Thanks.... something that always bothered me about Filezilla was the "ReConnect" option.
You can start up any filezilla and click reconnect and without needing any login info at all you are connected to the FTP site. How insane is that? I see that this info is also stored in a config XML file... IN PLAIN TEXT!
It is insane of them to suggest that it is safe so long as your computer is safe. Perhaps they are unaware of the percentage of machines that are infected as of today. If they were they would never suggest such a thing.
While I am diligent about securing my box, my clients, who use FTP aren't as stringent.
They should be developing this for the lowest common denominator.
I am emailing most of my clients and asking them to stop using Filezilla until I can look into this more.