ALCOAST 503/25 - DEC 2025 DIRECT ACCESS DATA BREACH AND OPERATING STATUS - SITREP 2

R 181416Z DEC 25   MID180038468400U
FM COMDT COGARD WASHINGTON DC
TO ALCOAST
BT
UNCLAS
ALCOAST 503/25
SSIC 5510
SUBJ: DIRECT ACCESS DATA BREACH AND OPERATING STATUS - SITREP 2
A. COMDT COGARD WASHINGTON DC 182347Z FEB 25/ALCOAST 074/25
B. COMDT COGARD WASHINGTON DC 052359Z MAR 25/ALCOAST 105/25
C. COMDT COGARD WASHINGTON DC 041421Z DEC 25/ALCOAST 484/25
1. Summary. In alignment with REFs (A) through (C), Multi-Factor
Authentication (MFA) will be in effect on 05 January for all Direct
Access (DA) users, including retirees and annuitants without a
Common Access Card (CAC). This change aligns with Force Design 2028
by bolstering the security posture of DA and the Enterprise Mission
Platform (EMP), streamlining user access, and better protecting
personal information.
2. Background. Per REF (B), the Coast Guard strengthened DA security
and improved user accessibility. Enhanced safeguards, including MFA
requirements, were first implemented for CAC users. MFA is now
required for all non-CAC users including retirees, annuitants, and
beneficiaries, making DA more securely accessible for everyone.
3. Key Updates. All non-CAC users will be required to enroll in MFA
and may choose to authenticate via text message or phone call. Other
MFA options, including authenticator applications and email, are
under evaluation for potential future implementation. CAC users are
not impacted by this change and will continue to authenticate using
their CAC credentials.
4. Actions. Non-CAC users should enroll in MFA to ensure continued
access to pay, benefits, and tax forms. Follow the prompts when
logging in to DA to enroll. MFA enrollment will be mandatory after
the limited availability period in REF (C). All Users should:
     a. Verify and update contact information and email addresses in
DA to ensure optimal support and receipt of important notifications.
     b. Review REF (C) and complete any urgent DA transactions before
0600 EST, 19 December 2025.
     c. Continue to follow all cybersecurity protocols and report
suspicious activity to CGCYBER CSOC at 1-866-424-2478 or
CGCYBER-SOC@uscg.mil.
     d. Look for updates on the DA login screen and the Pay and
Personnel Center (PPC) website at:
(Copy and Paste Below URL into Browser)

https://go.uscg.mil/ppc

     e. Anyone in receipt of this message should relay it to any
retiree, annuitant, or beneficiary they know who may not regularly
access the public message board to maximize awareness.
5. Support. For password resets, logon assistance, or other DA
technical issues, contact the C5I Service Center Product Support
Service Desk at (800) 821-7081 (6:30 am-6:30 pm ET, Mon-Fri) or
email: SMB-USCG-KerWV-ProductSupportSD@uscg.mil. For personnel or
administrative issues unrelated to DA technical support, contact PPC
Customer Service at (866) 772-8724, option 3, (7:30 am-4:00 pm CT,
Mon-Fri), or email: PPC-DG-CustomerCare@uscg.mil.
6. POCs: Mrs. Kimberly D. Morrison, COMDT (CG-C5I-APPS-2),
Kimberly.D.Morrison@uscg.mil or LCDR Brian C. Muldoon,
COMDT (CG-C5I-APPS-2), Brian.C.Muldoon@uscg.mil.
7. RADM Jon P. Hickey, Assistant Commandant & PEO for C5I, sends.
8. Internet release is authorized.