The Daily Caller logo
Health

Is Your Online Social Security Account Safe?

FILE PHOTO: A man types on a computer keyboard in this illustration picture
Reuters Contributor
Font Size:

By Mark Miller

CHICAGO (Reuters) – More than 34 million Americans now conduct business with the Social Security Administration (SSA) online – and with that shift comes an increased risk of identity theft.

For many, a MySSA account now is the only way to obtain an estimate of future benefits, since the agency no longer regularly mails annual benefit statements. MySSA also offers the convenience of handling routine paperwork online, and the ability to update the address on file for your account or start or change direct deposit of benefits.

The SSA receives more than half of all retirement and disability benefit applications via the internet, according to a report last year by the U.S. Government Accountability Office (GAO). That is up from negligible numbers a decade ago.

The shift is part of a broader technology modernization drive at the SSA, but it also is an attempt to cope with rising demand for its services during a time of relentless cuts to its administrative budget by Congress.

The SSA’s operating budget has been cut 11 percent from 2010 to 2017 in inflation-adjusted terms. At the same time, the demand for the SSA services from the public has been hitting record highs as the baby boom generation ages into retirement.

But in an age of hacking and identity theft, moving Social Security online also increases risk – and it is difficult to imagine a hacking target more attractive than the SSA.

The agency houses sensitive data on nearly every American – living and dead – including medical and financial records. The risks include not only theft of sensitive identity data, but also actual benefits. Nearly all Social Security benefits now are paid electronically, and thieves can redirect electronic payments to their own accounts.

How significant is the risk of identity theft and fraud related to MySSA accounts? The Social Security Administration (SSA) says it does not track data on the prevalence of identity theft, but last fall it advised the public in a blog post that the best way to avoid problems is to create an account to “take away the risk of someone else trying to create one in your name, even if they obtain your Social Security number.”

The worry is that cyber thieves could claim accounts and file for benefits. “If you don’t plant your flag someone might do it for you,” said Brian Krebs, a cyberspace security researcher and writer.

STRONGER PROTECTIONS

An SSA representative said the agency’s anti-fraud efforts have made the problem “very rare.” And SSA has been strengthening security on its website. Starting last June, it beefed up the authentication methods required to create or access a MySSA account, including the addition of security codes sent by text or email. The SSA also performs anti-fraud data analytics against MySSA transactions to identify suspicious activity and take action.

In a 2016 audit of agency technology, the SSA’s Office of the Inspector General (OIG) reported problems with unauthorized changes to mailing addresses and direct deposit bank information beginning in 2013, after the agency enhanced MySSA to permit people to change this information online.

An OIG investigation conducted with the Internal Revenue Service and the Federal Bureau of Investigation led to the conviction in 2014 of a Miami man for creating more than 900 fraudulent MySSA accounts, and redirecting roughly $700,000 in benefit payments to bank accounts he controlled.

In 2015, the SSA identified more than 30,000 suspicious MySSA registrations, according to the OIG. The OIG – which maintains a hotline for consumer complaints related to Social Security – also says it received more than 58,000 allegations of fraud related to MySSA accounts from February 2013 to February 2016.

Those figures are small in the context of overall MySSA activity – but it will not seem small if it happens to you. And this level of hacking is worrisome in an era of increased cybertheft.

Concerns have intensified in the wake of last year’s Equifax Inc hack, which exposed the Social Security numbers, birth dates and addresses of millions of Americans. But the problems pre-date Equifax. In 2014, a data breach involving a subsidiary of Experian Plc exposed the Social Security numbers of some 200 million people to potential criminal activity (http://reut.rs/2rBZCPm).

If you have not set up your MySSA account, it is a good idea to do so – especially if you are eligible for benefits or will be soon. (http://bit.ly/20nvsaI)

Check to make sure that your personal information – such as date of birth and mailing address – are correct. For current beneficiaries, if you notice that a monthly payment has not arrived, you should notify the SSA immediately via the agency’s toll-free line (1-800-772-1213) or at your local field office. In most cases, the SSA will make you whole if the theft is reported quickly.

Another option is to use the SSA’s “Block Electronic Access” feature – especially if you have had to deal with a security breach (http://bit.ly/2BP6t8P). This blocks any automatic telephone or online access to your Social Security record – including by you. You can restore access by contacting Social Security and providing proof of your identity.

