In CWP we have a few levels of security, here are most important which can be additionally configured:

1. Automated Backups
2. Mod Security with OWASP rules
3. CSF Firewall
4. File System Lock
5. Mod Spamhaus

1. Automated Backups
In case of website hack you can always restore your website to a previous backup restore point and it will look like nothing happend.

2. Mod Security and OWASP rules
This will drastically improve the overall protection of your website and block all most common attacks like XSS, SQL injection and others.
In some cases you will need to disable a few rules blocking your website functionality.

3. CSF Firewall
Firewall will block all intrusions and it has a login failure daemon which will block unwanted access.

4. File System Lock
This is unique CWP feature providing the full protection on the files system of the users public_html folder.
It will deny any kind of change on the files system and also disable any file uploads, and that means no more malware infections and website hacks.

5. Mod Spamhaus
Mod Spamhaus will block all POST, PUT & CONNECT apache request from IP's blacklisted on the spamhaus RBL.
It should improve your server/site security from infected computers detected by spamhaus.

Mod Spamhaus is not recommended for use anymore since many ISP's are blacklisted today (because of dynamic IP's) and this could cause that some good clients can't access your site.

For help with configuration of the above security services you can contact the CWP support.

Secure you site and rest assured, no more spam and hacks.