Home
News
Details

Microsoft's AI Strategy Faces a Triple Dilemma: From Leader to Follower

icon MarsBit
Share
Share IconShare IconShare IconShare IconShare IconShare IconCopy
AI summary iconSummary

expand icon
Microsoft’s AI strategy is under pressure, with challenges spanning security, cost, and market share. A vulnerability in Microsoft 365 Copilot allowed attackers to bypass DLP policies and access private emails for six weeks. A zero-click exploit and a “Reprompt” method were also discovered. Rising token costs from Claude Code are prompting a shift toward GitHub Copilot CLI. Copilot’s paid adoption share dropped from 18.8% to 11.5% over six months, while Google Gemini gains momentum. Microsoft’s new MAI models launched in April 2026, but internal large language models are still anticipated for 2027. Amid this turmoil, alternative cryptocurrencies are showing signs of reaction, with the Fear & Greed Index suggesting increasing market uncertainty.

Author: Shenchao TechFlow

Microsoft has been the biggest beneficiary of the global AI narrative since 2023. With its early $13 billion investment in OpenAI, Satya Nadella branded its entire product lineup—including Office 365, Azure, and Windows—with Copilot, pushing its market value briefly above $3.7 trillion. However, entering 2026, this narrative has begun to unravel on multiple fronts.

The setbacks did not occur in isolation. Over the past month, negative news has surged simultaneously across three dimensions—security, cost, and market share—revealing a common underlying structural issue. The technology stack is not under our control, pricing power is not ours, and enterprise customers’ wallets are being pried open by competitors.

Copilot bypassed DLP to access confidential emails; vulnerability remained undetected for six weeks

In January 2026, a critical flaw, internally tracked as CW1226324, was discovered in Microsoft 365 Copilot. According to SecurityToday and Cybernews, this vulnerability allowed Copilot to read email drafts and sent emails marked as “Confidential” within Office applications such as Word, Excel, and PowerPoint, bypassing customer-deployed data loss prevention (DLP) policies.

Microsoft internal documents described this as emails labeled confidential being "improperly handled" by the AI system. The vulnerability was active since January 2026, and Microsoft did not begin deploying fixes until early February, leaving confidential communications potentially exposed for approximately six weeks. Microsoft has not yet disclosed the number of affected enterprises or users.

This is not an isolated incident. On January 15, 2026, security firm Varonis disclosed an attack technique called “Reprompt,” which can bypass Copilot’s data loss prevention protections using a single malicious link, enabling continuous data exfiltration even after Copilot chats have been closed. That same month, security researchers discovered a zero-click vulnerability in M365 Copilot with a CVSS score of 9.3, allowing attackers to trigger the exploit without any user interaction.

Ilia Kolochenko, CEO of ImmuniWeb and researcher at the European Institute of Law, told Cybernews: “Events like this could surge by 2026 and become the most frequent type of security incident for businesses of all sizes worldwide.” He noted that companies are deploying AI assistants to boost productivity far faster than governance frameworks can keep up, and traditional data loss prevention systems were never designed to monitor how AI agents access, interpret, and repack sensitive data.

Gartner predicts that by 2030, more than 40% of enterprises worldwide will experience security or compliance incidents due to unauthorized AI tools; a 2027 forecast is even more specific, stating that 40% of AI data breaches will stem from cross-border misuse of generative AI. With Copilot deeply integrated into Microsoft Graph—the unified data layer encompassing email, Teams, SharePoint, and OneDrive—a single bypass event could expose an enterprise’s entire core asset surface.

Claude Code license has been discontinued, and token bills have exceeded the AI budget.

In late May, internal reports first revealed by The Verge confirmed that Microsoft’s Experiences & Devices division will discontinue most internal Claude Code licenses by June 30, 2026, transitioning to GitHub Copilot CLI. This division encompasses engineering teams responsible for flagship products such as Windows, Microsoft 365, and Surface, involving thousands of engineers.

