Sarai Hannah Ajai Suspected Unauthorized Access to Apple Mac Mini M1, Possible Remote Screen Sharing, and Loss of Digital Project Records (ChatGPT Projects)
INCIDENT REPORT
Subject: Suspected Unauthorized Access to Apple Mac Mini M1, Possible Remote Screen Sharing, and Loss of Digital Project Records (ChatGPT Projects)
Date of Incident: November 29, 2025
Reporting Individual:
• Name: Sarai Hannah Ajai
• Email: ********************
• Device Affected: Apple Mac Mini M1, owned and used by reporting individual
1. Purpose of Report
This report documents a series of events occurring on November 29, 2025, involving:
1. An unexpected and unauthorized lockout from my Apple Mac Mini M1, with a lock-screen message indicating that my screen was being shared when I had not initiated any such sharing; and
2. The subsequent discovery that project-related digital records within my ChatGPT account—specifically, long-form project chats and content previously organized into multiple Projects folders—were missing or appeared empty.
This report is intended to:
• Create a contemporaneous record of the facts as I observed them.
• Preserve details for potential law enforcement, civil litigation, or regulatory complaints.
• Flag potential relevance to U.S. federal computer crime and privacy statutes, including but not limited to the Computer Fraud and Abuse Act (CFAA, 18 U.S.C. § 1030) and related laws.
No conclusions are drawn here as to who is responsible; this report describes the incident, impact, and applicable legal framework for further investigation by qualified authorities.
2. Background
I, Sarai Hannah Ajai, am the owner and primary user of an Apple Mac Mini M1 workstation. On the date of the incident, I was actively working on multiple professional and creative projects, including but not limited to:
• AccouNetrics (software/fintech project)
• VaultInbox / Lockbox Protocol (secure messaging and authentication systems)
• Quantaudio Studio (music and media brand)
• Higher Inspirations (faith-based content and Bible-study related media)
I rely heavily on ChatGPT Projects to organize long, technical, and creative threads related to these initiatives. Prior to the incident, I had intentionally moved numerous long-form conversations and project specifications into specific Projects folders within my ChatGPT account (e.g., “Quantaudio Studio”, “VaultInBox”, “Higher Inspiration”, and others), and these folders previously contained extensive chat history and content.
I have ongoing concerns and prior history of digital interference and harassment linked to my housing environment and neighboring tenants, which are documented separately in other complaints and filings. While I cannot personally prove the technical mechanism of any intrusion, the context is relevant to my suspicion that this incident may reflect targeted interference rather than an isolated technical glitch.
3. Chronology of Events (Central Time – CT)
3.1. Prior to 9:44 PM, November 29, 2025
• I was actively using my Apple Mac Mini M1 at my residence.
• I was logged into multiple online services in my browser, including:
o ChatGPT (OpenAI) under my verified email address *****************
o Sora
o Canva
• Within ChatGPT, I had several Projects visible in the left sidebar, including:
o Quantaudio Studio
o VaultInBox
o Higher Inspiration
o Health Report
o Dan Martell
o Others, visible under the Projects section.
• My long-form work sessions, technical designs, content plans, and other materials had previously been moved by me into the appropriate Projects folders. At that time, these Projects were populated with multiple chats each.
3.2. ~9:44 PM CT – Unexpected Lockout and “Screen Being Shared” Message
• At approximately 9:44 PM CT on November 29, 2025, my Mac Mini M1 suddenly locked, interrupting my work session.
• The lock screen displayed a message stating:
“Unlocking with Apple Watch is not available while your screen is being shared.”
• I did not knowingly initiate any screen sharing, screen recording, or remote access session at that time.
• I was not on a live Zoom/Teams/Google Meet session, nor had I intentionally authorized any third party to view or control my screen.
• This message suggested that the operating system believed some process or application was sharing or capturing my screen without my explicit consent.
I have taken photographs of the lock screen and error message as evidence, documenting the exact wording and the approximate time of the event.
