Totally agree! thats why ETH2 needs to invest into an awareness campaign for validators running ETH2 nodes.
From talking to validators, the most vulnerable point seems to be nodes -> HSM connection, since many validators plan to run nodes on AWS, and HSMs in their datacenters, so if one compromises the node->HSM connection, one can do a double sign …