I have a resellers package with cPanel support, with multi domain hosting facility, unlimited space, unlimited bandwidth. This I have purchased from cloud.eth1.in.
The problem is my sites which I have hosted on my hosting account are getting hacked frequently and i am getting very bad scold from my customers. When i ask this to my hosting provider, he is telling
“we do not offer support for the applications/software that you install inside your web hosting account.
We have thoroughly investigated this issue and we have ample evidence again which shows
that your applications/web software(Joomla) & plugins installed for the same in your hosting account xyzabc.com is the root cause of the compromise of the entire account.”
I want to know who is responsible here websites security?
Let me clear here, I have not purchased a DEDICATED SERVER here. Its just a cPanel hosting package.
Answers from expert are needed. As I am thinking to go for legal action against the service provider.
Chosen Answer:
The one who has installed these software’s is responsible because the it is an application level vulnerability not the system level.
by:
on: 23rd May 12
Posted in 
Tags:
You should try private cloud hosting instead. I think it is better!. Try the site below.
the company who owns / has access to the server root is responsible
Its news to me that Joomla is responsible for security breach. Ask your web host to identify which Joomla plugin is responsible. Atleast Joomla people should know that they are involved in hacking.
Seriously your webhost is fooling you. Go for good and responsible hosts like Resellerclub, hostgator, net4, bigrock, etc
The one who has installed these software’s is responsible because the it is an application level vulnerability not the system level.
I think the company is responsible
The service provider should be active every time he cant say that its not his responsible and whether its Joomla or HTML website the developer will develop website in good manner to have client forever, but the cpanel provider should have a good security if he don’t have then he should not provide service lol :O. its crazy that he investigated and dint find any solution…
anyways providers should provide services thoroughly or the only option is loosing clients.
The authorized person.
The hosting company is responsible, definitely. I think they may be talking about you adding extra features.. and not being responsible for that, if it compromises your security. Seems your hosting company is really sketchy.. and putting rules into place that they shouldn’t.. to take advantage of their customers.
I had an issue with Bluehost trying some sketchy stuff.. I switched to SiteServing. They are dependable and very open about their policies.
Good luck with everything.. especially if you end up taking legal action.