SUP admits access to users login and password
To make it short - user vedmouse had some problems with counter from ljplus.ru. She wrote SUP asking to fix the problem. And just the other day checking counter's logs she notices that someone logged into her LJ from SUP IP (screenshot). After putting supmaker before the fact of unauthorized access SUP came up with excuse saying that they got the LJ login-password from ljplus.ru website [there's a place to save it for easier use of ljplus functions] and used it to fix the problem with the counter. Also supmaker assured that this will never happen again and that they are making steps to better protect users info [and educate their dev team on basic ethics?] and very sorry for not informing the user that they accessed her LJ without authorization from the user.
So the conclusion - if you use SUP service ljplus.ru and saved your LJ login info in their system, you are giving away your password to any curious member of SUP company.