- AARP Online Community
- AARP Rewards
- Earn Activities
- AARP Rewards Connect
- AARP Rewards Tips
- Ask for a Rewards Tip
- Leave a Rewards Tip
- Grief & Loss
- Share and Find Caregiving Tips - AARP Online Community
- Ask for a Caregiving Tip
- Leave a Caregiving Tip
- Entertainment Forums
- Rock N' Roll
- Let's Play Bingo!
- Leisure & Lifestyle
- Entertainment Archive
- Atari Talk
- Games Talk
- Games Tips
- Leave a Game Tip
- Ask for a Game Tip
- Health Forums
- Brain Health
- Conditions & Treatments
- Healthy Living
- Medicare & Insurance
- Health Tips
- Ask for a Health Tip
- Leave a Health Tip
- Home & Family Forums
- Friends & Family
- Introduce Yourself
- Late Life Divorce
- Our Front Porch
- Home & Family Archive
- Money Forums
- Budget & Savings
- Scams & Fraud
- Retirement Forum
- Social Security
- Retirement Archive
- Technology Forums
- Computer Questions & Tips
- About Our Community
- Travel Forums
- Work & Jobs
- Work & Jobs
- AARP Help
- Benefits & Discounts
- General Help
New important information for AARP Rewards – Verification Required!
Since I don't seem to be able to reply to the other thread that was posted, I guess I have to start a new one.
No doubt I'm in the minority here, but with limited texts on my plan, why would I want to do a phone verification each time I log into AARP Rewards? There hasn't been anything there that I would be interested in anyway.
Thanks so much for keeping my account safe.
Clear Cookies and Cache and try process again. If that doesn't want go ahead and submit a ticket via Customer Service (1-866-451-6305).
Hope it works.
Have a Blessed Day,
@ralmon By sending a verification code directly to you, we're able to provide an extra level of security and ensure that only you are in control of your account. Your phone number will only be used to verify your identity and not for any other purposes.
Thanks for the reply. I understand the 2 factor authentication of verifying control of an account. However, it has been said mutiple times that this is a one-time event. That is not an improvement of security.
If AARP wants to improve security, get rid of the annoying CAPTCHA and introduce a 2 factor authentication on login. This should be on EVERY login, not just a one-time thing. Accounts might be compromised a week later, and this one-time event was for nothing.
Security is serious business. I have 3 authenticator apps running on my phone, from Microsoft, Google, and some weird one required by my company. Amazon does 2FA on Microsoft authenticator, my webhost uses the Google one. AARP could just as well use one of those.
Just my 2.5 cents.
@mi4090 The verification is one time only and is validated by the current phone number you use to verify. Changing your number in the future does not affect your current validation.
Thanks for your response. I do have to say that this one-time verification is not in any way securing my account. As you mentioned, is is primarily to take a shot at Rewards cheaters. This is not protecting anyone, simply making the Rewards system more fair.
Also, this one-time verification does not protect my account if it gets comprimised AFTER the one-time verification. That is why I mention the 2 factor authentication at each login. That would be more secure than simply a CAPTCHA.
The only issue with a 2FA is that for some reason, the login screen comes up very frequently when using the AARP set of webpages. It's like the various web site sections don't properly communicate with each other.
Maybe AARP can consider adding 2FA as an optional feature.
Thanks for the info about the one-time only. My question is how does this improve my online security?
Here is the quote from @AARPTeri :
"We're always looking for ways to improve your online security. Beginning soon, when you visit AARP Rewards, you will be prompted to secure your account by verifying your phone number. This process will be required for participation moving forward. "
Unless this requirement introduces a 2 factor authentication, I see no improvement in security, but rather an exposure of one's private phone number to a 3rd party marketing company (HelloWorld).
Can anyone at AARP please elaborate on the security improvement?
Hello EF & Ginger,
It would be good if you could get more information concerning if the verification is a (1) time event or otherwise as stated by EF.
Ginger how did you find out that it was (1) time? Did you get some inside information? I know you can find anything pertaining to AARP. Glad to see you are back.
Have a Blessed Day,
The mobile messaging service used by AARP to communicate with you cannot randomly or sequentially generate telephone numbers, requires human intervention for AARP's mobile messages to be initiated, and thus AARP's mobile messages are not sent to you by an automatic telephone dialing system ("ATDS" or "autodialer"). Nevertheless, by participating in the Program, you agree to receive autodialed mobile messages
@ralmon While phone verification is not foolproof, it is an industry best practice – top companies like Google, Facebook, Microsoft, and Twitter verify phone number ownership during account creation and at log in to confirm the identity of returning users. And while we do see value from this additional security protection, we agree with you that no one protection is foolproof. Cybercriminals will seek out sites that only require an email address and password to establish the identity of a new user. It’s low hanging fruit for them. In fact, automated software bots can cost-effectively exploit applications that verify email accounts by creating an unlimited supply of fake profiles. We also wanted to keep in mind the experience of our amazing Rewards customers and phone verification is convenient, familiar and immediate. We see this as a way for customers to quickly and easily validate their identity and quickly move on to all the Rewards goodness!
I completely agree that a one-time phone verification is not foolproof, especially if one can use an arbitrary phone number for the verification AND it only happens if one tries to log into the Rewards.
All the users not doing Rewards just have to live without the one-time verification. So tell me again how this is securing an AARP account.
Also, since you named the big folks like Google, Facebook, Microsoft, and Twitter, there is something they do that AARP still does not: 2 factor authentication! And this is at each login and one can use a special authenticator app. Don't compare AARP non-security with what the big guys do.
Well, I've had enough of this dance. It's going nowhere. I'll just make sure there is very little identifiable information on my AARP account. I've already made sure no payment methods are found, at least through the UI given on the website.
I shall not respond to topics related to AARP and security anymore. Good luck.
Its a one time verification
& its been stated here won't be used for anything else nor starts AARP texts coming to you just verification
Saw your many posts let's ask for help from Community helpers
Can y'all help out here needs info how use Rewards account without mobile phone
Feel certain there are others with same issue
Ginger ; )
@sjean65 You do not have to use a cell phone for the one-time verification. You may use a landline. In that case, instead of getting one text message with the verification code, you will get a phone call with the verification code. @gm5271 is correct -- the phone number you provide is only used to verify your identity, not for anything else. Entering a cell phone number for verification does not sign you up to receive text messages from AARP.
I had them resend a verification number and got the SAME number the second time!
When you get "Mmmmm... Something wasn't right! Please re-enter your verification code." There is nothing you can do from there except start over.
@Ben Have you been able to get verified?
There is no "submit" or "enter" button since the verification is automatic once the verification code is entered. When you are entering the verification code, make sure you are using the numbers along on the top of your keyboard (above the letters that double as special characters), rather than numbers located in number keyboard (usually located on the right side of your keyboard).
I'm still curious about this, though. First off, I'm not against 2-factor authentication in anyway for security of an account. However, for this implementation, I have the following concerns:
It has been stated that this authentication was for protection of our account. Then it was mentioned it was to help prevent cheaters on the Rewards. Which one is it?
Neither issue is properly addressed by this one-time text/call. Anyone could setup a duplicate account and just use a cheap store cellphone.
Now that I'm worried about account security due to this: Has there been some breach at AARP that we need to know about? Will AARP introduce a real 2-factor authentication option, like I have on Amazon and other accounts (using an authenticater app on my cellphone)?
Golly, I thought it was going to be an easy going holiday this year.