🗓️ Make 2025 Your Last Year of Compliance Spreadsheets

It’s no secret that spreadsheet-driven compliance management is becoming obsolete. They might be familiar and easy to use, but spreadsheets introduce significant (and often hidden) risks that threaten operational efficiency, audit success, and security posture.

🎙️The Get NIST-y Podcast!

📗 Ultimate Guide to Compliance Software

What is compliance software, really? Is it just document management? Can a “GRC platform” actually help MSPs, or is there something better? Many managed services providers have questions about the value of adding a compliance tool to their stack — and we have answers.

🤖 Semi-Autonomous Security Operations: How AI and Humans Team Up

Modern SOC platforms increasingly harness artificial intelligence to process vast security data streams, correlate anomalies, and prioritize alerts for human investigation. Ultimately, the future of security operations is not fully autonomous, but a collaborative partnership where automation amplifies human expertise — never replaces it.

⚠️ Threat Updates

🔴 Google Chrome Zero-Day Vulnerability (CVE-2025-10585) Actively Exploited (9/24/25)

Google released urgent security updates for Chrome to patch CVE-2025-10585, a zero-day vulnerability in the V8 JavaScript engine that is being actively exploited in the wild. The flaw enables remote attackers to execute malicious code through crafted web content, potentially compromising affected systems. All users are urged to update Chrome immediately and review browsing activity for signs of suspicious behavior. » More Info

🔴 Ransomware Attack Shuts Down Brussels Airport Check-in Systems (9/21/25)

A ransomware attack targeted a US-based third-party vendor supporting Brussels Airport’s check-in and boarding system, leading to major flight disruptions and cancellations. Airlines were forced to use manual processes, creating massive delays. Authorities are investigating the incident, and cybersecurity teams emphasize the importance of contingency planning and securing supply chain vendors to minimize future risk. » More Info

🗨️ Parting Words

“The best minds of my generation are thinking about how to make people click ads.” — Jeff Hammerbacher, Data Scientist

Are you a vCISO or MSP looking to operationalize security programs? Let’s discuss how Blacksmith Infosec proves that compliance is an opportunity, not a struggle that has to be packaged in FUD!