I don't understand though, wouldn't the bad actor need your private keys or something to empty your wallet? Forgive the superficial understanding, I don't see how it's possible.
Yes, the theory is that they may have acquired them via browser cookies or something else in browser addons per Geri's post. It is unknown if Memo itself has a exploit.
