Microsoft, IT security must become Ceo's strategy

The rising tide of technological threats generates more and more uncertainty, and if reading the latest security reports makes one aware of the characteristics of the threat, the call is to take action to elevate cybersecurity to a strategic priority of the entire company.

Cyber threats are assuming a significant and central role in geopolitical conflicts and criminal activities, so much so that they are creating systemic damage that increases the responsibility for organisations of all ranks to defend their very survival. The Microsoft Digital Defense Report 2025, released today, calls for a mobilisation of boards to raise cybersecurity to the status of an operational business risk, and as a priority of corporate strategy, it should be the subject of governance and targeted investment.

Amy Hogan-Burney, Corporate Vice President della divisione Customer Security & Trust di Microsoft sottolinea come “sia proprio ora il momento di capire se si sta operando correttamente per la sicurezza informatica rispettando le prassi basilari, senza le quali si resta vulnerabili agli attacchi altamente sofisticati ed efficaci grazie all’uso di strumenti di AI”. Il report descrive gli scenari di attacco osservati (parte I), senza dimenticare di trattare, per ciascuno di essi, opportuni elementi di adeguamento della difesa (parte II) affinché la postura difensiva possa evolvere di pari passo: le misure di sicurezza tradizionali non sono più sufficienti. In questo senso Amy Hogan-Burney invita all’azione e a “mobilitarsi, prepararsi unendo innovazione, resilienza e partnership come pilastri di tutta l’azienda e non solo della divisione IT o dei team di security perché la sicurezza non è solo una sfida tecnica, ma un imperativo di governance. I leader aziendali” chiarisce, “devono consid

The digital threat scenario observed in the period between July 2024 and June 2025 has transformed and evolved, and is strongly characterised by: ransomware, malicious software for blackmailing victims, evolving to revengeware, malicious software motivated by revenge; the adoption of Artificial Intelligence (AI) tools that extend the number, effectiveness, efficiency and sophistication of attacks; and attack operations that follow dynamics similar to espionage and destabilisation operations, without forgetting the related financial gain. Proof of this is the 52% of cyber incidents detected that are more related to data theft for blackmail and profit motive, rather than the 4% of break-ins motivated by espionage and information gathering alone.

State-sponsored digital adversaries have extended their operations in a geopolitical context in which cybersecurity is a battleground. In addition, profit-motivated criminals, besides using ransomware, have increased the psychological pressure by exploiting deepfakes, bogus digital content altered by AI algorithms, to damage the reputation of the victim organisation. This development is part of revengeware, a practice that exploits malicious software and digital techniques for revenge against the company and/or its board of directors/decision-makers and that aims to increase the extortion pressure with more blackmail: material, mental and moral.