Family Digital Hygiene and Child Safety Review for Sydney Families: Close the Account Takeover Gaps Across Three Generations

Your mum calls on a Sunday afternoon to say her email “isn’t working” and she has been locked out of her bank app. Your teenager mentions, casually, that someone took over their Snapchat last week and started messaging their friends. Your own Netflix is signed in from a city you have never been to. Three separate account takeovers, three different generations, one household — and no single conversation that has ever pulled them together. The Family Digital Hygiene and Child Safety Review from Cyber by Exegesis is the engagement designed to do exactly that, in one sweep, for a Sydney household.

The problem

Account takeover is the connective tissue of modern household cyber risk. ACSC guidance for individuals and families is consistent that the same small set of controls — strong unique passphrases, multi-factor authentication, recovery information that is actually current — prevents the overwhelming majority of takeovers. ACCC Scamwatch reporting shows that phishing and remote-access scams, which feed directly into takeover, sit among the highest-volume scam categories reported by Australians every year. The eSafety Commissioner separately handles the downstream harm when a child’s account is hijacked and used for impersonation, bullying, or image-based abuse.

The problem in a family is that nobody owns the whole picture. A parent has set up two-factor on their own banking but not on the shared streaming account that reuses the same password. A teenager has a social account with no recovery email attached. An aging parent has clicked “remember this device” on a library computer they will never use again. The attacker only needs one of those gaps. Once they are in one account, the password-reset chain across the family’s email, retail, and social accounts often lets them walk further than anyone expects.

What the Family Digital Hygiene and Child Safety Review does

Cyber by Exegesis runs a fixed-scope household review covering every account-holder under one roof:

• A household account inventory across the adults, the children, and any aging parent in the family’s care — email, banking, social, retail, streaming, government services (myGov, Medicare).
• Multi-factor authentication setup or verification on the accounts that matter most, using authenticator apps rather than SMS where the platform supports it, in line with ACSC guidance.
• A passphrase reset on reused or weak credentials, and a password-manager walkthrough sized to the family’s actual tolerance (we do not force tooling that will not stick).
• Device-level child safety settings on iOS, Android, Windows, PlayStation, Xbox, and Nintendo Switch — screen time, content filtering, purchase controls, and the eSafety reporting routes written down somewhere a parent can find them at 9pm on a Tuesday.
• A scam-awareness conversation tailored for an aging parent in the household — what a remote-access scam sounds like on the phone, what myGov will and will not ever ask, and a written one-pager they can keep next to the landline.
• A short written report with what was changed, what remains, and a 90-day check-in.

Cyber by Exegesis is the cyber consultancy line of Exegesis — the same company behind the DRMO live product. The scope here is household hardening. We are not your IT support; we set the controls, teach the family how to use them, and step back.

How it works

1. We confirm scope on a 20-minute intake call — who lives in the household, which aging parent is in scope, ages of any children, and the platforms in active use.
2. We run a two-hour in-home or video session with the parents to build the account inventory and apply MFA and passphrase changes account by account.
3. We run a separate 30-minute session with each child, age-appropriate, covering the device-level settings on their own phone or console and the eSafety reporting routes.
4. We run a 45-minute session with the aging parent in scope, in person where possible, walking through scam-recognition and recovery contacts.
5. We leave the written report, the family one-pager, and the 90-day review window.

Why this matters in Sydney

Sydney households are densely multigenerational and densely connected — grandparents in Eastwood or Hurstville on a family group chat with grandchildren in Newtown or Manly, all sharing a Netflix login and a Woolworths Everyday Rewards account. That shared surface is exactly what account takeover exploits. A Sydney family that runs one structured review — MFA on the accounts that matter, child-safety settings configured properly, an aging parent who recognises the remote-access script before they hand over a code — closes the door on the most common takeover patterns the ACSC and ACCC track.

Sources

• ACSC guidance for individuals and families: https://www.cyber.gov.au/protect-yourself
• ACCC Scamwatch (National Anti-Scam Centre): https://www.scamwatch.gov.au/
• eSafety Commissioner (reporting routes for cyberbullying, image-based abuse, and harmful content): https://www.esafety.gov.au/
• OAIC Notifiable Data Breaches scheme (in the event an account takeover involves an eligible data breach at a service provider): https://www.oaic.gov.au/privacy/notifiable-data-breaches
• Cyber by Exegesis — Family Digital Hygiene and Child Safety Review (waitlist)

Join the waitlist

Join the waitlist — first access when Cyber by Exegesis opens the Family Digital Hygiene and Child Safety Review for Sydney households

We are sequencing engagements by household composition — families with children under 12, families with teenagers, and families with an aging parent in care. Join the waitlist with your household shape and we will tell you when we are ready to take a brief from your family.