I've seen several people mention over the last couple of weeks that a person could have their login information stolen from them if they moved from a clearnet site to a hidden service, even if they are using legitimate, non-phished links. Does anyone care to give a brief description of how this happens?
If this is in fact true, what is the safest way to obtain market links and protect yourself from attacks over these toxic exit nodes?
BLESS UP
malicious tor exit nodes. someone runs a tor exit node that does everything normal, except that it replaces market links and bitcoin addresses with scams. can only happen on clearweb and non-https tho (except self-signed https)
use pgp and keep a password database. check the urls often. do not get the link to the market every time, you will be lost at some point.
additionally, ALWAYS use 2FA pgp authentication.