Claude Code’s internal pilot program has only been live for six months. According to Windows Central, citing The Verge, Claude Code has gained widespread popularity among Microsoft employees. The initial plan was to have engineers use Claude Code and GitHub Copilot CLI in parallel to compare feedback, but engineers overall preferred Claude Code. The official reason for revoking access is “strategic integration,” but multiple sources point to cost as the true driving factor.

Sesame Disk and several industry media, citing internal communications, reported that Claude Code’s token-based billing model has made monthly expenses difficult to predict, with individual engineer monthly costs for some organizations ranging from $500 to $2,000. Microsoft’s fiscal year ends on June 30, and the license termination date fully coincides with the fiscal year-end.

The parallel case is even more striking. Uber’s Chief Technology Officer, Praveen Neppalli Naga, previously revealed that after deploying Claude Code to 5,000 engineers, the company burned through its entire $3.4 billion annual AI budget in just the first four months of 2026, with engineer monthly usage rates soaring to 84–95%. AI Weekly noted that flat, per-seat licensing pricing masked actual token consumption, and enterprise-scale usage-based billing immediately exposed this structural gap.

GitHub is already adjusting for this. Starting June 1, 2026, all Copilot plans will transition to pay-as-you-go billing via GitHub AI Credits. According to industry data cited by Cryptobriefing, AI software prices across the U.S. have risen by 20–37%, reflecting the gap between corporate expected spending and the actual costs of running AI tools at scale.

This change directly challenges Microsoft’s financial model. GitHub Copilot currently has approximately 4.7 million paid subscribers, generating annualized revenue of about $1 billion; M365 Copilot has 15 million paid seats, but only around 33 million active users, resulting in a workplace adoption rate of just 35.8%. During the transition from flat pricing to usage-based billing, quarterly profitability will fluctuate based on the intensity of AI usage by engineering teams—a variability Microsoft’s subscription business has never encountered in the past decade.

Gemini Surpasses: Paid Subscription Market Share Drops Seven Percentage Points in One Year

The paid AI subscription market share data released by Recon Analytics presents the most direct market verdict. As of January 2026, ChatGPT leads with a 55.2% share, followed by Google Gemini at 15.7% and Microsoft Copilot at 11.5%. This figure has significantly declined from 18.8% in July 2025, losing 7.3 percentage points in six months—a relative drop of 39%. Gemini surpassed Copilot by the end of November 2025.

image

Paid subscription seats are considered the cleanest market signal, eliminating "zombie seats" that are bulk-distributed by enterprises but not actively used by employees. Microsoft's own data confirms this gap: 15 million paid M365 Copilot seats correspond to only 33 million active users, indicating that a significant number of enterprise-purchased licenses remain unused.

A study on early 2026 enterprise AI adoption compiled by UK Compare the Cloud shows that 82% of Google Workspace users reported that AI features delivered real value, compared to 66% of Microsoft 365 Copilot users. Gemini’s context window is approximately 1 million tokens, while Copilot’s limit is around 32,000 tokens—making Gemini roughly 30 times larger, creating a significant gap in long-document analysis scenarios.

The price difference is equally clear: Google bundles Gemini AI into every Workspace plan at no extra cost, while Microsoft adds a $18 per user per month (approximately $23) Copilot surcharge on top of existing M365 licenses. For a 10-person team in the UK, this amounts to an annual difference of about £1,932.

A more sensitive signal comes from pricing power. According to CNBC, Microsoft will launch a new top-tier plan called Microsoft 365 E7 on May 1, 2026, priced at $99 per user per month—65% higher than the $60 for E5—bundling Copilot AI add-ons, AI agent management, and identity management tools. Judson Althoff, CEO of Microsoft’s Business Division, told CNBC that E7 and Copilot upgrades “should drive further adoption of Copilot,” and added that the existence of E7 should also incentivize organizations to upgrade more employees to E5. This “raise prices first, then upgrade, then bundle” strategy reflects a defensive mindset in the enterprise market, absorbing AI add-on fees into core subscriptions by raising the price of baseline SKUs—but at the cost of continuously testing enterprises’ tolerance for Microsoft’s pricing.

