As if ripping people money for sell a scamware that fails to do anything useful is not bad enough, now there are statements from a security researcher indicating that MacKeeper's poor protection It has made it easy for you to access confidential data from 13 million accounts.
This calls into question a software that a priori serves to protect your computer from threats and malware And that in the end, in addition to not being of much use, it also endangers your information if you register.
As confirmed by the researcher himself:
I have recently been able to download more than 13 million sensitive personal account data of users related to MacKeeper, Zeobit, and / or Kromtech […] things like names, email addresses, usernames, password hashes, computer name , IP address, software license and activation codes, type of hardware (for example: "MacBook Pro"), the type of subscriptions, telephone numbers and serial numbers of the equipment.
The specific investigator is Chris Vickery, who previously exposed data breaches in the Major League Baseball, the ATP, plus a network K-12 charter schools in California and many others.
Also for the most incredulous, Vickery has published a screenshot (You can see it above, accompanying these lines) of the folder hierarchy, stating that the server you accessed was completely unprotected.
Six hours after the fact was made public on reddit, the database is still completely unprotected and freely accessible without requiring any kind of registration or credentials.
The researcher also pointed out that while the passwords were encrypted, the system used was extremely weak. He also claimed that later will post more details how he was able to access the database that is currently already protected.