Rogue MEGA Chrome Extension Stole Passwords and Crypto Keys

A rogue version of file-hosting platform MEGA’s Chrome extension has triggered a major security alert from the company. The variant was able to steal user credentials for sites including Amazon, Live.com, Github.com and Google’s webstore, in addition to private keys to cryptocurrency wallets. MEGA is investigating how its Chrome webstore account was compromised.