We found a sensitive form field that had not disabled autocomplete as part of our ongoing Nmap vulnerability scans, and added the following attribute to the form or input element: autocomplete="off" This attribute now prevents the browser from prompting anyone to save the populated form values for later reuse. Most browsers no longer honor autocomplete="off" for password input fields, however, there is still an ability to turn off autocomplete through the browser and that is recommended for a shared computing environment.
Keeping you up-to-date on any remediation that could have impacted customers, but this one was pretty minor.