Okay so i was registered on HANSA long before they reopened registrations on HANSA after the AB takedown. I never once on any market used "auto-encryptrption". Every time i setn a message or shipping information i used my own PGP software client on my computer (GPG) in order to encrypt messages inclinding my address to the vendors key. I buying crazy amounts nothing near kilos, pounds, or even quarter pounds. I recently received my last order from quit ea reputable and obvious honest vendor who is who id rather not identify. I supposedly have his e-mail through his PGP key. My question is twofold: 1) How safe am i really at this point? and 2) Should i be contacting this vendor over his e-mail in order to get him his money which is sitting in the HANSA e-scrow system which supposedly can be retrieved by him should i supplying my own private key?
Pgp is incredibly difficult to compromise. They would need to vendor's private keys. No reputable vendor would ever give these out. You are more than likely fine.
Unless you used the same username and psssword for other sites, you should consider that name and password dead. Forever.
Never ever give out private keys.
If you wish to contact a vendor, VERIFY their public keys.