MFA and Password Manager Setup for Sydney Families: Close the Door Phishing Walks Through

Your mum forwards you a text from “Australia Post” about a missed parcel and asks if it’s real. Your teenager reuses the same password across Instagram, Discord, and the email account that resets everything else. You have meant to turn on two-factor authentication on your banking and super for about three years. Somewhere in this household sits the one weak credential that, on a bad Tuesday, lets a scammer reset an email account and cascade through everything else. MFA and Password Manager Setup from Cyber by Exegesis is the hands-on engagement that closes those doors for a whole Sydney family in one sitting.

The problem

ACCC Scamwatch reports phishing as the most-reported scam category in Australia year after year. The mechanics are simple: a text, email, or DM tricks someone in your household into typing a password into a fake login page, or into approving a prompt they did not initiate. Once the attacker has one credential, they pivot — into the email account that receives password-reset links, then into banking, super, MyGov, and shopping accounts. The ACSC’s guidance for individuals and families is consistent on this: multi-factor authentication and unique, strong passwords on important accounts are the two controls that stop the cascade.

The friction is real. Most families have somewhere between 40 and 200 online accounts spread across three generations. Nobody has the patience to turn on MFA on each one, store recovery codes properly, and migrate everyone off sticky-note passwords. So it doesn’t happen — until after the scam.

What MFA and Password Manager Setup does

Cyber by Exegesis runs a fixed-scope, hands-on engagement for a single Sydney household:

• A short triage call to identify the accounts that matter most — email, banking, super, MyGov, work logins, and any account a child or older relative depends on.
• In-home (or remote, your choice) setup of a password manager for every adult in the household, with a separate vault per person and a documented sharing arrangement for joint accounts.
• MFA enabled on the priority accounts, using authenticator apps or hardware keys rather than SMS where the account supports it — following ACSC guidance for individuals and families.
• Recovery code generation and storage guidance, so a lost phone is an inconvenience rather than a lockout.
• A 30-minute walk-through with the household on recognising phishing messages — the Australia Post text, the “your account has been suspended” email, the fake MyGov login — with reference to ACCC Scamwatch examples.
• A one-page written summary of what was set up, what the recovery process is, and what to do if a scam message slips through.

Cyber by Exegesis is the cyber consultancy line of Exegesis — the same group behind the DRMO live product. The scope here is preventive setup. We are not your ongoing IT support; we get the controls in place and leave you a clear handover.

How it works

1. We confirm scope on a short call — who is in the household, which accounts matter, whether older relatives or children need to be included.
2. We book a two-hour session (in-home in Sydney, or remote) and ask you to gather the devices and the list of important accounts in advance.
3. We install and configure the password manager on each person’s devices, import existing passwords where safe, and replace reused passwords with unique generated ones for the priority accounts.
4. We turn on MFA on each priority account, store recovery codes in the password manager and a printed backup, and test a recovery flow on at least one account.
5. We run the 30-minute phishing walk-through with whoever in the household wants to be there, and leave the written summary.

Why this matters in Sydney

Sydney households sit at the intersection of high-value targets — concentrated professional incomes, strong superannuation balances, expensive real estate transactions that attract conveyancing scams, and large multi-generational family networks where one compromised account can be used to socially engineer the next. ACCC Scamwatch data consistently shows New South Wales reporting among the highest scam volumes in the country. A Sydney family that turns on MFA on the accounts that matter and gets every adult onto a password manager closes the most common phishing pathway before it opens — and gives older relatives and teenagers a clear, calm process for the next suspicious message.

Sources

• ACCC Scamwatch (National Anti-Scam Centre): https://www.scamwatch.gov.au/
• ACSC guidance for individuals and families: https://www.cyber.gov.au/protect-yourself
• eSafety Commissioner (for cyberbullying, image-based abuse, and harmful content reports affecting household members): https://www.esafety.gov.au/
• OAIC Notifiable Data Breaches scheme (relevant if a service your household uses is breached): https://www.oaic.gov.au/privacy/notifiable-data-breaches
• Cyber by Exegesis — MFA and Password Manager Setup (waitlist)

Join the waitlist

Join the waitlist — first access when Cyber by Exegesis opens MFA and Password Manager Setup for Sydney families

We are sequencing household engagements by suburb and by household size. Join the waitlist with your suburb, the number of adults in the household, and whether older relatives or children need to be included — we will be in touch when we are ready to take a brief from your family.