There have been no hacks for the last 6 months like that one. What I actually wanted to say but didn't was how possible is it that at that time someone created a back door. The site was backed up after the major defacement from a prior date. Everything was replaced. Now, six months later someone has found a way to get in. There have been no occurrences since I updated the control panel and ftp passwords with characters/upper/lowercase/numbers/symbols.
Thank you very much for the link to security enhancements.
Steve - there are as many different ways to hack the server as there are accounts on it. Why do you think the hacker is just targeting you? Server configuration (ie lack of security on it) is just as likely to cause issues for EVERYONE on the server and there are dozens of wordpress, oscommerce etc hacks around.
Best thing is not to consider it a personal attack - if the server gets done, you're just one of dozens (possibly hundreds) of victims.
The only question here is - how much do you trust InMotion to have sorted itself out and employed an actual linux admin tech rather than a bunch of support / call centre staff which many cheap shared hosting companies use in place of any real 'administrators.'
Here's a few other pointers - since getting hacked, has InMotion bothered to contact you outlining changes to their security with the idea that it will prevent this happening again - eg are they running the php extension suhosin for example? mod user_dir / chroot access? who gets shell access and what are the rules re that ? is php running under any form of restriction? have they updated their lamp stacks to the latest stable versions ?do they only allow sftp connections to a non typical port? do they regularly require you to change passwords? do all accounts require ssl connections?
These are a few very basic ideas that any proactive hosting company not looking at making a fast buck would have largely implemented. If their answers to that list = vague and lacklustre (ie signs of incompetence), then how confident are you it won't happen again tomorrow?