About Start Software

Start Software is an award-winning developer and leading publisher of asbestos software, systems for the legal services industry and more.

Want to know more about asbestos software Alpha Tracker? Alpha Tracker is the most used asbestos software in the UK, Australia & New Zealand with more than 60m items of asbestos data stored.

Our legal services software Alpha Legal helps will writers, accountants, solicitors, IFAs and estate agents to communicate securely with clients. Read about developments here on the blog.

Or need help with Alpha Anywhere or Alpha Transform projects or software development? You'll find useful info here.

Really, Microsoft?!! Are you *still* allowing "password" to be used as a password at the end of 2021...?! Don't underestimate the importance of complex passwords

Complex passwords are really important.  "Brute force" hacking attempts are very common on all web systems - hackers literally throw 1000s of combinations of well-known user names and passwords at web systems to see if they can find a way in.  It might surprise you to learn that most publicly-facing web systems are subjected to this sort of attack every few days.

Almost all pieces of software now insist on long, complex passwords.  If passwords are long enough (8 characters, say) and contain numbers, lower case characters, upper case letters and some punctuation, hackers simply can't guess or be lucky and find a matching combination.

It's for this reason that we were surprised that Microsoft Excel - the most popular spreadsheet software in the world - still allows "password" to be used as a password when encrypting a file!  We found this out when testing encryption methods when preparing a webinar for our Alpha Legal users.  In 2021 this is simply unacceptably sloppy on their part - it's encouraging users to use guessable passwords when potentially storing sensitive data and this should not be possible.

Here's a demonstration showing that Excel still allows "password" to be used as the "secure password" for an encrypted file:

This screen recording shows me typing "password" into the password box - really!

Alpha Legal has been designed from the ground up to help you to secure your business, your clients' data and your reputation.  Take cyber-security seriously and protect your business with Alpha Legal - easy, safe & secure.




Comments

Post a Comment

Popular posts from this blog

Great customer feedback x 3!

Image
Three emails just arrived one after the other - and each put a smile on our faces and a spring in our step! Feedback #1... "We smashed  our audit! Thank you so much for your help" from a new customer where we have been providing Alpha Five support and mentoring  to help them to develop an Intranet quality & audit system Feedback #2... "hi Tom.   It looks fantastic! Very well done" from a client reviewing the latest changes to a web data analysis system we have written using Alpha Anywhere , SQL Server and JavaScript Feedback #3... " The launch of Alpha Tracker here is going really well ... thank you so much" from an asbestos consultancy feeling the benefits of their Alpha Tracker asbestos software installation. We really appreciate it when customers take the time to send us feedback like this - it makes the hard work seem worthwhile!
Read more

Alpha Validator update released

Image
The automated survey data checking feature within asbestos software Alpha Tracker (known as "AlphaValidator") has been updated again.  This follows on from the update released on 11 December (more info here ). an example of AlphaValidator's data check output This update - v1.0.74 SVN25 - is ready now to download from our website and improves the way photos of asbestos samples are validated . Please do contact the Start Software Support Desk  (available 24x7!) if you would like help installing the update.
Read more

Another security breach: Huddle's 'highly secure' work tool exposed KPMG and BBC files

I happened across this story http://www.bbc.co.uk/news/technology-41969061 this week and had to really scratch my head and think - how did this design for the security within the system get past their internal quality controls? We take security very seriously in our applications.  We regularly review security methods and look for flaws both internally and via external "penetration test" services. No system is 100% secure but it is our job to make our software as close to 100% as possible.  Our two web servers of choice (Alpha App Server and Microsoft IIS) are regularly patched and updated as security vulnerabilities are discovered.  We do all we can to protect the data belonging to our clients and we put secure off-site backups in place on the servers we manage. Keeping systems secure is not easy and is a constant battle against hackers and other threats.  We'll keep at it!
Read more

Blog Archive

Show more