Most of these questions have already been answered on this forum. Try to search for more, but this is what I found:
See here: What's the best way to check if qubes is hacked?I
Probably related: Is sys-net the weak link in our systems' security?
This does not seem plausible. For that the attacker must have an escape exploit of Xen, which is extremely rare. Last time it happened with the Qubes hardware virtualization was in 2006, by the Qubes founder: Blue Pill (software) - Wikipedia .
I don’t see a dedicated section yet on the forum to report, which hardware devices work well with qubes. So I’m posting this in the hardware support section. Some time ago I was searching for an option, to add an adapter for connecting my usb mouse and favourite, usb, mechanical keyboard into the PS/2 jacks on the back of my desktop mobo. Then in a usb-related post one of the members suggested, that an active adapter might work, thus removing the mouse and keyboard from the sys-usb VM. After…