Multi-accounting is the practice of one person or device operating multiple accounts on the same platform, in violation of the platform's terms of service. Common motives include claiming welcome bonuses multiple times, amplifying votes or reviews, evading a ban, or scaling up fraud operations beyond the limits imposed on a single account.
Platforms typically enforce per-account limits on promotions, voting, trading, or posting. Multi-accounting defeats these controls by splitting activity across accounts that appear independent. Attackers use fresh email addresses, proxy IP addresses, and cleared browser storage to make each account look like a new user.
Device fingerprinting detects multi-accounting by linking accounts that originate from the same device even when storage has been cleared and the network address has changed. A hardware fingerprint that appears in multiple account creation events is a strong signal that a single device is operating multiple identities, regardless of how the network or storage layer has been manipulated.
In doorman-benny
doorman-benny's `hardwareFingerprint` is designed to be stable across incognito sessions, storage resets, and browser switches, making it a reliable link signal for connecting accounts registered from the same physical device.
Detect duplicate signups and multi-accountingFrequently asked questions
How does device fingerprinting detect multi-accounting?
When a new account is created, its device fingerprint is compared against existing accounts. If the fingerprint matches one or more prior accounts on the same platform, the new registration is flagged for review. This works even when the user has cleared cookies, used a VPN, or registered with a different email.
Can multi-accounting detection produce false positives on shared devices?
Yes. Multiple legitimate users on the same device, such as a family sharing a home computer or a library workstation, may produce matching fingerprints. Production systems combine the device signal with account-level context and interaction patterns to reduce false positives in shared-device scenarios.
What happens when a multi-accounting attempt is detected?
The appropriate response depends on the platform's policy. Common actions include flagging the account for manual review, requiring additional identity verification, suppressing promotional eligibility, or suspending the account pending investigation. Fingerprint-based detection provides the evidence; the platform decides the enforcement action.
