Continuing the discussion from "They managed to hack the AppVM Whonix-gw-15 on one of my secure Qubes install":
Ask the original poster if they’d like to file an official Project QubeBook report? There will have to be a place to officially file, although it also might want for some ground rules…
Things that help the community make sense of things. How much detail does the poster have? What specialty arrangements have they been playing around with on their system (is the system plain vanilla non-beta Qubes OS with no dual or multi-booting going on)? What is their best description of what they experienced that made them think (no judgement just gathering intel) that they had been hacked.
Lots of people may assume hack when it was merely something simpler or even merely transient (limited MITM like behavior, test traffic injections).
Please do not send anything to the official Qubes Security Team unless you can demonstrate an actual security vulnerability in Qubes OS. That email address is intended for responsible disclosure by security researchers and anyone else who finds a legitimate security vulnerability. It is not for anyone who suspects they’ve been hacked.