diff --git a/README.md b/README.md
index 68ea472c287c6fc7f905d5940115930f50f55c79..57fd07b25ff800a76059d46c6fc05af1eb1054c1 100644
--- a/README.md
+++ b/README.md
@@ -39,3 +39,7 @@ RWM can:
 * ??? check completeness of the current state of the bucket
 
 * prune all non-recent object versions to reclaim storage space
+
+
+TBD:
+* unlike in other backup solutions, attacker with credentials can restore any old data from the repository/bucket