26 May 13 3:41 am
Sorry to hear that you sites were hacked, I'm still learning about website security myself but from what I do know a site is never fully secure there's always risk but you can lessen the risk by keeping everything up to date and adding a layer of security via your hosting or some other manual way.
WP has many 'moving parts' that could fall victim to exploits, it's up to the plugin and theme creators to issue updates but you still got to update them yourself.
XSitePro is pretty much almost all HTML so not as much going on there unlike WP, but at the same time you can't do as much of the fancy stuff WP can. I would say stick with WP and learn how to beef up security and also learn to keep multiple backups
Not sure what this stupid hacker is doing with your sites but it looks like this was more of an ego booster for him, putting his sig all over the place, if this was someone looking to use the sites to their advantage they would want to keep the security breaches secret.
Hope you get back going soon, hang in there don't let them stop you from doing what you want to do!