@SuperSl1nk announced via Twitter that he had found multiple vulnerabilities in Kaspersky’s official site (my.kaspersky.com). The vulnerability he shared on Twitter was a DOM based XSS on the support page of Kaspersky’s site.
You can view his tweet here:
Some other proof and info on the servers:
184.108.40.206 hips.kaspersky-labs.com ESMTP Sendmail 8.14.4/8.14.4 220.127.116.11 sget3.kaspersky-labs.com ESMTP Sendmail 8.14.4/8.14.4 18.104.22.168 mailgate.kaspersky.com ESMTP service ready 22.214.171.124 relay4.kaspersky-labs.com ESMTP Postfix 126.96.36.199 mailhub4.kaspersky-labs.com ESMTP Postfix 188.8.131.52 websvn.kaspersky-labs.com ESMTP Sendmail 8.14.4/8.14.3