3.3. Post-Lockout Observations
After regaining access to my Mac Mini M1:
1. I confirmed that my ChatGPT account was still open and logged in as ajai.sarai.h@gmail.com.
2. I could still see the Projects list in the Chrome browser’s ChatGPT sidebar, including:
o Quantaudio Studio
o VaultInBox
o Higher Inspiration
o and other Project titles.
This indicates that the Project “containers” still existed.
3. However, when I clicked into each Project:
o The Chats section was empty or missing the long-running conversations that I had previously moved into those Projects.
o Chat threads that had contained extensive technical design, business logic, and content plans no longer appeared inside the corresponding Projects.
4. When I searched my general ChatGPT chat history (outside Projects) for distinctive phrases and topic names associated with those prior work sessions, many of those long-form chats were not found.
5. In contrast, in the Atlas browser, I did not see the same Projects content rendered at all under the Projects category, reinforcing my perception that certain data associated with those Projects may have been deleted or become inaccessible.
3.4. Subsequent Account and Device Checks
• I verified that I was logged in under the correct email account in both Chrome and Atlas (ajai.sarai.h@gmail.com).
• I confirmed that the Project titles remained visible in the ChatGPT web interface in Chrome, but that the contents (chats) for each Project appeared to be empty.
• I did not intentionally delete these Projects or the chats within them.
• I did not knowingly use any “clear all chats” or global deletion function within ChatGPT.
• I have begun reviewing system settings and will be preserving logs and other evidence where possible (e.g., macOS Console logs around 9:40–9:50 PM CT on November 29, 2025).
4. Impact
The incident has had the following immediate and potential impacts:
1. Loss of Work Product and Intellectual Property
o Extensive project-specific records, including technical specifications, system architectures, database schema plans, pricing logic, and content planning documents for AccouNetrics, VaultInbox, Quantaudio Studio, and Higher Inspirations, appear to have been erased or rendered inaccessible within ChatGPT Projects.
o These records are proprietary and represent substantial time, effort, and intellectual labor.
2. Interference with Ongoing Business and Creative Activities
o My ability to continue work on software development, branding, and content creation projects has been materially disrupted.
o Reconstructing these materials will require significant time and may delay project timelines and potential revenue.
3. Increased Concern About Unauthorized Digital Access
o The combination of:
An unexpected system lock,
A system message claiming that my screen was being shared without my knowledge, and
The subsequent disappearance or emptying of project chat content
reasonably raises concerns about unauthorized remote access, potential tampering with my digital work, and possible interference by unknown third parties.
4. Potential Compromise of Confidential and Sensitive Information
o Some of the affected project content relates to proprietary systems (e.g., Lockbox Protocol, secure messaging concepts, and financial/accounting tools).
o If any third party gained access to these materials, there may be implications for trade secret protection, privacy, and future legal claims.
5. Evidence Preserved
As of the date of this report, I have preserved or intend to preserve the following:
1. Photographs
o Photographs of the Mac Mini M1 lock screen showing the message:
“Unlocking with Apple Watch is not available while your screen is being shared.”
o Screenshots of my ChatGPT account showing:
Correct login with my email address.
The Projects list (e.g., Quantaudio Studio, VaultInBox, Higher Inspiration).
The apparent absence of chats/content inside those Projects.
2. System Information
o Details of the Mac Mini M1 hardware and macOS version.
o A snapshot of Sharing, Screen Recording, Remote Access, and Login Items settings to document whether any remote or screen-sharing services were enabled.
3. Account-level Evidence
o ChatGPT account login email and any available security logs (if provided by the platform).
o Records of communications with OpenAI Support or other service providers regarding this incident.
4. Logs (To Be Collected)
o macOS Console logs and system logs around 9:40–9:50 PM CT on November 29, 2025, if possible.
o Any related error reports or security notifications from Apple, Google, OpenAI, or other platforms.
