MFA and Password Manager Setup for Brisbane Individuals: Close the Door on Phishing Before It Opens

You get a text that looks like it is from Australia Post, or your bank, or the ATO. The link looks close enough to the real thing. You tap it on your phone while you are walking into a meeting, type your password, and a minute later you are not sure why nothing happened. Two days later your email gets a login alert from somewhere you have never been, and the password you used there is the same one you used for your super fund, your Myer account, and the email itself. MFA and Password Manager Setup from Cyber by Exegesis is the hands-on engagement designed to make that sequence impossible — before the text arrives.

The problem

Phishing and scams are the top reported scam category to ACCC Scamwatch, and the mechanics rarely change: a message imitates a brand you trust, you click, you type a password, the attacker tries that password everywhere else. The ACSC’s guidance for individuals and families is consistent and unglamorous — use a password manager so every account has a unique long password, and turn on multi-factor authentication on the accounts that matter most (email first, because email is the recovery channel for everything else).

The reason most Australians have not done this is not laziness. It is that the setup is fiddly. Choosing a password manager, importing browser-stored passwords, sorting out which MFA app to use, storing recovery codes somewhere you will not lose them, and walking through your bank, super, and work logins one at a time takes a focused afternoon. Most people never get that afternoon, and the gap stays open.

What MFA and Password Manager Setup does

Cyber by Exegesis runs a fixed-scope, hands-on engagement for one individual:

• A password manager set up on your phone and your main computer, with your existing browser-stored passwords imported and the weak or reused ones flagged.
• Multi-factor authentication enabled on your most important accounts — email first, then banking, super, the ATO, your primary shopping accounts, and your work logins where personal devices touch them.
• An authenticator app configured on your phone (not SMS, where the account supports a better option), with the trade-offs explained in plain English.
• Recovery code storage sorted — printed, sealed, and stored somewhere you can actually find them in two years’ time, plus a digital backup pattern that does not defeat the point.
• A 20-minute walkthrough of what current Australian phishing messages actually look like, drawing on ACCC Scamwatch’s published categories, so you can recognise the pattern rather than memorise every variant.

Cyber by Exegesis is the cyber consultancy line of Exegesis — the same company behind DRMO. This engagement is preventive and personal. We are sitting with you, on your devices, getting it done.

How it works

1. We confirm scope on a short call and send a short pre-engagement checklist (the accounts you want covered, the devices in scope, whether you already use a password manager).
2. We meet for a single working session — in person in Brisbane or over a screen-share — and install and configure the password manager together.
3. We walk through your priority accounts one at a time, turn on MFA, and store the recovery codes in the agreed place.
4. We run the 20-minute phishing-recognition walkthrough and answer the questions you actually have.
5. We leave you with a one-page written summary of what was changed, what is still on your list, and a 60-day check-in window if something breaks.

Why this matters in Brisbane

Brisbane has a high concentration of dual-income households with multiple super accounts, investment platforms, and work-from-home logins running on personal devices — exactly the surface phishing campaigns are tuned for. ACCC Scamwatch’s reporting consistently shows Queensland in the upper band for scam reports per capita, and the ACSC’s individuals and families guidance is explicit that unique passwords plus MFA on email and banking is the single highest-leverage thing a household can do. A Brisbane individual who closes both gaps in one afternoon stops being the easy target the attacker’s automation is looking for.

Sources

• ACCC Scamwatch (National Anti-Scam Centre): https://www.scamwatch.gov.au/
• ACSC guidance for individuals and families: https://www.cyber.gov.au/protect-yourself
• OAIC Notifiable Data Breaches scheme (relevant if an account compromise exposes your data held by an Australian organisation): https://www.oaic.gov.au/privacy/notifiable-data-breaches
• Cyber by Exegesis — MFA and Password Manager Setup (waitlist)

Join the waitlist

Join the waitlist — first access when Cyber by Exegesis opens MFA and Password Manager Setup for Brisbane individuals

We are sequencing engagements by location and by device mix (iOS-primary households first, then Android and mixed). Join the waitlist with your city and your main phone and computer — we will tell you when we are ready to take a brief.