25 thoughts on “Adding Additional Security to Protect What’s Important to You

  1. How is this added security???
    Getting someones personal information is often through their Email address and/or cell phone. If they go through either of these access points, they already have the info.

    • Click here to “Sign In or Create an Account”. Keep in mind that you need a U.S. address to register for a my Social Security account. The “my Social Security” authentication system requires address verification as one of the essential criteria for issuing an account. People with APO/FPO/DPO addresses can create an account overseas, but our system does not support registration and account creation for users with a foreign address yet. You do not need a U.S. address to access our website or to file online for benefits. We remind our customers living abroad, to contact the nearest U.S. embassy in their area, for any assistance related to Social Security benefits. Thanks!

  2. For some reason my password is refused by MY SS. It has happened three times over the past year. I have blocked my SS number to prevent any further online use.
    I dont understand the password changes.

    • Hi William, we are sorry you are having issues setting up your account. If you cannot create an account, please visit our Frequently Asked Questions to read information on why you may be unable to. Also, we have established a dedicated MySocialSecurity Hotline. To reach this hotline, call 1-800-772-1213, and select the prompt “For help with registering or using the MySocialSecurity website”. The help desk will be available to callers between 7:00 a.m. and 12:00 a.m. (Eastern Time). Sometimes, it might be best to visit your local Social Security office for further assistance. Thanks.

  3. Security? What a joke! You still allow Medicare to use our social security numbers as the patient ID. My original card has printed on it in red ink “Not to be used for identification”.

    • We understand your concern Barry. Under current law, Medicare providers need to know your Social Security number in order to provide you the benefits to which you are entitled. Generally, they only have to see and verify your Medicare card at the time they provide initial medical services. The Medicare program, including Medicare cards, is managed by the Centers for Medicare & Medicaid Services (CMS). Here are some suggestions to keep your personal information safe while using your Medicare card. Thanks.

      • Given how poorly most health care providers handle confidential information (and HIPAA gives access to all that information to any insurers, etc), and how HIPAA includes no real penalties for violating HIPAA, and the feds are not investigating complaints in a timely manner and there is, of course, no citizens’ suit provision so people can enforce it (and have their attorney fee paid), then it doesn’t help for SSA to say, well, they only need the information once. Their computers system are not secure.

  4. It seems many people want to complain about the system but it does work, albetit not perfectly. I ask the question, if you are not happy with the system then what are you doing to help make a difference?

  5. Instead of complaining about the system how can we fix the system? We know SSN was “not to be use” for ID at all but since it’s been gong on from the start, how do we really make it better and more fool proof? How do we prove the person reporting the SSN is the “real” person and not some fake? Only way I know is to issue photo ID’s of the original person with some form of bio metrics added. Make a personal appearance to a SS Office to get it with supporting documentation. A real pain but maybe the only true way to fix the system. It’s our money, your money we are protecting here so don’t complain too much if this does happen. It’s figuring out which bit of personal information you have that you can’t get off the Internet or without using your SSN to get? Almost impossible isn’t it? With social media as it is, we do have a big problem. So anything SS comes up with is better than nothing at all.

    • Maybe we should blame FDR for not anticipating computers, networks, social media etc. in 1936 when this system was set up. Instead of living in fear and anger, looking for new ways to portray ourselves as victims of non-existent government plots or conspiracies we need to understand we cannot have instant convenience and security at the same time. There must be tradeoffs to be safer. And nothing is completely foolproof.

      • Tom, you are the most rational and sensible poster I have ever encountered on these blog comment boards. Thank you so much for your voice of sanity in this swamp of complainers and blamers. Your observation is spot on.

  6. Social Security is doing the best with the means they have. Remember, it is the largest networked computer system in the world. Don’t knock it, support it. Don’t be an idiot. An idiot is one who tears down what others have built….

  7. What happens if your email address gets changed or is no longer accessible, or your cell phone number gets cancelled? Are you locked out of the website, or is there an escape hatch to get back in?

  8. NIST has issued new guidelines for 2FA and they don’t include SMS or email. While this is a step (very small) in the right direction TOTP should have been used.

  9. My step-fathers identity was stolen and a fraudulent “my Social Security” account was set up with his info. How can I get a new MY Social Security account for him?

    • Hi Marcia and thanks for trying to help. Your step-father will need to call our toll free number at 1-800-772-1213 for assistance. He will need to select the prompt “For help with registering or using the My Social Security account”. The help desk will be available to callers between 7:00 a.m. and 12:00 a.m. (Eastern Time).
      Sometimes, it might be best to visit the local Social Security office.

  10. You still don’t get it! The 30million that are using online services are getting OLDER!!!. You think you are making them safe by adding more steps for security, but all you are doing is making it necessary to remember one more thing. In order to access the account with more steps, we are having to write it down somewhere then remember where we wrote it down and hope that someone else won’t find it!!! If you go through with this NEW SECURITY PROCEDURE then I will stop using the online service and depend on regular mail and waiting for hours at a Social Security office to speak with someone directly–that is, if I can find someone to drive me there!

    • @Lupe Hernandez Yes, you go ahead and stop using Social Security’s online service because they’re taking the ridiculous step of ensuring the security of everyone’s accounts from the very real dangers of hacking and identity theft that are increasing by the millions. That’ll show those jerks, eh? I’m sure they’re quaking in their boots just reading such a terrible threat . . .sheesh.

  11. If I have to call or visit my nearest SSA office for verification. Then whats the point of added security?The online recovery process is now asking for a credit card number…Do they think we can tell who they really are? I honestly can’t tell the legitimate from the illegitimate sources anymore. The behavior is identical. God Bless whats left of America.

Leave a Reply - (comment policy)

Your email address will not be published. Required fields are marked *