The MAI model was launched prematurely—can self-developed improvements catch up?

Facing dual pressures from out-of-control external model costs and lagging in-house capabilities, Microsoft responded on April 2, 2026, with a belated move. Microsoft AI CEO Mustafa Suleyman unveiled three proprietary foundational models: MAI-Transcribe-1 (speech-to-text), MAI-Voice-1 (speech generation), and MAI-Image-2 (image generation), making them available to developers through the Microsoft Foundry platform and MAI Playground.

Yahoo Finance reported that Suleyman told Bloomberg his plan is to build the most advanced multimodal model for various data types, including text, audio, and images. Suleyman, who leads the MAI superintelligence team, stepped down from his day-to-day responsibilities for the Copilot product in March 2026, with former Snap executive Jacob Andreou assuming the role of Executive Vice President of Copilot, allowing Suleyman to focus on cutting-edge model development.

The timeline speaks for itself. Microsoft’s 2019 partnership agreement with OpenAI contractually restricted Microsoft from developing its own broadly capable models—a restriction that was only removed during the renegotiation of the agreement in October 2025. In other words, Microsoft has only been contractually permitted to develop frontier models for just over six months. The MAI Superintelligence team was only established in November 2025 and launched its first models in less than six months.

MAI-1-preview was trained on 15,000 NVIDIA H100 GPUs, with a focus on instruction following and everyday queries. However, Microsoft currently relies on GPT-5.4 as the primary large language model for Copilot, with its own advanced general-purpose large model targeted for 2027. The Microsoft Foundry agreement also secures Azure API access to OpenAI models until 2032.

World Today News noted that Microsoft just reported its worst quarterly performance since the 2008 financial crisis, with investors skeptical about the hundreds of billions of dollars invested in AI infrastructure. Suleyman’s superintelligence team is under immense pressure to prove that this spending will generate proprietary intellectual property, rather than merely serving as a high-cost distributor for OpenAI.

Structural issues: Dependence, defense, and stagnation

When examining the three negative narratives side by side, structural issues in Microsoft’s AI strategy emerge.

First is overreliance on OpenAI. For a long time, Microsoft’s AI product architecture relied exclusively on OpenAI models as its front-end layer, with its own developments locked down by contractual terms. When OpenAI’s token prices rose and inference costs increased, Microsoft could neither replace them with its own models nor pass the costs on to customers, because customers were purchasing the “Copilot experience,” not itemized token bills. The cancellation of Claude Code was a concentrated outbreak; when external model costs spiraled out of control, Microsoft’s instinctive response was to push engineers back to its own GitHub Copilot CLI, even though the latter’s functionality was “slightly inferior.”

Second is the defensive mindset in the enterprise market. The pricing structure of $99 per user per month for the E7 plan and an additional $18–$30 per user per month for Copilot reflects Microsoft’s attempt to force AI adoption through the lock-in effect of its Office ecosystem. However, this approach is now failing against Google’s “free bundling” strategy for Gemini Workspace, with paid subscription share declining by 7 percentage points in just six months—a drop more direct than any analyst’s projection.

Third is the simultaneous failure in security and cost control. Copilot’s DLP bypass vulnerability and zero-click CVE highlight a structural mismatch between rapid integration and deep data access on one side, and lagging governance capabilities on the other. Meanwhile, Claude Code’s budget overrun exposes internal gaps at Microsoft in forecasting AI usage and managing token costs. Against the backdrop of Gartner’s prediction that over 40% of enterprises will experience AI-related security or compliance incidents by 2030, the label of “AI leader” is becoming increasingly difficult to sustain.

Microsoft remains one of the largest AI players by market value, holding a 27% stake in OpenAI and controlling a distribution network of 4 million paid GitHub Copilot subscriptions and 15 million M365 Copilot seats. However, the shift from “leader” to “chaser” is already evident in the data from the past three months. Whether MAI can launch a truly frontier-grade general large model by 2027 will determine how the next chapter of Microsoft’s AI narrative unfolds.

Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information. Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.