Thank you.
An issue has also cropped up today with memo keys stolen this way and being used to log into third-party sites with SteemConnect and steal money/assets held there. Not sure if there's anything you can do about that since there's not much to be done with a memo key but I wanted to make you aware of it in case you have a better idea than I do.
The solution could be changing main password. Once password is changed, all keys are also changed.
For the users, sure, but if all that's compromised is the memo key the bot can't do that.
Maybe even just sending a wallet message to users whose memo key is compromised would help.
Yes, that can be done. I am taking notes.
Finally something good involving the keys and funds of others! We need morre devs like you.