Cybersecurity for TRICARE & Army Families (2026)

Guide to cybersecurity for the AKO community, focused on DS Logon security, TRICARE T-5 transition scams, and protecting PHI in 2026.

Cybersecurity for TRICARE & Army Families (2026)

For Soldiers and Veterans using the community-built revival of Army Knowledge Online (AKO), cybersecurity is the primary defense against identity theft and the unauthorized access of Protected Health Information (PHI). Because the Department of Defense (DoD) transition to the MHS GENESIS portal and the T-5 contract has increased reliance on digital tools, military families must secure their DS Logon and remains vigilant against evolving phishing scams targeting TRICARE benefits.

*Note: Army Knowledge Online AKO is an independent reference site and is not an official government entity. For official security policies, visit TRICARE.mil or the Defense Counterintelligence and Security Agency.*

In detail

In 2026, the digital landscape for the military community is more complex due to the full implementation of the T-5 regional contracts. With **Humana Military** (East) and **TriWest Healthcare Alliance** (West) managing millions of records, and **Express Scripts** handling pharmacy data, the "attack surface" for hackers is broad.

### 1. The DS Logon: Your Single Point of Failure The Defense Self-Service (DS) Logon is the "master key" for TRICARE Online, MHS GENESIS, and eBenefits. * **Security Requirement (2026):** Military members are now strongly encouraged to move from Level 1 (username/password) to Level 2 (Multifactor Authentication) access. * **MHS GENESIS:** Accessing your electronic health record (EHR) requires a secure connection. Never log in to MHS GENESIS from a public Wi-Fi network (e.g., airport or coffee shop) without a trusted VPN.

### 2. Protecting Health Data (HIPAA & PHI) Cybersecurity isn't just about passwords; it’s about Protected Health Information (PHI). If a bad actor gains access to your TRICARE portal, they can access: * Social Security Numbers * Service Dates * Medical diagnoses and prescription history * Home addresses and dependent information

### 3. T-5 Transition Scams Following the handover of the West Region to **TriWest Healthcare Alliance** in 2025, there has been a rise in "transition phishing." Scammers may call or email posing as TriWest or Humana representatives asking to "confirm your enrollment" or "verify your credit card" for TRICARE Select enrollment fees ($194.40/individual or $388.80/family for Group A retirees in 2026).

**How to verify:** Official contractors will never ask for your full Social Security Number or banking password over the phone via an unsolicited call.

### 4. Hardware and Mobile Security * **DHA App Store:** Only download official Defense Health Agency (DHA) apps. * **Medical Devices:** Modern pacemakers and insulin pumps are IoT (Internet of Things) devices. Ensure your healthcare provider at the MTF (Military Treatment Facility) discusses the cybersecurity of any connected medical hardware.

## Who this applies to * **Active Duty Service Members:** Must maintain OPSEC (Operations Security) and secure their personal data to prevent "spear-phishing" directed at their units. * **Retirees and Families:** Often targeted by scammers via email regarding TRICARE For Life (TFL) or pharmacy home delivery changes. * **Guard/Reserve:** Must ensure their civilian email accounts (used for TRICARE Reserve Select notifications) have robust 2FA (Two-Factor Authentication).

Common Scenarios

### The Pharmacy Phish A retiree receives an email claiming to be from **Express Scripts**, stating their medication shipment is delayed and they must "click here" to update their payment method. The link leads to a forged site. In 2026, the retiree should instead navigate directly to the official Express Scripts website or use the mobile app to check status, avoiding a potential loss of their pharmacy benefit funds.

### The Enrollment Fee Fraud A TRICARE Select spouse receives a phone call stating their 2026 enrollment fees ($388.80) are overdue and their coverage will be dropped unless they pay via a gift card or wire transfer. **Reality:** TRICARE contractors (Humana or TriWest) always provide official billing statements; they never request payment via untraceable methods like gift cards.

### The Public Wi-Fi Incident A Soldier on TDY uses a hotel's open Wi-Fi to check their medical results on MHS GENESIS. A "man-in-the-middle" attack intercepts their DS Logon credentials. By the time the Soldier returns home, their identity has been stolen, and fraudulent eBenefits claims have been filed.

## Related terms * **DS Logon:** A secure identity credential that allows hardware-less access to numerous DoD and VA websites. * **MHS GENESIS:** The unified electronic health record for the Military Health System. * **PHISHING:** A cybercrime where targets are contacted by email, telephone, or text to lure them into providing sensitive data. * **T-5 Contract:** The current TRICARE management contract divided between Humana Military (East) and TriWest (West). * **2FA (Two-Factor Authentication):** A security process in which users provide two different authentication factors to verify themselves.

## Sources * **TRICARE Official Site:** [https://www.tricare.mil](https://www.tricare.mil) * **MHS GENESIS Patient Portal:** [https://patientportal.mhsgenesis.health.mil](https://patientportal.mhsgenesis.health.mil) * **Defense Health Agency (DHA):** [https://health.mil](https://health.mil) * **CAC/DS Logon Management:** [https://www.dmdc.osd.mil/self_service/](https://www.dmdc.osd.mil/self_service/)