Background: I use debian 11 as my default template and debian dvm template as the basis for my disposable sys-net and sys-firewall vms.
Assuming my debian disposable templated got compromised, then my sys-firewalland sys-net vms are compromised as well, as well as every disposable spawned from it.
Question 1: Assuming the above, what attacks can an adversary launch against my system? Given how I may have been compromised, the attack would probably not be targeted and the attacker just some hacker.
Question 2: How do I recover from this? Do I absolutely have to do a clean install ? If not, then what? I was thinking I could create a new appvm based on debian 11 template, check the property to allow it to be used as a disposable template, and then simply use this newly created disposable template as the basis for my sys-firewall and sys-net vms. Would this solve the problem? If so, is there anything special about the default debian 11 dvm that was automatically created on installation? Do I need to do anything else to make sure my sys-firewall and sys-net vms work properly and securely ?
I would really appreciate some help, I am a social worker and I rely on Qubes for important tasks but unfortunately I am not very tech savvy. Thanks in advance.