When the Alerts Outrun the Analysts: Europe's Quiet Plan to Put AI Agents Inside the Banking Vault
CyberAId argues that the future of financial cybersecurity is not a smarter chatbot, but a federation of specialist agents reasoning over the tools banks already own.
The European financial sector moves more than 100 trillion euros in assets and clears upwards of 400,000 transactions every day. Since 2020, cyberattacks against it have grown by 238 percent, and the industry now absorbs roughly three times the attack volume of the next most targeted sector. Behind those numbers sits a quieter and more unsettling statistic: enterprise security platforms detect only about 21 percent of the techniques catalogued in the MITRE ATT&CK framework, and roughly two thirds of security operations teams cannot keep up with the alerts their own tools generate. The majority of breaches, according to industry surveys, are preceded by alerts that were produced, logged, and then never investigated.
A new position paper from a European consortium, CyberAId, makes a sharp argument about why this is happening and what to do about it. The bottleneck, the authors claim, is not data, not staffing, and not budget. It is reasoning capacity. And they propose a remedy that breaks with the dominant industry instinct of stitching a single large language model onto an existing security console.
