clamor on "My site has been "

[ Moderator note: Title adjusted to something describing the actual topic. ]

Google tells me that WordPress is the oldest blog with the most pristine technicians. I would like to believe this. Unfortunately, my WordPress sites have recently been by Black Hats. How is this possible? My hosting provider suspended one of my accounts today as a result of criminal hacking activity. Also, another of my sites based on CubeCart recently failed due to hacking and security issues with recent upgrades. Please don't ask me about CubeCart support and their customer service / communication! If the inteet is so vulnerable, what would happen if the hackers took it down? Who is identifying these hackers and their IP addresses? Why are responsible websites being penalised by their hosting providers and Google for the actions of criminals? I think I need to forget WordPress and go back to old school websites that never fail.

I'm sorry you were , but can you clarify whether you're asking rhetorical questions or are genuinely looking for support?

At this stage my questions are rhetorical but I am looking for answers. I cannot understand why my WordPress sites including the one that crashed today are being . Another WordPress site has run out of bandwidth so I assume it is also being . A third site with a CubeCart site has also crashed due to hacking and possibly coding issues with recent upgrades (not your problem but also a recent issue). All these sites have been online for years without any issues. Meanwhile my old school websites are running perfectly without any hacking issues. I am wondering if the hackers are winning the war.

Here is the response from our hosting provider after our account was suspended without prior notice:

It's not possible to provide prior notifications for issues like these. The account had attempted to send out out 845 emails (in less than 15 minutes) before our monitors were alerted.
If the account is not suspended, the spamming will continue.
After suspending the account, I have had a chance to investigate the spam. The spams originated from the following folder
'/home/xxxx/public_html/wp-content/plugins/custom-contact-forms/bower_components'
The malware file in there ini24.php, was uploaded in September 2015

Looking forward to your response.

Installations get compromised for a variety of reasons.

• Code isn't maintained meaning WordPress, plugins or themes and vulnerable code was exploited
• Additional code on the same server is exploited
• Passwords are obtained (many ways for that to happen)
• Your host runs vulnerable code on the same server

You get the idea. When someone's site is compromised this is the typical reply posted.

Please remain calm and carefully follow this guide.

When you're done, you may want to implement some (if not all) of the recommended security measures.

Once you've successfully deloused your server then hardening your WordPress would not be a bad idea and those links can help you get that going.