A security lapse at Kaspersky has exposed a wealth of proprietary information about the anti-virus provider's products and customers, according to a blogger, who posted screen shots and other details that appeared to substantiate the claims.
In a posting made Saturday, the hacker claimed a simple SQL injection gave access to a database containing "users, activation codes, lists of bugs, admins, shop, etc." Kaspersky has declined to comment, but two security experts who reviewed the evidence said the claims appeared convincing.
This just adds to a long list of issues with Kaspersky in the last 2 years. They had 2 critical program updates last year that virtually made the users AV security useless, and then issues with other updates. There is also rumors that they found malware moles in their program engineering department (not uncommon these days).
All of this has lowered Kaspersky's trustworthiness in many experts eyes and I will no longer recommend it because of all their issues lately. This only adds to that view.
)