A project of the Integrity InstituteAs repositories of personal information, platforms are often core tools used to facilitate identity theft, since malicious users can use publicly accessible information to divine a huge volume of information about someone's preferences, habits, relationships, and assets. These can often be used in concert to make impersonating a real person much easier in customer-support contexts, to guess passwords, or to abuse account recovery tools, typically toward financially motivated aims. Platforms have a role to play in limiting this form of abuse - particularly in how they handle sensitive data by default, and the audience that they expose potentially sensitive data.
In other cases where the platform identity can itself be of financial value, a user's on platform identity can be targeted for theft. Platforms can secure users' on-platform identities by encouraging (or requiring) them to take steps that make taking over a user's account more challenging, including a variety of mechanisms that make their authentication process more secure, or prevent them from utilizing poor security practices.