What do I need to do to my servers (cPanel servers running RHE) to stop him from attacking me again? He completely defaced over 80 websites. Luckily I had them backed-up and was able to remove his rOOt “account” but he emailed me and said more was to come. Argh! I am not a pro on this sort of thing, by any means. I use mostly tools to do everything, any help on how to secure it would be appreciated.
Call the CIA and say you’ve found a terrorist? 
More seriously, how much will it cost to get a professional in and lock things down?
No clue, but willing to pay what it takes. A lot of my websites as well as ones that pay me to host went down. Not a good sign to my customers. Searching the web I have found he has been an active SOB, over 8000 websites defaced/hijacked completely. To me this is more than just an annoyance this guy is worthy of having top level hunters hunting him. All I want is to stop him from being able to do it again. I’ve implemented some measures, but not sure what else I can do.
I thought this book good if not dated. A step by step of things to check.
Not to offend, but this is a weak attack. If you like, send me a PM and we’ll get you out of this. The person propagating this makes my grandmother look like Mitnick.
Be sure to call him a script kiddie for good measure.