An ex-boyfriend of one of the admins on my site hacked into her account and deleted one of our moderator's accounts. The account's posts have been restored and the damage was minimal, but he said that it was just a "warning" to that moderator (who was "annoying" him with e-mails) and has said previously that he would "destroy" our website.

My question is, what can I do to prevent him from hacking into the ACP or website again? I reported his IP address to his ISP, I had all the staff change their passwords, and I have banned his IP address from the forums and from my hosting account. But since he seems to have the knowledge, it doesn't seem like this might be enough. What other steps do you suggest I take to protect my website?

Check this thread...
http://www.vbulletin.com/forum/showthread.php?t=194701

An ex-boyfriend of one of the admins on my site hacked into her account and deleted one of our moderator's accounts. The account's posts have been restored and the damage was minimal, but he said that it was just a "warning" to that moderator (who was "annoying" him with e-mails) and has said previously that he would "destroy" our website.

My question is, what can I do to prevent him from hacking into the ACP or website again? I reported his IP address to his ISP, I had all the staff change their passwords, and I have banned his IP address from the forums and from my hosting account. But since he seems to have the knowledge, it doesn't seem like this might be enough. What other steps do you suggest I take to protect my website?

If he's on a cable connection, the IP ban will most likely help keep him away from your site. But remember though, he could always use a mates computer to get access to the site using his IP Address not banned. Just something to bare in mind.

CHANGE the directories of your admin & Mod CP via config, then rename them to match whats in the includes/config.php file.
This will add another layer of security. :)