Yesterday someone posted on two popular FB SEO groups a complete list of CloakHosting IPs. The list contains 937 IPs and looks legitimate. As reported by the publisher, the list of IPs was collected easily and without any attacks on their system.
It is a terrifying thought that CloakHosting has been vulnerable for so long and no one noticed. This is why companies need to have a secure disclosure policy and need to do third party audits (Easy Blog Networks is still the only one doing this).
I am therefore removing my (reserved) recommendation of CloakHosting.