This is a public-facing security notice for transparency, harm reduction, and verification.

Incident summary

On February 24, 2026, between approximately 4:49 PM and 4:51 PM, a Dropbox file titled “New Document.pdf” was uploaded, renamed, and distributed from an account bearing my name. I was offline during that timeframe and did not authorize, initiate, or approve this activity.

Preliminary review suggests this may have been distributed broadly—potentially to 100+ contacts. If you received something unexpected from “me” during that window: you’re not crazy, and you’re not alone. (And yes, I wish the internet came with a “UNSEND TO EVERYONE” button. It does not.)

Incident Reference
BG-SEC-2026-02-24-01 · File reference: “New Document.pdf”

Immediate action requested

Please do not open, download, forward, or further distribute the document or link.
If you already clicked it, do not enter credentials or provide any financial information. If you interacted with it in any way, please reply with what you observed (even if it seemed “normal”).

If you already opened it

  • Close the tab/window immediately.
  • If it asked you to log in, assume it was credential-harvesting and change your password (Dropbox/Google/etc.).
  • Enable 2-factor authentication if you don’t already have it on that account.
  • If you downloaded anything, quarantine it (don’t open), and run a malware scan.

What I’m doing on my end

I’m actively securing all related accounts, revoking shared links, reviewing authentication logs, and coordinating appropriate follow-up where necessary. This includes access reviews, session invalidation, and auditing connected devices/authorizations.

Official communications policy (effective immediately)

Going forward, I will conduct official correspondence exclusively through my owned domains. Please do not send sensitive information to any Gmail address associated with my name.

✅ Verify my official domains Verified-only

Effective immediately: official communications are only valid if the sender’s domain appears on my Network Index. If a message claims to be from me but the domain is not listed there, treat it as unverified.

baileygwyn.xyz/network-index
Open Network Index → Contact (Verified Email)

Tip: On mobile, press-and-hold the address above to copy.

Verified email: [email protected]

How to sanity-check “is this really Bailey?”

  • Check that the sender domain is listed on the Network Index.
  • Be suspicious of surprise attachments, urgent language, or “login to view” prompts.
  • If unsure, use a known-good contact route: [email protected].

Legal and administrative notice

This notice is provided for transparency and risk mitigation purposes only and does not constitute an admission of fault, liability, or wrongdoing. I reserve all rights with respect to any unauthorized access or misuse associated with this incident.

Bailey R Gwyn
Bailey R. Gwyn