In partnership with

Join the next live chat on our regular podcast series, GET NIST-Y! On Thursday, May 15th, we’ll be discussing compliance as a sales driver with Matthew Koenig from nodeware!

⚙️ Demystifying NIST for MSPs

In this excerpt from our book FORGING TRUST — newly-updated for 2025! — we’ll explore how NIST fits into MSP security programs and can serve as a de facto framework for clients across the board.

🛡️ The Shared Responsibility Model (SRM) and What It Means for MSPs

The Shared Responsibility Model is now a foundational element of any successful MSP-client relationship. It formalizes accountability and expectations while ensuring both parties work together to achieve necessary security and compliance outcomes. Learn more about how SRM fits into the MSP realm in this post.

Modernize your marketing with AdQuick

AdQuick unlocks the benefits of Out Of Home (OOH) advertising in a way no one else has. Approaching the problem with eyes to performance, created for marketers with the engineering excellence you’ve come to expect for the internet.

Marketers agree OOH is one of the best ways for building brand awareness, reaching new customers, and reinforcing your brand message. It’s just been difficult to scale. But with AdQuick, you can easily plan, deploy and measure campaigns just as easily as digital ads, making them a no-brainer to add to your team’s toolbox.

Learn more now.

🔍 Survey Insights: What GRC Leaders Are Prioritizing in 2025

As the intersection between business and tech grows more volatile and complex, Governance, Risk, and Compliance (GRC) leaders are recalibrating their priorities for 2025. Here’s what MSPs need to know to align their services with client priorities.

⚠️ Threat Updates

🔴 Ransomware-as-a-Service Expands, Fueling Attacks on Critical Infrastructure (5/13/25)

Ransomware-as-a-Service (RaaS) platforms lower the technical barrier for cybercriminals, enabling a surge in attacks against critical infrastructure sectors like manufacturing, healthcare, and financial services. Recent reports show ransomware incidents targeting these sectors have risen sharply. Experts warn that the traditional patch-and-backup approach is no longer enough; organizations must adopt zero trust architectures, harden supply chains, and use AI-driven threat detection to defend against increasingly aggressive and professionalized ransomware operations. » More Info

🔴 Surge in Supply Chain Attacks Exposes Hidden Vulnerabilities Across Industries (5/13/25)

A sharp rise in supply chain cyberattacks is putting organizations at risk as attackers exploit weaknesses in third-party vendors, open-source libraries, and managed service providers. 54% of large organizations cite supply chain risks as their top concern for 2025. Enterprises and MSPs are urged to implement stricter vendor assessments, continuous monitoring, and zero trust principles to mitigate these cascading threats before they escalate into large-scale breaches. » More Info

🗨️ Parting Words

“Security is always excessive until it’s not enough.” – Robbie Sinclair

Are you a vCISO or MSP looking to operationalize security programs? Let’s discuss how Blacksmith can form the backbone of your profitable, low-lift compliance offering.