial context, it describes situations where decision-making is tightly controlled by a few leaders or governing bodies, leaving little room for independent action. For investors, understanding C2 arrangements helps assess how quickly and effectively a company or organization can respond to changes or challenges.

distributed denial-of-service (ddos) technical

A distributed denial-of-service (DDoS) attack is an attempt to overwhelm a website, online service, or network by flooding it with more traffic or requests than it can handle, often using many compromised devices acting together. For investors, a DDoS is important because it can cause service outages like a traffic jam, leading to lost sales, extra costs for recovery and protection, damaged reputation, and potential regulatory or contractual consequences that can hurt a company’s value.

machine learning technical

Machine learning is a set of computer programs that learn patterns from large amounts of data and improve their predictions or decisions over time, like a recipe that gets better each time it’s adjusted based on taste tests. For investors it matters because these systems can speed up analysis, spot trends or risks humans might miss, automate routine work, and potentially create competitive advantages or cost savings that affect a company’s performance.

New AI-powered detections analyze every PowerShell execution and multi-layer telemetry to uncover stealth attacks that traditional security tools miss

BURLINGTON, Mass.--(BUSINESS WIRE)-- N-able, Inc. (NYSE: NABL), a global cybersecurity company delivering business resilience, today announced new AI‑powered detection capabilities to its Security Operations Center (SOC) delivered through Adlumin Managed Detection and Response (MDR). The enhancements include advanced detections: Anomalous PowerShell, DNS Disruption, and anomalous process execution through the Single-Event Process Execution (SEPE) AI Model, helping organizations identify and stop increasingly stealthy cyberattacks to achieve business resilience.

Troels Rasmussen, Vice President, General Manager of Security at N‑able

As attackers increasingly rely on trusted tools such as PowerShell and DNS to evade detection, many traditional security approaches can leave critical blind spots. According to N-able’s 2026 State of the SOC Report, nearly half of observed attacks never touched the endpoint at all, instead unfolding across network, perimeter, cloud, or identity layers. These new capabilities expand N‑able’s AI‑driven security operations, providing deeper, layered visibility across identity, endpoint, and network behavior to help detect and respond to malicious activity at every layer.

“The fastest‑growing attacks today don’t look malicious, they look like business as usual,” said Troels Rasmussen, Vice President, General Manager of Security at N‑able. “Threat actors are blending into everyday activity using built‑in tools like PowerShell. Our AI-driven approach correlates PowerShell, DNS Disruption, and process behavior to expose what legacy tools miss, helping teams detect and respond earlier, even when attackers are deliberately trying to disappear.”

N‑able has introduced new AI‑powered detections focused on uncovering subtle, high‑risk activity, including:

• Anomalous PowerShell Detection: Provides real-time visibility into malicious commands and addresses the rise of living‑off‑the‑land techniques, where attackers abuse legitimate tools to blend in. Instead, it evaluates every PowerShell execution across monitored environments, applying AI‑driven analysis to detect subtle indicators of misuse that would otherwise appear legitimate.
• DNS Disruption Alert: Introduces machine learning–driven detection of suspicious DNS behavior, including command-and-control (C2) activity, beaconing, and distributed denial-of-service (DDoS) to identify patterns. This capability helps SOC analysts uncover malicious communications that often evade traditional endpoint monitoring.
• SEPE AI Framework: Detecting Anomalous Process Behavior: Detects anomalous Windows process activity and behavior across customer environments. Each event is analyzed across multiple attributes, including process name, path, parent process, and parent process path, providing SOC analysts with a deeper behavioral context.

Strengthening the AI-Driven SOC

These enhancements reinforce N-able’s broader strategy to embed practical AI capabilities throughout its business resilience platform, helping organizations identify threats earlier, automate detection workflows, and reduce operational burden on security teams.

The speed and sophistication of modern cyberattacks are exposing the limits of traditional detection, making layered visibility across endpoint, identity, and network activity increasingly critical. By applying AI detections within the SOC, N-able continues to help organizations strengthen security outcomes while maintaining operational efficiency.

For more information, visit the N-able product pages.

N-able will showcase its AI-powered cybersecurity platform at RSA Conference 2026, which will take place March 23-26 at the Moscone Center in San Francisco, California. Attendees can visit N-able at Booth #1449 in the South Hall: https://www.n-able.com/rsa-conference-2026.

Forward-Looking Statements

This content may contain forward-looking statements regarding future product plans, development efforts and investments. N-able considers various features and functionality prior to any final generally available release. Information regarding future features and functionality, or investments, is not and should not be interpreted as a commitment from N-able that it will deliver any specific feature or functionality, or make such investments, in the future or, if it delivers such feature or functionality, or does make such investments, any time frame when that feature or functionality will be delivered or investment will be made. All information is based upon current product interests, and product and business plans and priorities can change at any time. N-able undertakes no obligation to update any forward-looking statements regarding future product plans, development efforts or investments if product plans or priorities change.

About N-able

N‑able protects businesses from evolving cyberthreats. Our AI powered cybersecurity platform delivers business resilience to more than 500,000 organizations worldwide, leveraging advanced end-to-end capabilities, simplified workflows, market leading integrations, and flexible deployment options to improve efficiency and drive critical security outcomes. Our partner first approach pairs our technology with experts, training, and peer-led events that empower customers to be secure, resilient, and successful. n-able.com

© 2026 N-able Solutions ULC and N-able Technologies Ltd. All rights reserved.

The N-able trademarks, service marks, and logos are the exclusive property of N-able Solutions ULC and N-able Technologies Ltd. All other trademarks are the property of their respective owners.

Category: Product

View source version on businesswire.com: https://www.businesswire.com/news/home/20260325508226/en/

Krystal Rennie

Krystal.Rennie@n-able.com

Source: N-able, Inc.