(The opinions expressed here are those of the author, a columnist for Reuters.)

(Editing by Matthew Lewis)

PREMIUM ARTICLE: Subscribe To Keep Reading
Sign up

By subscribing you agree to our Terms of Use

 You're signed up!

Sign up

By subscribing you agree to our Terms of Use

 You're signed up!
Sign up

By subscribing you agree to our Terms of Use

 You're signed up!

Sign up

By subscribing you agree to our Terms of Use

You're signed up!
Sign up

By subscribing you agree to our Terms of Use

 You're signed up!

Sign Up

By subscribing you agree to our Terms of Use

 You're signed up!
Sign up

By subscribing you agree to our Terms of Use

 You're signed up!
Sign up

By subscribing you agree to our Terms of Use

You're signed up!
BENEFITS READERS PASS PATRIOTS FOUNDERS
Daily and Breaking Newsletters
Daily Caller Shows
Ad Free Experience
Exclusive Articles
Custom Newsletters
Editor Daily Rundown
Behind The Scenes Coverage
Award Winning Documentaries
Patriot War Room
Patriot Live Chat
Exclusive Events
Gold Membership Card
Tucker Mug

What does Founders Club include?

Tucker Mug and Membership Card
Founders

Readers,

Instead of sucking up to the political and corporate powers that dominate America, The Daily Caller is fighting for you — our readers. We humbly ask you to consider joining us in this fight.

Now that millions of readers are rejecting the increasingly biased and even corrupt corporate media and joining us daily, there are powerful forces lined up to stop us: the old guard of the news media hopes to marginalize us; the big corporate ad agencies want to deprive us of revenue and put us out of business; senators threaten to have our reporters arrested for asking simple questions; the big tech platforms want to limit our ability to communicate with you; and the political party establishments feel threatened by our independence.

We don't complain -- we can't stand complainers -- but we do call it how we see it. We have a fight on our hands, and it's intense. We need your help to smash through the big tech, big media and big government blockade.

We're the insurgent outsiders for a reason: our deep-dive investigations hold the powerful to account. Our original videos undermine their narratives on a daily basis. Even our insistence on having fun infuriates them -- because we won’t bend the knee to political correctness.

One reason we stand apart is because we are not afraid to say we love America. We love her with every fiber of our being, and we think she's worth saving from today’s craziness.

Help us save her.

A second reason we stand out is the sheer number of honest responsible reporters we have helped train. We have trained so many solid reporters that they now hold prominent positions at publications across the political spectrum. Hear a rare reasonable voice at a place like CNN? There’s a good chance they were trained at Daily Caller. Same goes for the numerous Daily Caller alumni dominating the news coverage at outlets such as Fox News, Newsmax, Daily Wire and many others.

Simply put, America needs solid reporters fighting to tell the truth or we will never have honest elections or a fair system. We are working tirelessly to make that happen and we are making a difference.

Since 2010, The Daily Caller has grown immensely. We're in the halls of Congress. We're in the Oval Office. And we're in up to 20 million homes every single month. That's 20 million Americans like you who are impossible to ignore.

We can overcome the forces lined up against all of us. This is an important mission but we can’t do it unless you — the everyday Americans forgotten by the establishment — have our back.

Please consider becoming a Daily Caller Patriot today, and help us keep doing work that holds politicians, corporations and other leaders accountable. Help us thumb our noses at political correctness. Help us train a new generation of news reporters who will actually tell the truth. And help us remind Americans everywhere that there are millions of us who remain clear-eyed about our country's greatness.

In return for membership, Daily Caller Patriots will be able to read The Daily Caller without any of the ads that we have long used to support our mission. We know the ads drive you crazy. They drive us crazy too. But we need revenue to keep the fight going. If you join us, we will cut out the ads for you and put every Lincoln-headed cent we earn into amplifying our voice, training even more solid reporters, and giving you the ad-free experience and lightning fast website you deserve.

Patriots will also be eligible for Patriots Only content, newsletters, chats and live events with our reporters and editors. It's simple: welcome us into your lives, and we'll welcome you into ours.

We can save America together.

Become a Daily Caller Patriot today.

Signature

Neil Patel