Frauds & Scams

New Online Security

August 3, 2016 • By

Reading Time: 2 Minutes

Last Updated: November 3, 2023

MFAWe’ve added an extra layer of security for our customers when they interact with us online. Now, my Social Security account holders are required to use their cell phone — in addition to their username and password — as another authentication factor during online registration and every sign in. An authentication factor is information used to determine if someone is who they claim to be.

This extra layer of security is called “multifactor authentication” and complies with an executive order requiring federal agencies to provide more secure authentication for their online services. Any agency that provides online access to a customer’s personal information must now use multifactor authentication.

Since my Social Security became available in May 2012, almost 26 million people have created an account. We have always offered multifactor authentication, but only for customers who opted for extra security. For your protection, we now require multifactor authentication for all my Social Security users. To register and sign in, you must now enter a security code that we will send to your cell phone. Your cell phone provider’s text message and data rates may apply.

Our research shows that an overwhelming majority of American adults have cell phones and use them for texting. Because of technical and resource constraints, we are not currently able to offer alternative methods of satisfying this security requirement. However, we may consider adding more options in the future. We appreciate your patience as we work continuously to secure your online information.

We’re committed to using the best technologies and standards available to protect our customers’ data. Multifactor authentication is just one of the ways we’re ensuring the safety and security of the resources entrusted to us. Visit my Social Security to learn more about this helpful suite of online services, including additional details about our latest security measures.

Did you find this Information helpful?

Yes
No
Thanks for your feedback!

Tags: ,

See Comments

About the Author

Jim Borland, Assistant Deputy Commissioner, Communications

Jim Borland, Assistant Deputy Commissioner, Communications

Comments

  1. ima c.

    Maybe some of the money we gave to
    iran should have been used to buy those if us thst don’t have one,a cell phone.

    Just another case of doing what they want. The heck with us…

    Have fun trying to connect with an agent!

    • Dee

      DITTO! a mere $400 MILLION $$$, piled onto wood pallets & shipped on unmarked planes TO IRAN!!!
      . .. . .should be enough to pay the monthly costs of cell phone service for all seniors, et al. on Soc.Sec. – – for maybe a few months – -depending on how much more the FCC & FTC continue to allow the monopolistic phone co’s to gouge us . . . . .

      – – but I bet we could do better with a portion of the $$$ BILLIONS $$$ that we fork out EVERY year to foreign countries –the very tax $$$ that WE PAID FOR!!

  2. JOC

    THIS IS RIDICULOUS! MANY OF US HAVE NO NEED FOR A CELL PHONE AND DO NOT TEXT.

  3. Frank

    Cell phone technology and Texting is beyond my capability. This so-called security improvement will make it impossible for me to address any problem. I urge you to reconsider your clients who are unable to function in this day and age. Accessing via computer is currently difficult enough.
    Further I thoroughly resent having to supply my e-mail address to still another site and thus be subject to further spam.

  4. Paul R.

    This new level of security — sending a code in a text message to a cell phone — will make it impossible for my wife and me to access the my Social Security site. It is not a good idea and you need to find other options to offer to make the site more secure. Some companies send an oral code to the home telephone immediately after the customer requests the code while she begins logging in. The cell phone can be hacked as easily as a computer, so why not give the option of sending the code by email. More older adults have email accounts than they have cell phones. Such options should have been put in place before you rolled out the new security feature.

    • R.F.

      Thank you for your comment Paul. We are limited to text messages for the initial MFA implementation due to technical and resource constraints. We may consider adding additional options in the future. For more information about our MFA process, check out https://www.ssa.gov/myaccount/MoreInformationAboutMFA.html. Thanks!

      • Patrick E.

        I’m in information systems, SS already has a fully developed email system. This initiative had to be developed in addition to the email capability. You may be able to BS some of us, but not all of us. This policy was installed without consideration of the people you serve.

  5. vee

    Maybe we will get a good raise then we can afford one? 🙁

    • Dee

      Ditto!

      • ima c.

        Not with this economy
        .

  6. S. H.

    This is not a good idea. My cellphone is for emergency use only. I pay by the minute. I don’t want to be charged every time I need to access MY account online. Who thought this was a good idea?

  7. brian w.

    typical stupid american nonesense , why am I not surprised?
    Plenty dont have or cant afford cell phones yet have paid into social security etc for decades and are barred

    God! You people sicken me.If my son and daughter werent here Id be out of this backward country tomorrow free medical free drugs free public transport all higher quality too

  8. Sue

    I just sent an email to the social security office regarding the same issue that each one of you have addressed. This is ridiculous. I have to agree with all of the above remarks. Social Security has locked many senior citizens out of their website so that we can not get our own information. This must have been recommended by young leadership at the social security office.

    Please talk to your senior citizens. Why doesn’t the social security website have all the bells and whistles to prevent hackers from obtaining information?

    • CB

      Why isn’t AARP fighting this. I feel betrayed by them as well.
      Screw the Executive Odor (spelled correctly).

  9. Meherwan

    Carrying out financial transactions using online bank and brokerage accounts do not mandatorily require the use of this “multilevel authentication” then why does SSA choose not to keep it optional or at the least offer alternatives such as telephone or email notification of the security code? This is an absurd and self-defeating requirement that puts an added burden and cost upon many elderly folks who do not have cell phones. Dough is right when he says it is a “dumb” idea and as a consequence cause an increase in telephone contacts with SSA rather than encourage the on-line use of my Social Security.

  10. Bill

    DUMB!!!!

Comments are closed.