Malicious Firefox addon forces infected browsers to scan websites for vulnerabilities