Vendor sends me PGP encrypted messages w/ no key?

Should I be concerned if a vendor tries to send me a PGP encrypted message that I do not have a key for? Vendor has a public key on the profile that I used to send him information, he responded with another PGP encrypted message. I don't have any key posted anywhere so I don't know what he would encrypt it with? His own key? But then I'd need HIS private key to see the message he's trying to send me lol. I think they don't understand how PGP works fully (or maybe I don't, please fill me in if that's the case)


Comments


[2 Points] Lysergic777:

You should have your own pgp public on your profile. He probably used someone else’s by mistake. If you don’t have your own up there you’re throwing secure communication out the window


[1 Points] DNrick_sanchez:

/r/DarkNetMarketsNoobs


[1 Points] AMGBenzo1:

I just want to emphasize what’s already been said. DO NOT LET THE MARKET ENCRYPT YOUR MESSAGE. All vendors should have their pgp visible somewhere in their profile which you can use to make an encrypted message and then send it with the “encrypt message” checkbox unticked.

Also, I used to think I had to send my public key every time I sent my encrypted address but I’ve found out that isn’t necessary. If your message implies you want a reply, you can make their life easier by making your key easy to find.