ALL my sites got hacked as they were on the same hosting account. The hacker hacked into my cPanel and deleted everything - hundreds of sites and my Digital Point blog is now gone. This happened about 4 hours ago and my host is not supporting me through this (HostGator). I don't know how I am going to recover from this.
Any loss of data no matter how little is a nightmare. Surely hostgator has backup. Now what they may charge to make available is another matter.
Wow. That sucks. I hope you also have your own backup so at least you can recover some of the data if your host refused or unable to provide their backup.
I called them. They say they will restore my websites via a full backup. Someone hacked into my entire account, changed my cPanel password and FTP password, deleted the ENTIRE public_html directory, and deleted all databases. Who knows what else they stole too.
The hacker also uploaded PHP files which called other files and so forth leaving comments saying "fuck you fuck you" and so on.
All my passwords were encrypted and I had no unstable scripts installed. HostGator is trying to charge me $15 to restore my sites WTF!?
ah, backup.... Is your host not up to date on the latest security patches, or did they let you use a lame password?
That kind of assumes that you were at fault, which is not neccessarily the case. You really do need to get to the bottom of this, though, otherwise you are just as vulnerable as before. Probably the easiest way to get hacked is by having an easily cracked password. Beyond that, I suggest you get hold of one of those security manuals, such as "Hacking Exposed". There are so many ways someone with the right knowledge or tools could get in and ruin your sites.
As stated before, all my sites were encrypted into letter number letter number with no order or formatting..kind of like this: afoiha9s8yuds d7ah2b8dma91k
Then you had better start looking for other explanations. Maybe your host forgot to patch; maybe your own computer has been compromised. If you're on shared hosting, someone else could have been attacked and that left all the sites vulnerable. You say you had no unstable scripts installed, but if you used anything remotely popular then these scripts can go from safe to exploitable in hours. Once a vulnerability is spotted, loads of sites could be easily cracked, and it's usually just a matter for the perp to use a search engine to find these sites. So you will need to double-check all your scripts before you put them back up. Good luck.