My MEW got hacked and my tokens were stolen. I am very careful when putting my address on each bounty campaign and never sign up online which require any private key. I don't really know how I get phish or how hacker accessed my MEW. I learned my lesson and will never use private key again. Do you have any idea how I get phish? I got one in mind that a fake mew site does exist?
The difference is very difficult to notice the change in one letter and all of you are on a phishing site. And further the result is sad, your tokens disappear. My advice is, do not be greedy and buy yourself a hardware wallet, for example Trezor or Ledger.