🤝 Liongard + Blacksmith Integration Goes Live

Whether you're managing compliance across dozens or hundreds of client environments, this integration helps you scale audits with consistency, clarity, and real security value. It’s time to stop fearing audits — and start using them as strategic levers for trust and growth. If you're an existing customer of Blacksmith InfoSec or Liongard, this integration is available to you today!

Mike and Jared talk with Dustin Puryear from Giant Rocketship about scale, process, and keeping your team sane while making sure your customers are secure.

Everyone Wants to Scale — But Most MSPs Aren’t Built for It
Process Isn’t a Dirty Word: Ops Hygiene as a Growth Enabler
You Don’t Need to Be Enterprise to Borrow Their Discipline

...and more!

Join us on July 17th @ 1PM EST!

🔍 What Next-Gen Compliance Should Look Like for MSPs

MSPs face a new reality: compliance isn’t just about going through the motions for an auditor’s checklist — it’s about equipping organizations to detect, defend, and adapt to ever-evolving threats. Achieving true compliance maturity requires orchestrating both visibility into technical environments and governance through actionable, business-ready controls.

⚠️ Threat Updates

🔴 Google Chrome Zero-Day Actively Exploited, Update Released to Stop Attacks (7/16/25)

A critical zero-day vulnerability in Google Chrome, tracked as CVE-2025-6554, was patched in early July after confirmation that attackers were exploiting it in the wild. The flaw is a type confusion bug in Chrome’s JavaScript engine, allowing remote code execution on both Windows and Mac devices simply by visiting a malicious website. Google confirms active attacks targeting the U.S. and urges all users to immediately update to the latest browser version to block exploit chains before attackers adapt their techniques. Enterprises should push emergency updates organization-wide and review endpoint protection for signs of compromise. » More Info

🔴 Sophisticated Deepfake Scams Surge, Targeting U.S. Financial Sector and Enterprises (7/16/25)

July 2025 has seen a dramatic escalation in deepfake-based cybercrime across the U.S., as attackers deploy AI-powered video and audio impersonations to trick employees into wiring funds or revealing sensitive data. AI-generated synthetic media has been used in targeted business email compromise incidents and phone scams, bypassing traditional detection defenses. The number of deepfake attacks is projected to reach over 8 million globally this year, with financial services, government, and technology sectors in the U.S. at highest risk. Security teams are urged to deploy advanced authentication, deepfake-detection tools, and targeted employee training to identify fraudulent communications before financial loss or data exfiltration occurs. » More Info

🗨️ Parting Words

“To err is human — and to blame it on a computer is even more so.”

– Robert Orben

Are you a vCISO or MSP looking to operationalize security programs? Let’s discuss how Blacksmith Infosec proves that compliance is an opportunity, not a struggle that has to be packaged in FUD!