From what I've read, this is just a simple case of 'forgot to test our updates before we deploy them.' As bad as it is, we've come to expect this from our software vendors. However, it's a 'security' vendor that's doing this, customers of GFI should be appalled. I don't use their Mail Security product (the one that does A/V scans), but I do use their spam filter. I will be switching now, thank you very much.

We have to hold vendors accountable. As long as people allow things like this to go on, the situation is never going to get any better.