🤝 How Cybersecurity Ratings and Compliance Help Build Strong Business Relationships

Cybersecurity ratings and compliance frameworks not only protect data — they build trust, facilitate smart vendor partnerships, and deliver tangible business benefits that deepen relationships and drive sustainable growth.

🎙️The Get NIST-y Podcast!

🔓 What the Salesloft Drift Breach Reveals About Trust and Risk

When trust in SaaS becomes a liability, every MSP should take notice. The recent compromise of Salesloft through its Drift integration proves how quickly a trusted business tool can turn into a threat vector for hundreds of organizations. This post breaks down key insights from this attack and offers tips for follow-up coverage.

The Gold standard for AI news

AI will eliminate 300 million jobs in the next 5 years.

Yours doesn't have to be one of them.

Here's how to future-proof your career:

• Join the Superhuman AI newsletter - read by 1M+ professionals

• Learn AI skills in 3 mins a day

• Become the AI expert on your team

Start learning AI now

👀 Continuous Compliance Monitoring as a New Security Standard

Compliance has long relied on point-in-time audits — structured reviews conducted annually or semi-annually to check if organizations meet regulatory requirements. But as cyber threats grow more dynamic and regulators demand real-time assurance, that model is increasingly inadequate. Continuous monitoring is becoming the new standard, offering organizations a more proactive and resilient approach to compliance.

⚠️ Threat Updates

🔴 WhatsApp iOS/Mac Zero-Click Vulnerability Exploited (9/12/25)

Researchers identified CVE-2025-55177, a zero-click authorization flaw in WhatsApp for iOS and Mac. Attackers processed content from arbitrary URLs, enabling remote compromise without user interaction. Security teams recommend immediate patching and monitoring for unauthorized URL processing activities. » More Info

🔴 Uvalde School District Forced to Close by Ransomware Attack (9/13/25)

Uvalde Consolidated Independent School District in Texas canceled classes for several days following a ransomware attack. Critical systems, including phones, HVAC, and monitoring tools, were disrupted. The FBI and insurance cyber team are investigating, as school operations remain impaired. Backup and recovery strategies are now an urgent focus for educational institutions. » More Info

🗨️ Parting Words

“Effective cybersecurity is not a product, but a process.” – Jim Langevin

Are you a vCISO or MSP looking to operationalize security programs? Let’s discuss how Blacksmith Infosec proves that compliance is an opportunity, not a struggle that has to be packaged in FUD!