6. Federal Legal Context (Potentially Relevant Statutes)
The following federal statutes may be relevant to the type of conduct suspected in this incident, depending on what further technical investigation reveals. This list is not legal advice and does not conclude that any specific law has been violated; it is a framework for law enforcement or legal counsel to consider:
1. Computer Fraud and Abuse Act (CFAA) – 18 U.S.C. § 1030
o Prohibits unauthorized access to protected computers, and obtaining information, causing damage, or causing loss by such access.
o A “protected computer” includes any computer used in or affecting interstate or foreign commerce or communication, which generally includes personal computers connected to the internet.
o If a third party intentionally accessed my Mac Mini M1 or my online accounts without authorization or in excess of authorization, and such access caused damage or loss (including loss of data, disruption of service, or costs to restore systems), such conduct could potentially fall within the CFAA.
2. Stored Communications Act (SCA) – 18 U.S.C. §§ 2701–2712
o Addresses unauthorized access to communications in electronic storage by service providers.
o If any third party intentionally accessed my stored communications or data in cloud services (e.g., ChatGPT, email, other platforms) without authorization, the SCA could be implicated.
o This would be particularly relevant if logs show external access to my cloud-based accounts or servers where my project content was stored.
3. Federal Wiretap Act (Title III of the Omnibus Crime Control and Safe Streets Act) – 18 U.S.C. §§ 2510–2523
o Prohibits the intentional interception, use, or disclosure of wire, oral, or electronic communications without consent.
o If investigative findings show that any third party was capturing my live communications—such as keystrokes, message content, or screen data—in real time without authorization, the Wiretap Act may be implicated.
4. Identity Theft and Related Fraud Statutes
o 18 U.S.C. § 1028 (Fraud and related activity in connection with identification documents, authentication features, and information).
o 18 U.S.C. § 1028A (Aggravated identity theft).
o If any person used my personally identifying information (including login credentials, multi-factor authentication, or account identifiers) to gain unauthorized access to my devices or online accounts, these provisions may be relevant.
5. Conspiracy and Aiding-and-Abetting Provisions
o 18 U.S.C. § 371 (Conspiracy to commit offense or to defraud the United States).
o 18 U.S.C. § 2 (Aiding and abetting).
o If multiple individuals coordinated or assisted in unauthorized access, interference, or destruction of my digital work, these provisions may apply in addition to underlying substantive offenses.
An attorney or law enforcement investigator reviewing this incident may identify additional federal or state statutes that are applicable based on more detailed forensic evidence and context.
7. Requested Actions / Next Steps
I respectfully request that any reviewing authority, legal counsel, or investigative agency:
1. Investigate Potential Unauthorized Access
o Review logs and system settings for evidence of remote screen sharing, remote desktop connections, or other unauthorized access to my Mac Mini M1.
o Determine whether any third party established a remote connection or intercepted my screen or keystrokes around 9:44 PM CT on November 29, 2025.
2. Investigate Cloud Account Access
o Examine account-level logs for my ChatGPT account and other cloud services to identify:
Unusual login locations or devices.
Deletion or modification events affecting Projects and chats.
o Determine whether any unauthorized party accessed or altered my online project records.
3. Preserve and Retrieve Data Where Possible
o Request preservation of relevant data and logs from service providers (e.g., OpenAI, Apple, internet service provider) within applicable legal frameworks.
o Where feasible, attempt to restore deleted or hidden project content, especially from my ChatGPT Projects.
4. Advise on Further Legal Remedies
o Provide guidance on whether the facts support civil or criminal actions under the statutes referenced above or any relevant state laws (computer crime, harassment, stalking, housing-related retaliation, etc.).
o Assist in coordinating any further documentation or testimony needed from me.
8. Certification
I, Sarai Hannah Ajai, certify that the information contained in this incident report is true and accurate to the best of my knowledge and belief as of the date signed. I understand that any further technical, legal, or investigative findings may supplement or refine this report.
Comments
Post a Comment