A Firefox Trojan has been found to force the Internet browser to save user passwords and then use those passwords to create a new user account on the infected computer.
Most security researchers recommend that users tell Firefox not to remember their passwords, since saved ones are so easily extracted by malware.
The Trojan-PWS-Nslog malware discovered by security company Webroot, however, gets around user preferences altogether by actually deactivating the Firefox code that asks if it should save those passwords when the user logs into a secure site.
More: http://www.pcworld.com/businesscenter/blogs/bizfeed/207350/
............................................................................................
Most security researchers recommend that users tell Firefox not to remember their passwords, since saved ones are so easily extracted by malware.
The Trojan-PWS-Nslog malware discovered by security company Webroot, however, gets around user preferences altogether by actually deactivating the Firefox code that asks if it should save those passwords when the user logs into a secure site.
More: http://www.pcworld.com/businesscenter/blogs/bizfeed/207350/