# Mega

> Source: https://fuckyc.org/services/mega/
> Website: https://mega.io/
> Categories: Encrypted storage
> KYC: optional — Email at signup; large free tier. Identity is not verified.
> Status: active
> Jurisdiction: New Zealand (operator-disclosed)
> Fiat on-ramp: no
> Payment methods: card
> Founded: 2013
> Open source: no
> Custodial: yes
> Last verified: 2026-01-01

## Verdict

Mega is the easy-to-recommend "lots of free space, encrypted" product. The 2022 cryptography analysis is the dominant caveat; the issues were addressed by Mega in subsequent updates. Useful for low-stakes encrypted storage; not a substitute for Tresorit/Filen-style audited products in high-stakes uses.

## Strengths

- Large free tier (historically 20 GB).
- End-to-end encrypted at rest.

## Caveats

- Closed-source clients; encryption claims have been independently disputed in academic papers (UoLondon attack on Mega's key handling, 2022).
- New Zealand jurisdiction.
- Founder context (Kim Dotcom) is widely commented on; treat the operator history as relevant context.
- Facts need re-verification by operator (last seeded 2026-01).

---

## What Mega is

A large-free-tier end-to-end encrypted storage service.

## Threat-model fit

General-purpose encrypted storage; review the cryptography paper before betting on it for high-stakes data.

## Sources

- [Mega security](https://mega.io/security) — accessed 2026-01-01
- [Mega cryptography analysis (academic)](https://mega-awry.io/) — accessed 2026-01-01