Microsoft has announced in Berlin the launch of its new European Security Program, a strategic initiative that expands and strengthens protection against cyber threats across Europe. This program, presented by Brad Smith, president of Microsoft, arrives amid a context of increasing sophistication in cyberattacks, with artificial intelligence and state actors from countries like Russia, China, Iran, and North Korea playing a significant role in much of the malicious activity detected on the continent.
Artificial Intelligence at the Core of Digital Defense
The new program relies on AI as an essential tool for anticipating, detecting, and mitigating threats, placing technological innovation at the service of security for both traditional infrastructures and new AI infrastructures. According to the company, the proliferation of techniques such as ransomware-as-a-service and the use of AI for recognition, translation, advanced scripting, and evasion of detection necessitates the evolution of defense mechanisms.
Microsoft emphasizes that it actively monitors any misuse of its AI models, blocking access to known threat actors and prioritizing the secure development of these systems. Additionally, it strengthens public-private collaboration and information sharing with European authorities to anticipate trends and share intelligence on cybersecurity.
Three Fundamental Pillars
The European Security Program incorporates three new key elements:
- Expanded AI-Based Threat Intelligence Sharing with Governments:
Microsoft increases the flow of actionable information about threats and vulnerabilities, enabled by AI and tailored to national contexts. The program includes prioritized notifications, periodic reports on foreign influence operations, and direct points of contact for agile incident response. - Investments in Cybersecurity Capabilities and Resilience:
The program includes enhanced collaboration with organizations like Europol, initiatives in the Western Balkans, and support for NGOs and civil entities through the CyberPeace Institute. Microsoft also advocates for joint research on AI security and supports essential open-source projects for European digital infrastructure. - Agreements and Collaborations to Disrupt Malicious Operations:
Notable actions include coordinated efforts with law enforcement, such as the recent dismantling of the Lumma botnet, responsible for hundreds of thousands of infections in Europe. The new Statutory Automatic Disruption Program (SAD) automates the removal of malicious domains and IPs, hindering the operations of cybercriminals and strengthening the pan-European response.
Europe, a Priority Target for Cyber Threats
According to Microsoft, attacks by Russian and Chinese state actors continue to focus on Ukraine and allied European countries, while Iran and North Korea prioritize espionage and credential theft. Furthermore, AI and deepfake disinformation campaigns have intensified, compromising academic and geopolitical data and eroding public trust in democratic institutions.
The program, available free of charge to the governments of the 27 EU member states, candidate countries, EFTA members, the UK, Monaco, and Vatican City, strengthens Microsoft’s position as a trusted partner in the European digital ecosystem.
Long-Term Commitment and Collective Resilience
Brad Smith emphasized that “cybersecurity is a collective effort” and highlighted the importance of investing in people, institutions, and technology to anticipate, withstand, and recover from attacks. Microsoft maintains a policy of transparency and collaboration with governments, accompanying the development of Europe’s digital future with concrete initiatives and responses to crises.
Finally, the company reaffirms its long-term commitment to Europe: “We are proud to be a trusted partner for Europe, and we will continue to work every day to earn that trust through transparency, collaboration, and a firm commitment to protecting what matters most,” Smith concluded.
Source: Microsoft