Academia.eduAcademia.edu

Outline

Title
Abstract
The Datalog+/-Family of Ontology Languages
The Chase Procedure and Data Structure
Related Work
Conclusions and Future Work
References
All Topics
Computer Science
Information Systems

NetDER: An Architecture for Reasoning About Malicious Behavior

Profile image of Maria Vanina MartinezMaria Vanina Martinez

2020, Information Systems Frontiers

https://doi.org/10.1007/S10796-020-10003-W
visibility

description

17 pages

link

1 file

Abstract

Malicious behavior in social media has many faces, which for instance appear in the form of bots, sock puppets, creation and dissemination of fake news, Sybil attacks, and actors hiding behind multiple identities. In this paper, we propose the NETDER architecture, which takes its name from its two main modules: Network Diffusion and ontological reasoning based on Existential Rules), to address these issues. This initial proposal is meant to serve as a roadmap for research and development of tools to attack malicious behavior in social media, guiding the implementation of software in this domain, instead of a specific solution. Our working hypothesis is that these problems-and many others-can be effectively tackled by (i) combining multiple data sources that are constantly being updated, (ii) maintaining a knowledge base using logicbased formalisms capable of value invention to support generating hypotheses based on available data, and (iii) maintaining a related knowledge base with information regarding how actors are connected, and how information flows across their network. We show how these three basic tenets give rise to a general model that has the further capability of addressing multiple problems at once.

Related papers

Twitter Fake Account Detection and Classification using Ontological Engineering and Semantic Web Rule Language
A.S. H.

Karbala International Journal of Modern Science, 2020

Nowadays, Twitter has become one of the fastest-growing Online Social Networks (OSNs) for data sharing frameworks and microblogging. It attracts millions of users worldwide where subscribers communicate with each through posts and messages known as "tweets". The open structure and behaviour of Twitter cause it to be vulnerable to attacks from fake accounts and a large number of automated software, known as 'bots'. Bots are regarded to be malicious as they send spam to users of social networks over the internet. Data security and privacy are among the most critical issues of social network users, as the protection and fulfilment of these requirements strengthen the network's interest and, ultimately, its credibility. To overcome these issues, we need to build an efficient model to detect and classify fake twitter accounts. This paper presents a new approach with dual functions, namely to identify and classify the twitter bots based on ontological engineering and Semantic Web Rule Language (SWRL) rules. Web Ontology Language (OWL), Semantic Web Rule Language (SWRL) rules, and reasoners are deployed to inductively learn the rules that distinguish a fake account (bot) from a real one, as well as to classify fake accounts into fake followers or spam bot. Our approach could properly identify the false account with an accuracy of (97%) in the first stage, after which these fake accounts were classified into spam or fake follower bots with an accuracy rate of (94.9%). Furthermore, it has been found that he ontology classifier is a more interpretable model that offers straightforward and human-interpretable decision rules, as compared to other machine learning classifiers.

View PDFchevron_right
SODEXO: A System Framework for Deployment and Exploitation of Deceptive Honeybots in Social Networks
Tamer Basar

As social networking sites such as Facebook and Twitter are becoming increasingly popular, a growing number of malicious attacks, such as phishing and malware, are exploiting them. Among these attacks, social botnets have sophisticated infrastructure that leverages compromised users accounts, known as bots, to automate the creation of new social networking accounts for spamming and malware propagation. Traditional defense mechanisms are often passive and reactive to non-zero-day attacks. In this paper, we adopt a proactive approach for enhancing security in social networks by infiltrating botnets with honeybots. We propose an integrated system named SODEXO which can be interfaced with social networking sites for creating deceptive honeybots and leveraging them for gaining information from botnets. We establish a Stackelberg game framework to capture strategic interactions between honeybots and botnets, and use quantitative methods to understand the tradeoffs of honeybots for their d...

View PDFchevron_right
Ontology Meter for Twitter Fake Accounts Detection
Mohammed Jabardi

International Journal of Intelligent Engineering and Systems, 2021

One of the most popular social media platforms, Twitter is used by millions of people to share information, broadcast tweets, and follow other users. Twitter is an open application programming interface and thus vulnerable to attack from fake accounts, which are primarily created for advertisement and marketing, defamation of an individual, consumer data acquisition, increase fake blog or website traffic, share disinformation, online fraud, and control. Fake accounts are harmful to both users and service providers, and thus recognizing and filtering out such content on social media is essential. This study presents a new approach to detect fake Twitter accounts using ontology and Semantic Web Rule Language (SWRL) rules. SWRL rules-based reasoner is utilized under predefined rules to infer whether the profile is trust or fake. This approach achieves a high detection accuracy of 97%. Furthermore, ontology classifier is an interpretable model that offers straightforward and human-inter...

