One of my clients websites was shut down last month. The reason was someone hacked into his website and installed some phishing stuff. Apperantly the hacker had gained access through WordPress, which at that time was version 1.5
We immediately removed wordpress, and later installed the latest version. Now my client was terminated again because of the same problem.
Is this something anyone has experienced, or even know of? What can I do to prevent this?