From 9 July 2024, Microsoft SQL Server 2014 (installed by older Act! versions) becomes a serious risk to your business. Microsoft advises this must be removed to prevent cyber-attack, including data loss, financial theft, identity theft & ransomware (see Act! warning & article).

If customer information is stolen from your database, it may put your customers at risk, so could they hold you personally liable? Does your Insurer require you to have multi-factor authentication or disclose known risks, such as security vulnerabilities in older software? 

The April 2022 Act! updates include a critical security update in a Microsoft component, considered mandatory for all Act! customers. Sometimes Microsoft labels an update a critical security update when it is deemed necessary to prevent cyber-attack, including data loss, financial theft, identity theft & ransomware (see microsoft.com page here).