Germany plans ‘active cyberdefence’ as online attacks rise, interior ministry says

Germany Introduces Active Cyberdefence Strategy Amid Surge in Digital Threats

Germany plans active cyberdefence as online – Germany has announced plans to implement a new form of “active cyberdefence” in response to the growing frequency and intensity of online attacks, with Interior Minister Alexander Dobrindt highlighting the role of artificial intelligence in escalating cyber threats. The initiative, set to be formalized through legislation this month, will empower security agencies to take retaliatory action against servers and systems involved in cyberattacks. Dobrindt emphasized that the goal is to dismantle the infrastructure used by adversaries, ensuring they cannot target German energy sectors or other critical systems from abroad with the same tools or resources.

According to the ministry, cybercrime has surged significantly in recent years, with economic losses exceeding €200 billion in 2025 alone. This year marked a record increase in attacks, many of which originated from Russia or remained untraceable to specific locations. Dobrindt noted that the Russian government’s full-scale invasion of Ukraine in 2022 has intensified digital warfare, with cyberattacks serving as a key tool for destabilizing Western institutions and infrastructure. The new law aims to create a legal framework that enables rapid countermeasures, allowing authorities to strike back at foreign or domestic actors who exploit digital networks for harmful purposes.

“Active cyberdefence is not just about protection—it’s about precision and proportionality,” Dobrindt stated during a press briefing in Berlin. “When an attacker uses a server in another country to target our energy grid, we will now have the capability to neutralize that system before it causes damage.” He added that the strategy would focus on disrupting the operational capabilities of cybercriminals, making it harder for them to execute attacks with the same efficiency or reach. This approach, Dobrindt argued, would serve as a deterrent, signaling to aggressors that Germany is prepared to respond with equal force.

Recent data from the German Interior Ministry underscores the severity of the situation. In 2025, over 334,000 cybercrime incidents were reported, with two-thirds linked to external sources or unknown locations. This figure suggests that many attacks go unreported, possibly due to the complexity of tracking digital footprints across borders. The ministry also pointed to a 25% rise in denial-of-service attacks, which reached 36,706 cases last year, and a 10% increase in ransomware incidents, totaling more than 1,000 attacks. These attacks have generated over $15 million in extortion, according to government records, with AI playing a pivotal role in accelerating their execution.

“AI-based tools are revolutionizing the way cybercriminals operate,” said the ministry in a statement. “They can now launch attacks with greater speed, accuracy, and sophistication, making traditional defences obsolete.” The department stressed that these advancements have shifted the balance of power in the digital sphere, requiring Germany to adopt a more proactive stance. This includes not only defending against attacks but also targeting the very systems that enable them. The law will grant security services the authority to infiltrate and disable malicious infrastructure, potentially including data centers or cloud platforms used by foreign hackers.

Mark Branson, head of Germany’s financial regulator BaFin, has also warned about the dangers posed by AI-enhanced cyberattacks. In a recent address, he highlighted the ability of modern AI models to identify and exploit vulnerabilities in IT systems at an unprecedented pace. “These tools can detect weaknesses within seconds and automate attacks, reducing the time between discovery and damage,” Branson explained. He called for businesses to prioritize cybersecurity, urging them to implement patches and updates more swiftly to prevent breaches. “The financial sector is particularly vulnerable, and we must act decisively to safeguard its operations,” he added.

Branson’s comments align with broader concerns about the integration of AI into cyber warfare. He noted that AI not only amplifies the scale of attacks but also makes them more difficult to trace. “With AI, hackers can mimic human behavior, bypass security protocols, and launch coordinated strikes without leaving obvious digital fingerprints,” he said. This has led to a new era of cyber threats, where even the most advanced systems are at risk. The regulator has since announced plans to strengthen oversight of digital risks, working closely with banks and tech firms to develop more resilient defenses.

The proposed legislation is part of a larger effort to modernize Germany’s cyber capabilities. Dobrindt emphasized that the country is no longer content with reactive measures, such as responding to attacks after they occur. Instead, the plan focuses on anticipating threats and neutralizing them before they escalate. This includes deploying AI-driven monitoring systems to detect patterns of malicious activity and coordinating with international allies to share intelligence and resources.

“We are moving from passive defence to active engagement in the cyber domain,” Dobrindt said. “This means targeting not just the attacks themselves, but the networks and technologies that support them.” He acknowledged that the strategy may raise questions about privacy and surveillance, but argued that the benefits of security outweigh the risks. “In today’s world, the threat of cyberattacks is a direct threat to national stability, and we cannot afford to be complacent,” he concluded.

The rise in digital threats has also prompted calls for stricter regulations on tech companies. Some lawmakers argue that private firms must take greater responsibility for securing their networks, particularly when they are used to host attacks against critical infrastructure. Dobrindt supported this view, stating that collaboration between government and industry is essential to combat the evolving nature of cybercrime. “We need to ensure that companies are not just passive actors but active partners in protecting our digital sovereignty,” he said.

Analysts have praised the initiative as a necessary response to the changing threat landscape. They note that AI has transformed cybercrime from a niche activity into a highly organized and scalable operation. “The ability to automate attacks means that even small-scale hackers can now challenge large corporations and governments,” said one cybersecurity expert. The new law, if passed, will mark a significant shift in how Germany approaches digital security, setting a precedent for other nations to follow.

While the measures have been welcomed by some as a bold step forward, critics warn that they could lead to overreach in monitoring online activity. They argue that the law’s provisions may allow for broader surveillance of digital communications, raising concerns about civil liberties. Nevertheless, Dobrindt remains confident in the strategy, citing the need for decisive action in the face of mounting threats. “Our security is at stake, and we must be willing to take bold steps to protect it,” he said. As the law moves through the cabinet, its implementation will be closely watched by both domestic and international stakeholders.

The German Interior Ministry has also announced a plan to expand its cybercrime units, with additional funding allocated for training and equipment. This includes the development of specialized teams to focus on AI-driven threats and international cyber operations. Dobrindt mentioned that the initiative would complement existing efforts, such as the National Cyber Security Strategy launched in 2024, which aimed to strengthen digital resilience across key sectors. “We are building a comprehensive framework that addresses both the immediate and long-term challenges of cyber warfare,” he explained.

With the global digital economy increasingly reliant on interconnected systems, the stakes of cyberattacks have never been higher. Germany’s push for active cyberdefence reflects a growing recognition that digital security is as critical as physical defense. As AI continues to evolve, the need for innovative strategies and legal tools to counteract its impact becomes more urgent. The Interior Ministry’s new law is expected to be a cornerstone of this effort, providing the government with the means to defend its citizens and institutions in an increasingly hostile online environment.