From:
https://blockonomi.com/ring-signatures/
"The non-signers of the ring signature are past transaction outputs that are arbitrarily picked from the blockchain and act as decoys in the transaction"

Looks like there has been a lot of work on range proofs and other techniques to improve privacy. Thanks monero.moon and nioc. My brain is full.