I have many hosting accounts in the UK and US. One of them at 4am this morning had been hacked and an index.html file uploaded to all the domains in the account. Most of the sites (99%) were not important when defaced briefly, so not too bothered. The only data lost was if the site had a index.html file over written, but a restore sorted that out. I have around 150 + on the account mainly 1 - 2 pagers waiting for Dev using index.html format and also the odd WordPress Install. So a few questions: If all sites both WP and none WP got hacked can I rule out a WP plugin injection code attack. Is this correct thinking this? I'm guessing they had FTP login details which gain access to all sites in that account. Would this be the obvious method. Check your sites as I'm sure these are on a spree TBH. I am in the process of moving all domains to one account in the UK and security on it is really high they way access is granted etc so this just has made me speed the process up. Live and learn people!