Last month I was contacted by Plusnet and told my webspace had been compromised, to resolve it, and to come back to them with a plan to ensure it didn't happen again. I also spotted this post from someone else at the same time http://forum.webuser.co.uk/showthread.php?t=101881
Being the cynic I am (I've experienced 2 previous Plusnet compromises) I asked for copies of the logs so that I can see exactly how my files were modified (they were linking to malware infected sites).
I was told that Plusnet don't keep any logs.
So I'm in a position where I have to provide Plusnet with a plan explaining how I'm going to stop this happening again in future, but because they don't keep logs, I'm unable to ascertain how the compromise took place.
I think it's highly unlikely that Plusnet don't keep logs, because a) despite being a customer for over 20 years, I still get lied to any time I initially raise any issue (oh no, we've had no problems with that, no we don't traffic shape, no we've never applied throttling to port 25, yada yada yada no no no) and b) they've been compromised at least twice that I know of (that I've been affected by) and logs have always been available that have show exactly what happened after the issue was raised on a public forum.
So anyone else been told that their webspace has been compromised?