Ben WestlakeHead of Managed Services
Most IT Operations Managers running backup estates in 2026 are sitting on a quiet problem. They have storage. It is cheap, scalable, and quietly filling up in the background. What they often do not have is a tested recovery capability with a service level agreement attached to it.
That distinction has always mattered. It now matters more than ever.
Ransomware operators have changed their approach. Targeting backup repositories before production systems is now standard operating procedure, because neutralising recovery options before triggering encryption maximises pressure on the victim to pay. If your backup data sits in a cloud bucket without immutability controls, without tested restore procedures, and without managed oversight, you are not protected. You have provided attackers with an additional target.
96% of ransomware attacks target backup repositories, and 76% of those attempts successfully compromise them.
This is the gap that the Covenco and Wasabi joint service exists to close.
What Wasabi Solves, and What It Does Not
Wasabi has built a clear market position by removing the billing complexity that makes hyperscaler cloud storage unpredictable at scale. There are no egress fees, no API request charges, and no tiered retrieval penalties. A single published price per terabyte applies regardless of how often you read from or restore the storage.
For backup workloads, this matters in practice. Backup data is written frequently but rarely restored under normal conditions. Under a standard AWS or Azure billing model, every recovery test, every partial restore, and every incident response event generates egress charges. The cost per event is not enormous, but it accumulates. And it creates a quiet disincentive to test recovery procedures as often as organisations should. That is precisely the wrong outcome.
Wasabi removes that disincentive. The storage costs what it costs. Restoring from it does not change the invoice.
Wasabi Covert Copy
Beyond flat-rate pricing, Wasabi launched Covert Copy in December 2025. It is a patent-pending feature included at no extra charge with Wasabi Hot Cloud Storage. Covert Copy creates a hidden, immutable secondary copy of a selected storage bucket.
The copied bucket cannot be viewed, modified, or deleted without multi-user authorisation. No single user or administrator, however highly privileged, can access or delete it unilaterally. Access requires both MFA and approval from multiple trusted administrators. This makes the Covert Copy practically inaccessible to a ransomware operator who has compromised a single set of credentials, including administrative ones.
What Wasabi does not provide is the operational layer around the storage. Configuring Covert Copy correctly, integrating it with Veeam, validating that recovery works end-to-end, monitoring backup jobs daily, and providing an accountable point of contact when something fails at two in the morning are not storage functions. They require a managed service.
Where Covenco Comes In
Covenco provides the operational intelligence that turns a storage platform into a resilience capability. That means 24/7 monitoring, scheduled and documented restore testing, recovery orchestration, and rental hardware on standby if production systems cannot be brought back online within the agreed recovery time objective.
It also means a single UK contract. For an IT Operations Manager facing a CSRB incident reporting obligation, or a Head of IT Operations satisfying cyber-insurer evidence requirements, having one accountable UK supplier covering both the storage infrastructure and the managed service materially reduces complexity during an incident, which is exactly when complexity is most dangerous.
Covenco configures the Wasabi platform as part of a 3-2-1-1-0 resilience architecture:
- Three copies of data
- On two different media types
- With one copy stored off-site
- One copy immutable and air-gapped
- Zero unverified backups: every recovery point is tested
The Covert Copy integration sits within that architecture, and the configuration is documented in a format that satisfies insurance audit requirements. The evidence is built into the service design, not assembled retrospectively when an auditor asks for it.
The Data Sovereignty Question
For UK and Irish organisations, GDPR, the UK’s post-Brexit data regulation, and sector-specific frameworks such as FCA SYSC, NHS DSP Toolkit, and NIS2 create a genuine question about where backup data resides and who controls access to it.
Wasabi provides dedicated UK and EU storage regions. Covenco operates the service under a UK contract, holds ISO 27001 and Cyber Essentials accreditation, and can provide the data residency documentation that internal audit or a regulator would expect to see. That combination closes the data sovereignty question with a single, defensible answer.
