this post was submitted on 28 Jun 2026
362 points (100.0% liked)
Not The Onion
21948 readers
609 users here now
Welcome
We're not The Onion! Not affiliated with them in any way! Not operated by them in any way! All the news here is real!
The Rules
Posts must be:
- Links to news stories from...
- ...credible sources, with...
- ...their original headlines, that...
- ...would make people who see the headline think, “That has got to be a story from The Onion, America’s Finest News Source.”
Please also avoid duplicates.
Comments and post content must abide by the server rules for Lemmy.world and generally abstain from trollish, bigoted, ableist, or otherwise disruptive behavior that makes this community less fun for everyone.
And that’s basically it!
founded 3 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Recently was in a CTF where finding the stored screenshots from copilots recall was the path to the flag. A screenshot of a notepad doc that had credentials for the admin user of a compromisable service.
Doc wasn't saved. Copilot didn't care.
Yes, this means if you ever copy/paste a password in clear text temporarily on a machine with recall, and your user is compromised, that password could still possibly be found.
God forbid you have to edit a config file on ssh