Account Takeover Recovery for Adelaide Families: Get Mum’s Email Back After the Phishing Text

Your mum forwards you a text from “Australia Post” about a missed parcel. She tapped the link, entered her details, and now she cannot get into her email. By the evening she cannot get into Facebook either, and the bank has rung about a transfer she did not authorise. You are sitting at the kitchen table in Adelaide trying to work out which account to fix first, whether the kids’ shared iPad is also compromised, and how to stop this happening to her again next week. Account Takeover Recovery from Cyber by Exegesis is the engagement designed to get an Adelaide family back in control of their accounts — in the right order, without missing the downstream ones.

The problem

ACCC Scamwatch lists phishing as one of the most reported scam categories in Australia, and the National Anti-Scam Centre tracks SMS impersonation of Australia Post, myGov, banks, and toll operators as a constant pattern. Once a credential is captured, the attacker moves fast: password reset on the email, then password resets on everything that uses that email as recovery — social media, retail accounts with stored cards, MyGov, sometimes the bank.

For families, the damage compounds across generations. An older parent’s compromised email contains decades of receipts and identity documents. A teenager’s hijacked Instagram becomes a vector to scam their friends. A shared iPad with one Apple ID stores everyone’s photos, messages, and saved logins. The ACSC guidance for individuals and families is clear that recovery is not just “change the password” — it is a sequenced reset across the provider, the recovery channels, the connected accounts, and the devices that still hold session tokens.

What Account Takeover Recovery does

Cyber by Exegesis runs a fixed-scope recovery engagement built for Australian families:

• A triage call within one business day to map which accounts are confirmed compromised, which are suspected, and which sit downstream (recovery email, recovery phone, linked sign-ins).
• Coordinated recovery with the affected providers — Google, Microsoft, Apple, Meta, the big four banks, myGov, and major Australian retailers — using each provider’s actual recovery path, not generic advice.
• A device sweep across the family’s phones, tablets, and laptops to revoke active sessions, remove rogue mailbox-forwarding rules, and check for installed profiles or apps the attacker may have left behind.
• Reset of recovery email and recovery phone numbers, plus enrolment of an authenticator app or passkey on the accounts the family uses most.
• An ACCC Scamwatch report and, where personal information has been exposed, guidance on the OAIC Notifiable Data Breaches scheme implications if a third party (employer, school, club) was the source.
• A short written summary of what was reset, what remains, and three habits the family is going to keep — sized for a household, not an enterprise.

Cyber by Exegesis is the cyber consultancy line of Exegesis — the same company behind the DRMO live product. Our scope here is recovery and hardening. We are not your IT support and we are not law enforcement; we get the accounts back and lock the doors the attacker came through.

How it works

1. You contact us through the waitlist and we schedule a 30-minute triage call to list every account that might be affected — including the boring ones like loyalty programs and the streaming service the kids share.
2. We sequence the recovery in the only order that works: email first (because it controls every reset link), then financial, then social, then retail.
3. We sit on a screenshare with the family member who owns each account and walk through the provider’s recovery path together — you do the typing, we know which option to choose.
4. We sweep the family devices for active sessions, forwarding rules, and unfamiliar linked apps, and we turn on multi-factor authentication or passkeys where the provider supports them.
5. We send you a short written summary, lodge the Scamwatch report with you, and check in at 14 and 30 days to confirm nothing has come back.

Why this matters in Adelaide

Adelaide households skew older than the national average, and the ACCC’s Targeting Scams reporting consistently shows that South Australians over 55 are over-represented in reported losses to phishing and impersonation scams. Combine that with the multi-generational living patterns common in Adelaide’s suburbs — adult children helping parents, grandparents minding grandkids on shared devices — and a single compromised email account can cascade across three generations of a family before anyone notices. An Adelaide family that recovers properly the first time, with the recovery channels reset and MFA enrolled, is dramatically harder to hit a second time.

Sources

• ACCC Scamwatch (National Anti-Scam Centre): https://www.scamwatch.gov.au/
• ACSC guidance for individuals and families: https://www.cyber.gov.au/protect-yourself
• OAIC Notifiable Data Breaches scheme: https://www.oaic.gov.au/privacy/notifiable-data-breaches
• eSafety Commissioner (where a hijacked account has been used for bullying or image-based abuse): https://www.esafety.gov.au/
• Cyber by Exegesis — Account Takeover Recovery (waitlist)

Join the waitlist

Join the waitlist — first access when Cyber by Exegesis opens Account Takeover Recovery for Adelaide families

We are sequencing engagements by urgency and by provider mix (Google/Apple households first, Microsoft households second). Join the waitlist with a short note about which accounts you think are affected — we will tell you when we are ready to take the brief.