I've heard of hackers stealing accounts (mainly Blockchain.info wallet credentials before they had a .onion) and was wondering if that concern could be applied to to other clearnet sites like Reddit?
If someone could explain why fake SSL certificates / other techniques hackers use to steal login info over TOR isn't something we need to worry i would be very grateful because i'm very nervous about signing into clearnet over TOR.
It is absolutely unsafe to log into any HTTP site through TOR. The exit node can view all of your traffic in plaintext and can capture or modify it. Many exit nodes have been found to be malicious.
I am not sure about the viability of using a fake SSL certificate in a MITM attack on an HTTPS page. It is certainly within the grasp of nation state adversaries but not your average hacker.