Research Finds Models Used to Detect Malicious Users on Popular Social Sites are Vulnerable to Attack

*********************************
There is now a CONTENT FREEZE for Mercury while we switch to a new platform. It began on Friday, March 10 at 6pm and will end on Wednesday, March 15 at noon. No new content can be created during this time, but all material in the system as of the beginning of the freeze will be migrated to the new platform, including users and groups. Functionally the new site is identical to the old one. webteam@gatech.edu
*********************************

Atlanta, GA | Posted: November 22, 2021

Contact

Albert Snedeker, Communications Manager II
albert.snedeker@cc.gatech.edu

Sidebar Content
No sidebar content submitted.
Summaries

Summary Sentence:

A research team led by Georgia Tech has identified a new cyber threats to popular e-commerce, social media, and web platforms.

Full Summary:

No summary paragraph submitted.

Media
  • Srijan Kumar Srijan Kumar
    (image/jpeg)

Whether they are fake accounts, sock puppet accounts, spammers, fake news spreaders, vandal editors, or fraudsters, malicious users pose serious challenges to the security of nearly every virtual platform.

Now, research led by Georgia Tech has identified a new threat to deep learning models used to detect malicious users on Facebook and other popular e-commerce, social media, and web platforms.

“Social media and web platforms put a lot of energy, effort, and resources into creating state-of-the-art methods to keep their platforms safe," said Srijan Kumar, School of Computational Science and Engineering assistant professor and co-investigator.

"To do this, they create machine learning and artificial intelligence models that essentially try to identify and separate malicious and at-risk users from the benign users.”

Using a newly developed adversarial attack model, the research team was able to reduce the performance of classification models used to distinguish between benign and malicious users.

The new attack model generates text posts that mimic a personalized writing style and that are inflected by contextual knowledge of a given target site. The generated posts also are informed by the historical use of a target site and recent topics of interest.

Known as PETGEN, the work represents the first time researchers have successfully conducted adversarial attacks on deep user sequence classification models.

“There is always this game between the models trying to catch the malicious users and the accounts trying to not get caught. If we can act as attackers, we can identify the model vulnerabilities and the potential ways these malicious accounts evade detection systems,” Kumar said.

The research was conducted on two real-world datasets from Yelp and Wikipedia. Although the PETGEN research reveals that malicious users can evade these types of detection models, Kumar says he and his team are working now to develop a defense against this type of attack.

“The findings will help to pave the path toward the next generation of adversary-aware sequence classification models and better safety for virtual interactions on these platforms,” Kumar said.

The findings of this work were first presented at the 27th ACM SIGKDD Conference on Knowledge Discovery and Data Mining by Kumar, School of Computer Science Professor Mustaque Ahamad, and computer science Ph.D. student Bing He.

The work presented in PETGEN is also an output of a Facebook research award that Kumar received jointly with CSE Associate Professor Polo Chau.

Additional Information

Groups

Research Horizons

Categories
No categories were selected.
Related Core Research Areas
Cybersecurity
Newsroom Topics
No newsroom topics were selected.
Keywords
go-researchnews
Status
  • Created By: Ben Snedeker
  • Workflow Status: Published
  • Created On: Nov 22, 2021 - 10:14am
  • Last Updated: Nov 23, 2021 - 11:06pm