Firefox may soon ask for the Windows Password to interact with saved passwords
Mozilla plans to introduce a change to the password management system of the organization's Firefox web browser on Windows that improves the security of the data.
Firefox users may save logins using native password management capabilities. Passwords may also be imported from other web browsers installed on the device Firefox is installed or run on, or my syncing data between Firefox instances.
The Firefox password manager, recently relaunched as Firefox Lockwise, will prompt users for the Windows password of the signed-in user account before certain interactions with passwords, e.g. the showing of passwords, is permitted; this will only happen if the Firefox user has not set a master password in the web browser.
Current versions of Firefox may be protected with a master password. Once set, and setup is completely optional, the master password is required to interact with password storage. Starting in Firefox 76, Firefox will protect passwords for accounts without master password. Since the default is off, many Firefox users will benefit from this security precaution.
Google has been using a similar system in its Chrome web browser. Unlike Firefox, Chrome does not support the setting of a master password.
Firefox will show a password or Pin prompt on Windows devices once the change lands. Firefox 76, Nightly, also has it implemented and users who are adventurous may take it for a test drive. Actions such as the request to reveal a password, to copy it, or to edit a password will spawn the prompt.
Note that this happens each time a request is made currently; it is unclear if Mozilla plans to implement a system that would request the password only once per session or once every y minutes to avoid user annoyance. Firefox will request the master password only once during a session and that system might be preferable to users who interact with passwords regularly.
Now You: do you use the built-in password manager of your browser or an external application/extension? (via Techdows)