I find it pretty hard to believe that saving a sensitive information file in a hidden location was an accident. Programmers, led by a specification which was designed by their team (or managers) developed the application to save the file in this manner.