Your security is important to us.
That is why we strengthened the security of your personal information on LTCFEDS.com by increasing authentication when accessing your My LTCFEDS account.
Enhanced login authentication
You are now required to enable a phone number to receive a one-time verification code by text message or voice call every time you log in or reset your credentials.
Log into your MY LTCFEDS account to set this up today.
This is a common security practice and is referred to as "two-factor" or "multi-factor authentication."
Multi-factor authentication (MFA) is a layered approach to securing online account access that requires users to provide two or more authentication factors before they can log in. MFA enhances security because even if one authenticator (such as a password) becomes compromised, it is unlikely an unauthorized or malicious user will also have access to an additional authenticator (such as entering a verification code sent to your mobile device).
Traditionally, websites only required a user ID and password to access online accounts, and users often chose easy-to-remember passwords repeated across multiple sites. This made security information more vulnerable and potentially exposed it to malicious cyber-attacks.
Multi-factor authentication (MFA) provides a better way to protect your online accounts by adding an additional layer of security. MFA not only requires you to provide something you know such as your password or answer to a security question, but it also requires something you have such as a verification code sent to your mobile device and/or something that you are such as your fingerprint or face scan.
By increasing the combination of authentication factors required to log in, it becomes even more difficult for an unauthorized user to access your online account.
The security of your personal and health information is one of our top priorities. We implemented multi-factor authentication because it is a widely adopted security best practice that helps limit the risk of malicious users attempting to gain access to your information for their own personal gain.
You are now required to provide a verification code sent by text message or voice call to your phone, in addition to your password, every time you log in or reset your credentials. This helps us confirm your identity and ensure that only you have access to your account.
See the related question, "How does multi-factor authentication enhance security," for more information.
The federal government requires its agencies and contractors to comply with the Federal Information Security Modernization Act (FISMA)—a law that defines certain cybersecurity standards to protect government information, operations, and assets against threats—using guidelines established by the National Institute of Standards and Technology (NIST).
As part of the contract with the U.S. Office of Personnel Management, we are required to make multi-factor authentication mandatory for all My LTCFEDS online account users.
No, you do not need a mobile phone or smartphone. You have the option to receive your verification codes by text message or voice call. If you have a landline phone, you can choose to receive your verification codes by voice call. You will receive an automated call and a recorded message will give you a code once you answer the call or leave it as a voicemail if you don't answer. The code is only valid for 5 minutes. If you do not enter it within that timeframe, you must request a new code.
No, you are not required to create a MY LTCFEDS online account. Most of what is available within your online account is sent to you in writing for your own records. You can also contact our Customer Service Center for assistance with your coverage.
A My LTCFEDS online account allows you to easily review your coverage, update your contact information, and submit claims invoices for reimbursement once you are eligible for benefits.
Visit the multi-factor authentication section of CISA.gov or download the Digital Identity Guidelines from NIST.gov for more information on multi-factor authentication and the federal government's cybersecurity recommendations.