How you can protect your myGov account
MFA
MFA helps prevent someone else accessing your myGov account.
A Digital ID is a secure and easy way to prove who you are online. The only Digital ID you can use with myGov now is myID. Learn more about how to set up and use Digital ID.
If you use Digital ID, turn off your password as a sign in option. This stops criminals from using stolen usernames and passwords to access your account.
Passkeys are a more secure alternative to passwords. A passkey lets you use the security features on your phone, computer or tablet to sign in to apps and websites. Learn more about how to use passkeys.
If you use passkeys, turn off your password as a sign in option. This stops criminals from using stolen usernames and passwords to access your account.
Authenticators generate a code you use to sign in to your myGov account. They are an app or website you can download to your device. Learn more about how to use an authenticator.
You can use a code sent to you by SMS as your MFA. Learn more about how to use a code sent by SMS.
Account security
You should complete your security review and regularly check your account history and device security. This helps to keep your account secure.
Make your account more secure against cyber threats and unauthorised access by completing the security review actions in your myGov account. Your security review gives you personalised actions to complete. These improve your account security.
Your account history displays activity such as signing in and updates to your myGov account settings. Learn how to check your account history and what to do if you see unauthorised access or activity.
You should use a password that’s easy for you to remember but hard for others to guess. Your myGov password should be different to your other online accounts. Learn how to change your password to secure your myGov account.
Turn off your email address and mobile number as a username. You should never use the same sign in details with myGov that you use with other online platforms. By switching this off, it helps to stop criminals from attempting to access your account. You’ll still be able to use your myGov generated username.
Your myGov account is only as safe as the devices you access it on. There are basic steps you can take to protect your devices. Learn more about how to secure your devices on the Australian Signals Directorate website.