MadTECH Computers
Managed I.C.T Services Queensland

madBLOG

Step by step guides and product/software reviews for our clients are here:

Setting up an authentication app to secure your Australian Super account today!

protecting your identity and privacy

We are getting reports of more Australian Super Accounts being compromised by attackers, and people are logging onto their accounts only to find out all funds have been transferred out of the account and are unrecoverable.

It is important you regularly log onto your account, and keep monitoring the following:

  • track your balance

  • update your details 

  • check your employer contributions

  • download your annual statement 

It is also important you enable MFA (multi factor authentication). It is important you have and authentication app on your phone. Some Super companies will use SMS or email as the 2FA method. It is important 2FA is setup for your Authentication App on your phone. DO NOT ALLOW your Super company to setup 2FA to SMS or email, as it is insecure. Australian Cyber Security Centre leads the Australian Governments efforts to improve cyber security, and advise against SMS as MFA method:

https://www.cyber.gov.au/protect-yourself/resources-protect-yourself/personal-security-guides/protect-yourself-multi-factor-authentication

To setup an Microsoft Authentication App:

Install the Microsoft authenticator app for the Apple Store or the Google PlayStore app

If you are setting up an authentication app on your iPhone for the first time, you will need to do it on a computer first, and link your Microsoft email account to your Microsoft Authentication app.

To add an account by signing into your work or school account using your credentials:

  1. Open Authenticator and select the plus icon on the top menu bar.

  2. Tap Work or school account. Select Sign in.

  3. Enter your work or school account credentials.

    Note: If you have a Temporary Access Pass (TAP) you can use that to sign in.

  4. On your device, tap the account and verify in the full-screen view that your account is correct.

To setup the google Authentication App:

Install the Google Authenticator app from the Apple Store or the Google Playstore app

On your iPhone or iPad device, go to your 2-Step Verification settings for your Google Account. (You will need a Google Account to setup the Google Authenticator)

  • You may need to sign in.

  1. Tap Set up authenticator.

  2. Follow the on-screen steps.

Logging your Super Account into your authentication app


Read below to find your Super Company, and instructions on enabling multi-factor authentication. If your super company is not listed, then call them up and they will assist over the phone. When calling, ensure you are calling the correct number, and not one from a scam site.

australian super

Australian Super has an app you can use to monitor your Super account. The App itself has 4 digit PIN or Face ID (iOS) or fingerprint (Android). It is important to keep the app up to date. You will need your membership account number and password ready the first time you log onto the account.

Call Australian Super on 1300 300 273 for any questions.

CBus Super

Call CBus on 1300 361 784 to enable, make MFA changes to your account. CBus also has their own App you can use to manage your account. They will also ask security questions to verify your identity before making any changes. It looks as though they send confirmation codes to your mobile number, so ensure you have MFA setup to an authentication app, and ask the staff to remove codes being sent to your mobile, and ask them instead to make sure MFA is enforced.

HOSTPLUS

MFA requires that you enter some additional information when you login to Hostplus Member or Pension Online, or your account via the Hostplus App.

You will be asked to enter your member number and password as usual, however we will also ask you to set up your preferred MFA verification method. Simply follow the steps, and when completed, you’ll be able to generate a One Time Pin (OTP) to authenticate your MFA setup.

Your OTP can be sent to you via:

  • SMS – sent directly to your mobile or landline, or

  • voice call authentication. 
     

In the future, each time you return to Member Online or Pension Online, you’ll generate a new One Time Pin, which will be sent to you via your previously advised perferred method. You can change your OTP preference at any time after logging in to your account.

HESTA Super

Help protect your online account by setting up extra layers of security for additional peace of mind. Multi-factor authentication is an effective way to protect your valuable information and accounts against unauthorised access by using more than one way — e.g. just a password — to verify your identity.

As a HESTA member, you can set up two-factor authentication for your online account by following these steps:

  • Log in to your online account.

  • Navigate to Personal details from your profile, located in the top right of the home dashboard.

  • Here you can add two-factor authentication in the Preferences tab.


Once you’re set up with two-factor authentication for your online account, we’ll send a verification code to your mobile each time you log in.

Don’t have an online account yet? Register now so you can check in with your super regularly.

kel toyne