21 Sep Windows Silently Stores Sensitive Text in a Single File
Digital forensics expert Barnaby Skeggs recently revealed that sensitive information such as data from plaintext files on Windows 8.1 and 10 computers are gathered in a file named WaitList.dat.
The file is said to be activated when handwriting recognition is enabled in Windows. However, both handwritten text and typed text are copied into the file, which attackers can use to obtain passwords.
Skeggs said that the file can be found at C:\Users\%User%\AppData\Local\Microsoft\InputPersonalization\TextHarvester\WaitList.dat.
Source: Tom’s Hardware