July 2022
Microsoft 365 Basic to Modern, Legacy Authentication Clients, and October 1st, 2022.
Businesses that use Microsoft 365 (or Office 365) need to mark October 1st, 2022 on their calendars. This is the official deadline for Microsoft's "Deprecation of Basic authentication in Exchange Online". While every business should [...]
June 2022
Filevine Legal Case Management Software receives a rare Five-Star Bento Trust Rating
With the launch of Bento Security we have been moving our IT/IS clients to an organized and proactive effort to manage cybersecurity risks. Vendor Supply Chain Risk Management was one key area of focus with [...]
December 2021
Apache Log4j project CVE-2021-44228 Disclosure
Apache Log4j project disclosed CVE-2021-44228, which is a Critical (CVSS 10.0) remote code execution vulnerability affecting Apache Log4j2 version<= 2.14.1. A subsequent security patch was released on Dec 10, 2021. We have observed widespread scanning [...]
October 2021
The day a Microsoft Outlook Outbox item caused a security incident.
This is a security incident with a happy ending, or at least one that is benign. It all started with an alert from a server indicating an anomaly with "Network Out" traffic from a system [...]
September 2021
Your Confluence instance was hacked if you were running an affected version on August 25th or thereafter.
There were ample signs something big was brewing as all US agencies were issuing warning for Labor Day Weekend. They were too slow to provide useful information, but they were right. On August 25th Atlassian [...]
March 2021
Employee is being fired: an explanation for why wiping a device is likely not an option.
Very often an organization falsely believes they can wipe a device in the event of an employee termination using a remote wipe command. While remote wipe technology may be available for some/all mobile devices, it [...]
August 2020
The most underrated and essential feature in Outlook Web Access to cybersecurity.
Go ahead and visit the "Add-in for Outlook" page in Outlook Web Access, then come back to this post. First, if you did click on that link, and signed in it means that you trusted [...]
June 2020
Successfully Transitioning to Filevine Legal Case Management.
Law firms are increasingly interested in adopting software-as-a-service legal case management solutions to modernize their existing practices. We have been asked repeatedly to provide security insights into adopting SaaS products including CasePeer, LEAP, PracticePanther, Clio, [...]
Doing Software-as-a-Service Properly.
The current generation of web applications are products collectively referred to as SaaS: software as a service. SaaS products are in a different league from hosted applications often masquerading as "cloud" software. To many, there [...]
May 2020
How can a small company secure their remote workforce?
When the COVID-19 pandemic was in week #1 we sent a general announcement about the technologies and services TechBento was able to offer clients that were most useful. While communication and collaboration were hot topics, [...]
Bursting Service Level Agreements
TechBento's service level agreements are the cornerstone of our managed services. They set expectations, priorities, and are integral to operational excellence. We are fanatical about tracking our response times and honoring our committments to shared [...]
Maximum stored procedure, function, trigger, or view nesting level exceeded
Our team provides on-premise and virtual private cloud upgrade management for a number of products including TrialWorks case management software. This week we rolled out TrialWorks version 11.4a and all of our upgraded organizations were [...]
February 2020
COVID-19 prompts the activation of disaster response plans
TechBento considers the COVID-19 threat as a high-risk event with severe disruptions to systems, business operations, and financials. We anticipate heavy influx of ill-prepared organizations seeking last-minute guidance on continuity planning, remote access, requests for [...]
January 2020
ActivTrak on macOS using Addigy and your own MDM Solution
Monitoring employee activity on macOS is hard. One of the most popular players in this space is Veriato with a close second of Ekran. Verioto is the owner of Cerebral and Vision, some of which [...]
November 2019
CISA Cyber Essentials for Small Business
The Cybersecurity and Infrastructure Security Agency (CISA) has launched Cyber Essentials, an effort to assist small organizations in understanding and addressing cybersecurity risks. Developed in partnership with small businesses and small state, local, tribal, and [...]
October 2019
TrialWorks Hosting Ransomware Incident
This has been a tough week for TrialWorks users; as we write this blog the fourth day of a ransomware disaster hosting outage. According information shared by customers, the hosting system has been down since [...]
Mitigating Credential Compromise
Majority of us continue to make bad choices with credential hygiene. The formula for protecting credentials is fairly simple: unique passwords stored securely and multi-factor authentication. Implementing that formula requires little more than the willingness [...]
September 2019
Attorneys fees justified by every email
Class action lawsuits come with months, if not years, of effort to collect attorney's fees out of settlements. Increasingly lawyers find themselves in need of processing thousands of email messages to account for their time. [...]
August 2019
Surviving eDiscovery Data Dumps
Recently a New York City law firm approached us with a problem: the other party was dumping thousands of pages of discovery into their Everlaw eDiscovery services and generating thousands of dollars of monthly expenses. [...]
Deploying anti-virus to multiple macOS devices at once
The Apple macOS security and privacy features make remote management tough. Apple's macOS Sierra introduced new security features that simplify apps from the App Store, but complicate everything else. This spells trouble for applications that [...]
July 2019
Cybersecurity for maritime commercial vessels and their operators.
Once in a blue moon we have a business owner dismiss security risk based on claiming they are simply not interesting enough, or not valuable enough, to be targeted by malicious actors. They see themselves [...]
September 2018
Apple Business just validated the Shared Responsibility Model
The shared responsibility model has been the center of our end-user solutions, despite the idea being a tough sell. Even today, it is relatively common for organizational staff to expect "help-desk" or "tech support" for [...]
April 2018
No-cost, secure, and high-performance DNS
Domain Name Servers (DNS) are the Internet’s equivalent of a phone book. They maintain a directory of domain names and translate them to Internet Protocol (IP) addresses. This is necessary because although domain names are [...]
December 2017
Self-Service Software
Our macOS management agent offers two key features that were hugely important in November. The first, the ability to push updates and commands on the fly. We patched your systems for the macOS Root [...]
November 2017
TechBento Pulse Expansion
Our systems infrastructure team leverages TechBento Pulse, our remote management and monitoring platform, for auditing and administering your servers and critical systems. Along with the on-premise and helpdesk service expansions, we are also launching the [...]
24/7 Level 1 HelpDesk
We are committed to a manageable customer base and remaining a bespoke IT management and security services company. While we encourage our customers to remain self-sufficient and use IT for issues beyond break/fix support, we [...]
On-Premise Services
Introducing TechBento OPS! We're excited to now be able to offer our customers on-premise support for major hardware implementations, upgrades, and special projects in most major metro areas. Expanding our architecture and infrastructure design services, [...]
September 2017
Certifications Matter
TechBento joined the Amazon Partner Network the year it became introduced. Back then Amazon had a few dedicated individuals and virtually no infrastructure for members, but that changed quickly. Within a year AWS posed strict [...]
February 2017
Amazon Cloud Outage
According to reports, over 121,000 companies were affected today as Amazon Web Services encountered a massive problem within their infrastructure. Major websites like AirBNB, FreshBooks, Twillo, ZenDesk, Pinterest, Lonely Planet, MailChimp, Citrix, and even Apple's iCloud [...]
NIST Launches Beta Site for the Computer Security Resource Center (CSRC)
The NIST CSRC Redesign Team have been developing a new version of CSRC, and today you can access the beta release at https://beta.csrc.nist.gov. It will be available alongside http://csrc.nist.gov for several months as NIST continues to [...]
New Website Goes Live
It was time to make some changes to our site as we undergo expansion. With our primary site's reface we all of our brands will follow suit. We are in the process of unifying [...]