And here i was thinkin it was KCB...

So the guy was able to discover a loop hole to access the admin pages (mabbe a default password was used) ; 

Then he entered the sql database using the same password and give us a print out of users who access the page and leave their email address behind ... Big WhOOPP!!!

I am sure the emails are not even KBC staff - these are probably those users told to register inorder to drop their comments ..