Today my website suspended by the hosting admin because someone hack my website and use my web email to do spamming. Do you have experience like this? Please share.
Of course I have. But now I choose the more safe php cms /blog software such as wordpress. I seldom be hacked again.
Is it using your form to email function or your web email function? I think if the hacker hacked, it is normally attacking the vulnerabilities of the form to email function where they can then blast spams to others. Email accounts wise it will be harder to hack. Such occurrences are quite common especially with those open source php scripts which need to be updated regularly. Just explain to your host. I am sure you are not the only one they had encountered having such problems.
Already explain to my host. I don't use form in my website. I am thinking how I can protect my other website?
Could it be possible that the hacker hacked you computer first, implanted to Trojan/keylogger and got you site admin password and username???? If so I would run a virus scan ASAP and also just to be safe change my username and passwords on my other sites... ( from a diff. computer of course)
if you are using mailer function in contact , tell a friend then there is no need to hack your site they can bypass and send spams
Wordpress 2.5.1 (don't know about the new 2.6...) can be exploited by means of a certain plugin, the name of which I forget right now. But as long as you have a good salted password you should be safe from most attempters. Edit: Sorry that was just a reply to justinlorder.
Are you wanting to sue the person / people who did this? why did you post this in the 'Legal' section?
Everyone who has a website will experience something with a DOS, Spam, or something else. You are not alone buddy, what you can do is look in your log files from the day that happened for the IP, or contact your host to bring it up, you will mosst likey have to reinstall your CMS (if you are using one) and watch you DB for any weird inserts and make a stronger DB pass and admin backend pass.