Presumably a criminal now no longer can install a piece of malware that looks into the memory of your browser to steal credentials in the first place.
They will now have to use old fashioned social engineering to make you cough up that credential to steal.