The way citizens enter the Social Security Portal will change from this Tuesday, May 12th. The change, announced by the government, focuses on authentication rules and introduces a new security requirement that becomes mandatory for thousands of users. The objective is to reinforce the protection of personal data and reduce fraud situations, on a portal where sensitive information about contributory careers, benefits and social support is concentrated.
According to , the main change concerns the mandatory adoption of two-factor authentication for those who access the portal using their Social Security Identification Number and password. The measure comes into force on May 12th and involves a new step when logging in, in addition to the usual credential.
What changes in accessing the portal
Starting next week, users who continue to log into the Social Security Portal with NISS and password will have to confirm their identity through a second security factor. This factor corresponds to a temporary code, sent to one of the contacts previously associated with the user’s account, either by SMS to the cell phone or by email.
In a message posted on social media, the Government explained that this double verification aims to introduce an additional layer of protection, reducing the risk of unauthorized access even in situations where the password may be compromised. The logic is simple: without access to the second factor, authentication is not complete.
The information now made public also points to an evolution in the login process itself. With the two-factor authentication system active, it is now possible to access the portal using the registered email address, as an alternative to NISS, a step that aims to simplify access and make it more intuitive for frequent users.
Recommendations before entry into force
The Social Security Institute warned of the importance of citizens checking, in advance, whether the contacts associated with their accounts are up to date. Valid email and cell phone number are essential conditions for the new system to work without constraints.
The entity also advised the activation of the security mechanism before May 11, in order to avoid technical difficulties on the same day the measure comes into force. The concern is related to the possibility of overloading support services or failures to receive temporary codes, especially for users who have not previously validated their contact details.
Enhanced security and fraud alerts
The introduction of two-factor authentication comes in a context of greater alert for digital fraud attempts. In recent months, phishing schemes targeting users of public services have multiplied, exploiting false messages sent by email or SMS.
According to the same source, Social Security once again emphasized that it never requests bank details, passwords or access codes through links sent by message. Any update of personal information must be done exclusively through the Social Security Portal, with direct and secure access.
In March, it is worth remembering, the institute led by Pedro Corte Real had already warned of a fraudulent campaign that aimed to collect confidential data from citizens. The mandatory adoption of double verification is seen as another step to limit this type of risk, bringing the portal closer to good practices already in force in other digital services in the State.
This authentication model is not entirely new to the Social Security ecosystem. For companies, mandatory two-factor authentication has been in force since February 26, and is now being extended to individual citizens, according to Notícias ao Minuto.
Also read:
