Google has released emergency patches for its Chrome browser to fix three security vulnerabilities, including a critical flaw (CVE-2025-5419) that is being actively exploited. This high-severity vulnerability, with a CVSS score of 8.8, allows remote attackers to potentially exploit heap corruption via a malicious HTML page. Discovered by Google's Threat Analysis Group on May 27, 2025, the issue was quickly addressed with a configuration update the next day. Google has provided minimal information about the ongoing attacks and the threat actors to ensure users can update their browsers before further exploitation occurs. This is the second zero-day vulnerability the company has patched this year.

Google Rushes Critical Chrome Update to Fix Active Security Flaw The Hacker News

OhioHealth Southeastern Medical Center has launched a new electronic intensive care unit (eICU) program to improve patient monitoring within its ICU. The program, initiated on May 13, connects local medical teams to critical care specialists across the OhioHealth network, enabling continuous patient oversight through secure video, audio, and real-time monitoring of vital signs. This system aims to facilitate early detection of health changes, bolstering clinical decision-making and timely interventions. Wendy Elliott, the center's president, highlighted the program’s role in ensuring accessible, high-quality care in the community by providing around-the-clock expert support. The eICU complements the bedside team’s efforts, enhancing care coordination and early intervention opportunities.

OhioHealth Launches eICU Program to Revolutionize Patient Monitoring OhioHealth

Microsoft and CrowdStrike have launched a collaborative initiative to standardize the identification of cybercriminals and state-sponsored actors within the cybersecurity landscape. This effort aims to address the confusion stemming from inconsistent naming conventions used by different organizations, thereby improving communication and intelligence sharing among cybersecurity professionals. By creating a unified framework for threat actor identification, the initiative seeks to bolster collaboration between private sector companies and government agencies, enhancing the overall effectiveness in responding to increasing cyber threats. The project emphasizes the need for collective action in addressing the complexities of modern cyber threats.

Microsoft and CrowdStrike Unite to Standardize Cyber Threat Actor Naming SecurityWeek

Stanford Health Care Unveils ChatEHR: Revolutionizing Patient Data Access with AI Stanford Medicine