Follow
I guess the technical challenge for the attacker here would be to recreate the social graph on Keybase. Everyone follows everyone there, so effectively you have a centralized web-of-trust. Not sure how this differs in the user interface though, so whether a message signed by the real thefizzstone (many followers) would be marked differently from message signed by theflzzstone :)