Lost or Stolen Device Response for Perth Families: What to Do in the First 24 Hours After a Phone, Laptop or Tablet Goes Missing

Your teenager left their phone on the train to Fremantle. Your dad’s laptop was taken from the car in a Joondalup carpark. The family iPad has not been seen since the weekend at the beach and nobody is sure whether it was lost or lifted. Whatever happened, the device is gone — and it is signed in to email, banking, MyGov, school portals, photo libraries, password managers, and a dozen apps nobody can remember setting up. Lost or Stolen Device Response from Cyber by Exegesis is the engagement that walks a Perth family through the first 24 hours methodically, so a missing device does not become a data breach that follows the family for years.

The problem

A lost or stolen device is not just a hardware loss. It is a live, signed-in entry point to every account that device touched. The ACSC guidance for individuals and families is clear that account security depends on layered controls — strong authentication, recovery options, and the ability to revoke access quickly — and most families have never tested how fast they can actually wipe a device or rotate the credentials it knows.

The danger window is the gap between “the device went missing” and “every account it was signed into has been rotated and every active session revoked”. In that window, anyone with the device can attempt password resets, read SMS verification codes, scrape photo libraries, and impersonate a family member to other contacts. If the family member is in an in-scope organisation, or if the device holds records belonging to one, the incident can also trigger OAIC Notifiable Data Breaches scheme obligations — a complication most families do not think about until they are already inside it.

What Lost or Stolen Device Response does

Cyber by Exegesis runs a fixed-scope triage engagement focused on the first 24 to 72 hours after a device goes missing:

• A guided remote wipe across Apple, Google, and Microsoft ecosystems — finding the right “Find My” or device-management console for the actual device, not the one the family thinks they have.
• An account-recovery sequence in the correct order — email first (because it controls password resets for everything else), then banking, then MyGov and identity accounts, then social and photo accounts.
• Password rotation across the accounts the device was signed into, plus enabling or re-enabling multi-factor authentication where it was missing or tied to the lost SIM.
• Support for the police report (WAPOL) and the insurance claim, including the IMEI/serial details and the timeline of actions taken — insurers and police both ask for these and families rarely have them ready.
• A short written record of what was wiped, what was rotated, what remains to monitor, and whether any OAIC NDB-relevant data was on the device.

Cyber by Exegesis is the cyber consultancy line of Exegesis — the same company behind the DRMO live product. This engagement is triage, not ongoing managed security. We get the family through the incident and hand back a tidy record.

How it works

1. You contact us through the waitlist channel when (or before) an incident happens. We confirm the device, the ecosystem (Apple ID, Google account, Microsoft account), and which family member it belongs to.
2. On a screen-share call, we walk the account holder through the remote wipe and session-revocation steps directly — we do not ask for passwords.
3. We sequence the account recovery and password rotation in priority order, pausing to enable MFA on each account before moving on.
4. We help draft the police report details and the insurance claim summary, including the timeline of mitigation actions.
5. We leave the family with a written record of what was done, what to watch for over the next 30 days (Scamwatch-style follow-on scams that target recent victims), and an OAIC NDB note if any work or volunteer data was involved.

Why this matters in Perth

Perth families are spread across a wide metro footprint — Joondalup to Mandurah, Fremantle to the Hills — and the device that goes missing is rarely close to the person best placed to wipe it. Cross-generational households are common: a Perth family is often managing accounts for kids on school-issued devices and for older parents whose recovery email has not been checked in a decade. ACCC Scamwatch data shows that scam follow-on activity against people who have just lost a device is a known pattern, and the eSafety Commissioner provides recourse where personal images from a stolen device are later misused. A Perth family that moves quickly and methodically in the first 24 hours closes most of the exposure before it compounds.

Sources

• ACSC guidance for individuals and families: https://www.cyber.gov.au/protect-yourself
• OAIC Notifiable Data Breaches scheme: https://www.oaic.gov.au/privacy/notifiable-data-breaches
• ACCC Scamwatch (National Anti-Scam Centre): https://www.scamwatch.gov.au/
• eSafety Commissioner: https://www.esafety.gov.au/
• Cyber by Exegesis — Lost or Stolen Device Response (waitlist)

Join the waitlist

Join the waitlist — first access when Cyber by Exegesis opens Lost or Stolen Device Response for Perth families

We are sequencing engagements by ecosystem (Apple-first households, then Google, then mixed). Join the waitlist with your family’s primary ecosystem and the rough device mix — we will tell you when we are ready to take a brief, and we will hold a triage slot.