Full Report
These capabilities are needed not just to mirror what the continent’s most capable adversaries can do, but also to match Europe’s defensive posture with credible tools to gain access to target networks, he said.
Analysis Summary
# Industry News: Europe Urged to Pivot Toward Sovereign Offensive Cyber Capabilities
## Summary
Kaupo Rosin, head of Estonia’s Foreign Intelligence Service, has issued a strategic call for European industry and governments to develop homegrown "offensive cyber solutions." Rosin argues that Europe’s current reliance on non-European tools for intelligence collection and active disruption creates a strategic vulnerability and hinders the continent's ability to counter adversaries like Russia and China effectively.
## Key Details
- **Date:** February 13, 2026
- **Companies Involved:** European Defense Industrial Base, Estonia’s Foreign Intelligence Service (EFIS)
- **Category:** Market Trend / Strategic Policy Shift
## The Story
Speaking at the Munich Cyber Security Conference, Kaupo Rosin highlighted a critical disconnect between Europe’s defensive posture and its operational realities. While Europe has historically focused on "Cyber Defense," Rosin noted that over 50% of intelligence now comes from active "access" (penetrating servers, energy systems, and mailboxes).
Currently, 94% of data collected by EFIS is processed via automated means, and the specialized tools required for this collection—and for "cyber sabotage" intended to disrupt enemies—are almost exclusively sourced from outside Europe (predominantly the U.S. and Israel). Rosin is urging a shift in the European tech stack to move beyond defensive firewalls toward sophisticated tools for penetration, disruption, and large-scale data analysis.
## Business Impact
### For the Companies Involved
- **European Defense Contractors:** Potential for significant government contracts and R&D subsidies if EU member states pivot toward sovereign offensive tool development.
- **Cybersecurity Firms:** Firms specializing in vulnerability research and "red teaming" may see a market expansion into state-sanctioned offensive tools.
### For Competitors
- **Non-European CCICs (Commercial Cyber Intrusion Capabilities):** Firms in the U.S. and Israel could face long-term competition or loss of market share in Europe as nations seek "sovereign" alternatives to avoid dependency.
### For Customers
- **Government/Intelligence Agencies:** Access to tools tailored to European legal frameworks and strategic priorities, potentially reducing reliance on third-party supply chains.
### For the Market
- **Market Creation:** This signal could spark a new legitimate "Commercial Offensive" market in Europe, moving the industry away from the shadows and toward a regulated defense-sector model.
## Technical Implications
There is a pressing need for European-made AI and automation tools to handle massive data ingestion. Rosin noted that human analysts cannot manually process the volume of collected data, implying a high-growth market for "intelligence-grade" big data analytics and automated exploitation frameworks.
## Strategic Analysis
- **Market Positioning:** Europe is attempting to carve out "Strategic Autonomy" in the digital domain to avoid being a junior partner in global cyber operations.
- **Competitive Advantage:** Developing internal capabilities ensures that European intelligence services have "credible tools" that cannot be deactivated or monitored by foreign suppliers.
- **Challenges:** The "Pall Mall Process" and concerns over human rights abuses (spyware targeting activists) create a high regulatory and reputational barrier for European companies entering the offensive space.
## Industry Reactions
- **Analyst Opinions:** This is viewed as a pragmatic recognition of the "gray zone" between peace and conflict. Analysts note that Rosin's comments reflect a hardening of European policy in light of the ongoing war in Ukraine.
- **Market Response:** Likely to accelerate interest in the "European Defense Fund" for cyber-related projects.
## Future Outlook
- **Predictions:** Expect more joint European cyber-offensive projects (similar to Airbus or Galileo models) to offset the high R&D costs of these tools.
- **What to watch for:** New EU-wide procurement standards for "sovereign" cyber tools and potential friction with the private sector over the ethical use of "cyber sabotage" technology.
## For Security Professionals
Practitioners should note the shift from a purely defensive mindset to one of "active defense" and "access." This trend suggests that skills in vulnerability research, penetration testing, and automated data analysis will become increasingly vital not just in the private sector, but as central pillars of national security industry partnerships.