A Clear Division of Capability
The joint service works because the responsibilities are unambiguous. Wasabi owns the storage infrastructure. Covenco owns the operational service around it. Neither overlaps, and neither leaves a gap.
| Capability | Wasabi Platform | Covenco Managed Service |
|---|---|---|
| Storage and economics | S3-compatible hot storage at one predictable price. No egress or API fees. | One UK contract covering storage, monitoring, and recovery. |
| Immutability and durability | Object Lock, Covert Copy, and eleven-nines durability. | Policy setup, Veeam integration, and 3-2-1-1-0 architecture management. |
| Monitoring and recovery | A durable, highly available backup repository. | 24/7 monitoring, recovery orchestration, rental hardware, and tape-out services. |
| Sovereignty and compliance | Dedicated UK and EU storage regions. | UK-operated service with ISO 27001 and Cyber Essentials accreditation. |
Why the Economics Work
Backup workloads are a poor match for hyperscaler billing models. The write-heavy, read-rarely pattern still generates egress and API charges whenever recovery tests or incidents occur. For organisations running regular DR testing, as they should be, those charges are not occasional. They are structural.
Wasabi’s flat-rate pricing removes those variables. Covenco’s managed service removes the internal headcount cost of monitoring, testing, and maintaining the backup estate. Many organisations underestimate this cost because it is distributed across engineers who carry other responsibilities, and it only becomes visible when something goes wrong or a skilled team member leaves.
Outsourcing that operational burden to a specialist with defined SLAs typically produces a total annual cost that is lower than continuing to manage the estate internally, while delivering a higher level of accountability and a verified recovery capability.
For an IT Operations Manager building a budget case for a CFO, the argument is straightforward: lower predictable cost, a defined recovery SLA, a UK supplier with verifiable accreditation, and evidence that is ready for insurer and regulator audit.
Frequently Asked Questions
What is Wasabi Covert Copy?
Wasabi Covert Copy is a patent-pending feature of Wasabi Hot Cloud Storage, launched in December 2025 and included at no extra charge. It creates a hidden, immutable secondary copy of a selected storage bucket. The copied bucket cannot be accessed, modified, or deleted by any single user or administrator without multi-user authorisation, requiring both MFA and approval from multiple trusted administrators. This makes it highly resistant to ransomware and insider threats.
Does Wasabi charge egress fees in the UK?
No. Wasabi charges a single per-terabyte price with no egress fees, no API request charges, and no tiered retrieval penalties, provided monthly egress does not exceed your stored volume. This makes costs predictable for backup workloads and removes the financial disincentive to test recovery procedures regularly.
What is the 3-2-1-1-0 backup rule?
The 3-2-1-1-0 rule is a backup architecture standard. It means keeping three copies of data, on two different media types, with one copy stored off-site, one copy immutable or air-gapped, and zero unverified backups. The final zero requires that every recovery point is tested and confirmed restorable. Covenco configures and manages this architecture using Wasabi as the immutable off-site storage layer.
Is Wasabi cloud storage GDPR compliant for UK businesses?
Wasabi provides dedicated UK and EU storage regions. When managed by Covenco under a UK contract with ISO 27001 and Cyber Essentials accreditation, the joint service supports GDPR, UK GDPR, and data residency requirements. Covenco can provide the data residency documentation required by internal audit, cyber-insurers, and regulators.
What a Managed Resilience Review Involves
Covenco offers a no-obligation cost-benefit review of your current backup estate against the Wasabi managed architecture. It covers what your current storage is actually costing when all charges are accounted for, what you are not getting from that spend in terms of tested recovery capability, and what a managed service with defined recovery SLAs would look like in practice.
If you are running backups to a hyperscaler, managing Veeam internally, and cannot answer with confidence when backups were last validated end-to-end, or how long a full recovery would take, that conversation is worth having before an incident forces it.
Cloud storage is not recovery. The question is whether your current arrangement knows the difference.
Request a Free Cost-Benefit Review
We will review your current backup estate and show you what a managed Covenco and Wasabi architecture would cost and what it would recover.