Wireless Carrier Security

This document will serve as a guide for enhancing cell phone security at the account level for the 4 major wireless carriers: Verizon, AT&T, T-Mobile & Sprint. Across all for 4 major carriers, we recommend implementing these enhanced security measures:

➔ Setting a PIN at the account level.

• Adding a PIN or passcode to your account, adds an extra layer of security. In order to make changes to your account, this PIN is required. Some carriers set the PIN as the last 4 digits of the primary account holder’s SSN, so be sure to change this code to something unique. Consider updating the PIN periodically.

➔ Enabling Two-Factor Authentication (2FA) (if available by the carrier)

• To further protect your account beyond your username and password, setting up 2FA will require an additional authentication factor like an SMS text message sent to your phone, a code delivered to your email or a code generated via an authenticator app like Google Authenticator or Authy.
• If 2FA is unavailable, we recommend setting Security Questions and a PIN for your account.

➔ Using a strong password and update it periodically

• We recommend 14 characters or longer, using upper and lower case, and a mixture of numbers, letters and special characters.

➔ Keep your personal information and passwords private

• Don’t share account information, PIN or passwords.

The 4 major carriers implement slightly different safeguards for protecting customer accounts. Here are specific features available at Verizon & T-Mobile that we’ve found.

Verizon

➔ Number Locking

Enabling Number Lock for your Verizon phone numbers
Once you activate a lock on a phone number in the My Verizon app, that number can no longer be ported to another line/carrier or swapped to another SIM unless you remove the lock.

To enable Number Lock to protect your Verizon number from being ported without your permission you can go through the following steps in the My Verizon app (iOS, Android):

1. Open the menu and tap Account. Sign in if requested to do so.
2. Tap Account Settings.
3. Tap Number Lock.
4. Tap the switch on (green) for the number(s) you want to lock. The numbers you selected cannot be ported to another device or carrier while Number Lock is on. You will need to turn off Number Lock if you need to port out one of the numbers you locked.

You can also follow this procedure to set up Number Lock through the My Verizon website:

1. You can access this feature by logging into your My Verizon account and going to the designated Number Lock page.

2. Select On next to the mobile number(s) that you want to protect from being transferred.

3. Tap or click Save Changes. The numbers you selected cannot be ported to another device or carrier while Number Lock is on. You will need to turn off Number Lock before you can port out one of the numbers you locked.
   To turn off Number Lock on a phone number that you want to port to another carrier or swap to a new SIM, account owners or account managers can use the app, the site, or can call Customer Service at *611.

T-Mobile

➔ Port Validation

• In addition to your account PIN, you can also set a 6-15 Digit passcode that will be added to your account to restrict port changes.

➔ Biometric Verification

• Allows you to verify your account by your T-Mobile ID when you call into Customer Care for assistance using the T-Mobile app and biometric credentials such as Face ID or fingerprint recognition, so you don't have to remember your PIN or Passcode.

➔ NOPORT

• NOPORT adds another layer of security on top of T-Mobile’s Port Validation but it’s not known if that’s a feature that every customer can enable, and if not, which customers can get it. If you’ve experienced fraud on your wireless account, you will likely be able to obtain this feature. When NOPORT is enabled on your account, T-Mobile requires a customer to visit a retail store and present a government-issued photo ID in order to have their number ported to a different carrier or get a new SIM card.

Now, we will outline the exact steps you should take to implement security features at each of the specific carriers.

Account Implementation

Verizon Web

➔ Set Up A PIN

• Login to your My Verizon Account
• Under Account select Account settings>Security Settings
• Enter the new account PIN under the Account PIN section, then re-type in designated box NOTE: Only the Account Owner can create an Account PIN.
• Click submit to confirm

➔ Set Up Two Factor Authentication

• Login to your My Verizon Account
• Under Account select Account settings>Security Settings
• Select two-factor authentication
• Click enable for the numbers you want to have two-factor authentication
• Save Changes

➔ Number Locking

• Login to your My Verizon Account
• Under Account select Account settings>Security Settings
• Select Number Lock
• Turn ON for each mobile device you want to lock.
• Save Changes

AT&T Web:

➔ Changing Passcode and Securing Account

• Navigate to Wireless account page
• Log into your account
• Enter in your two factor authentication code
• Click on your profile
• Make sure you update your security questions
• Set up a recovery phone number and email
• Click Manage Extra Security
• Click Edit Passcode
• Enter the last four digits of your Social Security number and mailing zip code, then click next
• Choose a phone number to receive the two factor code needed to edit your passcode
• Enter your new passcode, making sure it has at least four characters. This passcode will be needed to:
  • Sign into all accounts
  • Manage all accounts online or in stores
  • Call customer support

➔ Set Up Dual Factor Authentication

• Two Factor Authentication on wireless accounts is enabled by default and cannot be turned off.

T-Mobile Web:

➔ Set Up a PIN (If you have not established a PIN for your account upon logging in you will be prompted to do so)

• Sign in to My T-Mobile account
• Choose a verification method, either SMS / Security questions
• Select Next > Follow prompts for signing with this method
• Navigate to Set Your PIN/Passcode > Enter desired PIN/Passcode > Next/Save

➔ Set Up Dual Factor Authentication

• Sign in to My T-Mobile account
• Profile > T-Mobile ID > Enable 2-Step Verification, preferably with an authenticator app

T-Mobile Customer Service

(call 611 from your T-Mobile phone or dial 1-800-937-8997 from any phone):

➔ Port Validation

• Request to add Port Validation and create a 6-15 digit code over the phone with the Customer Care representative

➔ Set Up Biometric Authentication

• There are some qualifications and additional steps to take to enable this feature here is the link with those details:
  • Set up biometric verification

➔ Request NOPORT

• The Primary Account Holder must call T-Mobile Customer Service to enable this

Sprint Web:

➔ Set Up a PIN and Security Questions (Sprint requires all customers to create a PIN during their initial account setup)

• Sign in to Sprint.com
• Select My Sprint (or My Account) > Profile & Security (or Profile & Settings)
• Scroll down to Security Information
• Update PIN or security question/answer and save it

Need Assistance?

• Sign in to sprint.com
• Select My Sprint (or My Account) > Profile & Security (or Profile & Settings)
• Scroll down to Security Information
• Update PIN or security question/answer and save it
  Contact the BlackCloak Concierge team and we'll answer any questions you have and assist you in any of the processes described above.