Google Cloud responds to AI-accelerated cyberattacks with a platform that aims to close security gaps in minutes

Google Cloud has unveiled "AI Threat Defense," a platform designed to automatically find, assess, and patch security flaws in enterprise systems. The company bundles technologies it partly acquired through acquisitions.

The platform combines four building blocks: Gemini analyzes code, cloud security firm Wiz assesses risks in cloud infrastructure, Deepmind's agent Codemender writes patches, and Google subsidiary Mandiant contributes experience from real-world cyberattacks.

Wiz, which Google acquired in March 2025 for $32 billion, first identifies vulnerable systems like exposed servers, APIs, or credentials in a company's IT environment. An agent then simulates which flaws can actually be exploited.

For scanning, Google deliberately uses multiple models at once. Performance varies a lot depending on the task: some models are better at application logic, others at cloud configuration or binary analysis. No single model catches every flaw. Cheap models handle continuous checks, while pricier frontier models tackle the most critical systems.

Codemender, which Deepmind introduced last fall, then steps directly into the development environment. It replaces vulnerable code and rewrites older codebases into modern, memory-safe languages. Before shipping a fix, the system automatically generates tests to verify each patch. Which patch came from which model stays traceable.