Google’s Big Sleep AI Detects and Halts Active Exploitation of SQLite 0-Day Vulnerability

Google has announced significant advancements in artificial intelligence-driven cybersecurity solutions, positioning AI as a game-changing tool for security defenders ahead of major industry conferences, including Black Hat USA and DEF CON 33.

The tech giant’s latest initiatives encompass agentic AI capabilities, enhanced security platforms, and strategic public-private partnerships designed to strengthen the global digital ecosystem against emerging cyber threats.

AI Agent Big Sleep Discovers Critical Vulnerabilities

Google’s Big Sleep AI agent, developed collaboratively by Google DeepMind and Google Project Zero, has achieved a milestone in proactive vulnerability discovery by identifying CVE-2025-6965, a critical SQLite vulnerability that was previously known only to threat actors.

This represents the first documented case of an AI agent directly preventing the exploitation of a zero-day vulnerability in real-world scenarios.

The Big Sleep system utilizes advanced machine learning algorithms to autonomously scan software codebases for security flaws, significantly accelerating the traditional vulnerability research process.

Since its initial deployment in November 2024, the AI agent has exceeded performance expectations by discovering multiple previously unknown vulnerabilities in widely-used open-source projects.

The system’s integration with Google Threat Intelligence enables predictive vulnerability assessment, allowing security teams to identify and patch critical flaws before malicious actors can exploit them.

The AI agent operates through a sophisticated contrastive learning approach, analyzing code patterns and identifying anomalies that may indicate security weaknesses.

This methodology enables Big Sleep to function effectively without requiring extensive datasets from previous attacks, making it particularly valuable for detecting novel attack vectors and zero-day vulnerabilities.

Enhanced Security Platforms and Forensic Tools

Google is expanding its Timesketch open-source collaborative digital forensics platform with agentic capabilities powered by Sec-Gemini, an AI model specifically designed for security applications.

The enhanced platform will demonstrate automated forensic investigation capabilities at Black Hat USA, significantly reducing investigation timelines while enabling security analysts to focus on complex threat analysis tasks.

The company will also showcase FACADE (Fast and Accurate Contextual Anomaly Detection), an AI-based insider threat detection system that has been operational within Google’s infrastructure since 2018.

FACADE processes billions of daily security events across Google’s global network, utilizing advanced anomaly detection algorithms to identify potential internal threats.

The system’s unique architecture eliminates the need for historical attack data, making it highly effective against novel insider threat scenarios.

Industry Partnerships Drive Collaborative Defense

Google’s commitment to collaborative cybersecurity extends through the Coalition for Secure AI (CoSAI), an industry-wide initiative focused on secure AI implementation.

The company will contribute data from its Secure AI Framework (SAIF) to accelerate CoSAI’s research workstreams in agentic AI, cyber defense, and software supply chain security.

The two-year AI Cyber Challenge (AIxCC) partnership with DARPA will conclude at DEF CON 33, where participating teams will unveil AI-powered tools designed to identify and remediate vulnerabilities in major open-source projects.

Additionally, Google will partner with Airbus for a specialized Capture the Flag (CTF) event, demonstrating how AI assistants can augment cybersecurity professionals’ capabilities across various skill levels.

These initiatives represent a fundamental shift toward AI-enhanced cybersecurity, providing defenders with unprecedented capabilities to detect, analyze, and respond to sophisticated cyber threats in real-time.

Find this Story Interesting! Follow us on Google News, LinkedIn, and X to Get More Instant updates