Blogs

Apache Log4j project disclosed CVE-2021-44228, which is a Critical (CVSS 10.0) remote code execution vulnerability affecting Apache Log4j2 version<= 2.14.1. A subsequent security patch was released on Dec 10, 2021. We have observed widespread scanning and exploitation of this vulnerability over the internet using a publicly available PoC (Proof of Concept) exploit. TechBento has completed investigating [...]

This is a security incident with a happy ending, or at least one that is benign.  It all started with an alert from a server indicating an anomaly with "Network Out" traffic from a system under our control.  The detection simply showed a system uploading significant amounts of data. As part of security monitoring we analyze [...]

There were ample signs something big was brewing as all US agencies were issuing warning for Labor Day Weekend.  They were too slow to provide useful information, but they were right.  On August 25th Atlassian disclosed a vulnerability in Confluence (CVE-2021-26084) and if your organization was running an affected version of Confluence there is no point [...]

Very often an organization falsely believes they can wipe a device in the event of an employee termination using a remote wipe command.  While remote wipe technology may be available for some/all mobile devices, it is unlikely you can use this feature during an employee departure.  As you will learn from this guide, remote wipe is [...]

Go ahead and visit the "Add-in for Outlook" page in Outlook Web Access, then come back to this post.  First, if you did click on that link, and signed in it means that you trusted our post.  Don't worry, it was a legitimate link, but you should consider how little effort it took to obtain your [...]

The current generation of web applications are products collectively referred to as SaaS: software as a service.  SaaS products are in a different league from hosted applications often masquerading as "cloud" software.  To many, there is little difference because characteristics like multi-tenancy, automated provisioning, scalability and elasticity are not easily conveyed to the end-user.  Perhaps the [...]

When the COVID-19 pandemic was in week #1 we sent a general announcement about the technologies and services TechBento was able to offer clients that were most useful. While communication and collaboration were hot topics, so were the means to secure the remote workforce.  We also had an experienced perspective on the circumstances: our team is [...]

TechBento's service level agreements are the cornerstone of our managed services.  They set expectations, priorities, and are integral to operational excellence. We are fanatical about tracking our response times and honoring our committments to shared responsibility.  We also build personal relationships and make an extraordinary effort to know our customers. The result of all this is [...]

Our team provides on-premise and virtual private cloud upgrade management for a number of products including TrialWorks case management software. This week we rolled out TrialWorks version 11.4a and all of our upgraded organizations were affected by a problem on the Depositions tab: new records being added threw a nested trigger exception. While we are all [...]

TechBento considers the COVID-19 threat as a high-risk event with severe disruptions to systems, business operations, and financials.  We anticipate heavy influx of ill-prepared organizations seeking last-minute guidance on continuity planning, remote access, requests for additional capabilities, hardware purchases, communication tools.  As a result we have activated our Disaster Recovery & Response plan for large-scale cybersecurity [...]

Monitoring employee activity on macOS is hard.  One of the most popular players in this space is Veriato with a close second of Ekran. Verioto is the owner of Cerebral and Vision, some of which was once known as SpectorSoft 360.  There are several other on-premise and cloud hosted solutions out there, and most do not [...]

Majority of us continue to make bad choices with credential hygiene.  The formula for protecting credentials is fairly simple: unique passwords stored securely and multi-factor authentication.  Implementing that formula requires little more than the willingness to be inconvenienced slightly and a company policy that demands nothing less than "use unique passwords on every system and always [...]

The Apple macOS security and privacy features make remote management tough.  Apple's macOS Sierra introduced new security features that simplify apps from the App Store, but complicate everything else.  This spells trouble for applications that need a lot of access, such as antivirus.  The reason they are complicated is quite simple: these applications expect lots of [...]

Once in a blue moon we have a business owner dismiss security risk based on claiming they are simply not interesting enough, or not valuable enough, to be targeted by malicious actors.  They see themselves as isolated, perhaps somewhat like ships at sea.  Well, even ships at sea are targeted and the recommendations from the United [...]

Domain Name Servers (DNS) are the Internet’s equivalent of a phone book. They maintain a directory of domain names and translate them to Internet Protocol (IP) addresses. This is necessary because although domain names are easy for people to remember, computers or machines access websites based on IP addresses. TechBento DNS brings together cyber threat intelligence [...]

Our macOS management agent offers two key features that were hugely important in November. The first, the ability to push updates and commands on the fly. We patched your systems for the macOS Root Vulnerability behind the scenes as soon as the information became public. The second feature is our expansion of the Self-Service application [...]

Our systems infrastructure team leverages TechBento Pulse, our remote management and monitoring platform, for auditing and administering your servers and critical systems. Along with the on-premise and helpdesk service expansions, we are also launching the next generation of TechBento Pulse. TechBento Pulse now extends the same level of audit and control we have over infrastructure down [...]

We are committed to a manageable customer base and remaining a bespoke IT management and security services company.  While we encourage our customers to remain self-sufficient and use IT for issues beyond break/fix support, we recognize the need to support an ever-more complex world of devices and users. You can now add 24/7 help-desk and support [...]

Introducing TechBento OPS! We're excited to now be able to offer our customers on-premise support for major hardware implementations, upgrades, and special projects in most major metro areas.  Expanding our architecture and infrastructure design services, we are now able to send system administrators and engineers to your offices for installation of network hardware, power systems, and [...]

TechBento joined the Amazon Partner Network the year it became introduced. Back then Amazon had a few dedicated individuals and virtually no infrastructure for members, but that changed quickly. Within a year AWS posed strict certification and examination requirements and the term "Amazon Certified" became a buzzword. Companies literally started hiring people that had these certifications [...]

According to reports, over 121,000 companies were affected today as Amazon Web Services encountered a massive problem within their infrastructure.  Major websites like AirBNB, FreshBooks, Twillo, ZenDesk, Pinterest, Lonely Planet,  MailChimp, Citrix, and even Apple's iCloud were experiencing issues among many more.  Certain Amazon Cloud hosted servers were completely offline while others had no visible impact. Among [...]

The NIST CSRC Redesign Team have been developing a new version of CSRC, and today you can access the beta release at https://beta.csrc.nist.gov. It will be available alongside http://csrc.nist.gov for several months as NIST continues to fix issues, implement enhanced functionality, and migrate existing content. A completely overhauled Publications interface includes significantly more publication details, historical documents, [...]