How can you prove that this is more secure against state level actors than iOS which have billions (?) of users? In modern phones there are multiple levels of sandboxing already. If some state really wants to target you, I would say that this is more insecure solution.

The most common OS are very heavily tested because of the user amount. These "secure" operating systems have niche amount of users which further reduces the amount of testing. And this is the only helping factor you - it is more beneficial to target operating systems which have a larger adaption. You need to be on high priority that they start developing exploits only for you who is using some random OS.

> How can you prove that this is more secure against state level actors than iOS which have billions (?) of users?

By comparing the number of exploits? Qubes relies on Xen, which is used by very big targets, so should be under constant attacks. Qubes uses hardware (VT-d) virtualization, which AFAIK was last time broken by the Qubes founder in 2003: https://en.wikipedia.org/wiki/Blue_Pill_(software).

> By comparing the number of exploits? Qubes relies on Xen, which is used by very big targets, so should be under constant attacks

This is often giving quite misleading conclusions based on what I just said - iOS for example is much more popular and heavily tested - of course the amount of exploits is much larger, because it is also much more interesting target as many are using it.

How many people are using phones/laptops which are based on Xen? Xen is commonly used on server side - not by those guys who are holding the interesting stuff on their personal devices.

> Xen is commonly used on server side - not by those guys who are holding the interesting stuff on their personal devices.

AFAIK server side is often even more interesting for hackers as it's connected to big money.

I would argue that iOS is more dangerous because we can be fairly certain that it's not only vulnerable to exploits like Pegasus, but also phones home to FIVE EYES on a regular basis. Qubes is vulnerable to neither of these attacks, and it's architecture is explicitly designed to isolate all components of the system with hardened hypervisor technology used by the most high-security servers in the world. For the most part, you don't even have to trust the device you're running Qubes on; the isolation technology is that robust.

If you are super paranoid, ask your bank to disable all remote access to your account and go into the branch in person when you want to do something.

This might be too high level of paranoia for me (and I run Qubes as a daily driver).

What kinds of bank accounts are not subject to allowing outbound ACH transfers? It is my understanding that if you have a bank account (checking) or even brokerage accounts, they can be withdrawn with ACH.