View PDFchevron_right
Quantifiable Interactivity of Malicious URLs and the Social Media Ecosystem
Chun-Ming Lai

Electronics, 2020

Online social network (OSN) users are increasingly interacting with each other via articles, comments, and responses. When access control mechanisms are weak or absent, OSNs are perceived by attackers as rich environments for influencing public opinions via fake news posts or influencing commercial transactions via practices such as phishing. This has led to a body of research looking at potential ways to predict OSN user behavior using social science concepts such as conformity and the bandwagon effect. In this paper, we address the question of how social recommendation systems affect the occurrence of malicious URLs on Facebook, based on the assumption that there are no differences among recommendation systems in terms of delivering either legitimate or harmful information to users. Next, we use temporal features to build a prediction framework with >75% accuracy to predict increases in certain user group behaviors. Our effort involves the demarcation of URL classes, from malic...

View PDFchevron_right
TrollHunter [Evader]: Automated Detection [Evasion] of Twitter Trolls During the COVID-19 Pandemic
Filipo Sarevski

New Security Paradigms Workshop 2020, 2020

This paper presents TrollHunter, an automated reasoning mechanism we used to hunt for trolls on Twitter during the COVID-19 pandemic in 2020. Trolls, poised to disrupt the online discourse and spread disinformation, quickly seized the absence of a credible response to COVID-19 and created a COVID-19 infodemic by promulgating dubious content on Twitter. To counter the COVID-19 infodemic, the TrollHunter leverages a unique linguistic analysis of a multi-dimensional set of Twitter content features to detect whether or not a tweet was meant to troll. TrollHunter achieved 98.5% accuracy, 75.4% precision and 69.8% recall over a dataset of 1.3 million tweets. Without a final resolution of the pandemic in sight, it is unlikely that the trolls will go away, although they might be forced to evade automated hunting. To explore the plausibility of this strategy, we developed and tested an adversarial machine learning mechanism called TrollHunter-Evader. TrollHunter-Evader employs a Test Time Evasion (TTE) approach in a combination with a Markov chain-based mechanism to recycle originally trolling tweets. The recycled tweets were able to achieve a remarkable 40% decrease in the TrollHunter's ability to correctly identify trolling tweets. Because the COVID-19 infodemic could have a harmful impact on the COVID-19 pandemic, we provide an elaborate discussion about the implications of employing adversarial machine learning to evade Twitter troll hunts. CCS CONCEPTS • Security and privacy → Social network security and privacy; Malware and its mitigation; • Computing methodologies → Dynamic programming for Markov decision processes;

View PDFchevron_right
Towards Designing a Knowledge Graph-Based Framework for Investigating and Preventing Crime on Online Social Networks
Sule Yildirim-Yayilgan

Communications in Computer and Information Science, 2019

Online Social Networks (OSNs) have fundamentally and permanently altered the arena of digital and classical crime. Recently, law enforcement agencies (LEAs) have been using OSNs as a data source to collect Open Source Intelligence for fighting and preventing crime. However, most existing technological developments for LEAs to fight and prevent crime rely on conventional database technology, which poses problems. As social network usage is increasing rapidly, storing and querying data for information retrieval is critical because of the characteristics of social networks, such as unstructured nature, high volumes, velocity, and data interconnectivity. This paper presents a knowledge graph-based framework, an outline of a framework designed to support crime investigators solve and prevent crime, from data collection to inferring digital evidence admissible in court. The main component of the proposed framework is a hybrid ontology linked to a graph database, which provides LEAs with the possibility to process unstructured data and identify hidden patterns and relationships in the interconnected data of OSNs.

View PDFchevron_right
Approach to Containing the Outbreak of Malicious Information in Online Social Networks
Sriniketh Vijayaraghavan

From a petabyte era of today, the world is moving towards an Exabyte era aided by a digital tsunami that is sweeping the virtual world. The analysis of big data is going to be one of the topmost challenges to computer scientists and engineers. Within the world of big data, lies the smaller world of social networks which is going to outpace all other means of generation of digital data. Deriving information from this ocean of data with a purpose of identifying events caused by social triggers and thereafter modeling the propagation of these events is one of the high priority research areas in social network analysis. The recent events which the country witnessed involving the mass migration of northeastern Indians from Bangalore was spread primarily with the aid of social media. Identifying the triggers leading to such massive events would allow us to predict the onset, and subsequently the scale and pace, of such events in order for agencies to take appropriate measures. The study of the events leading to the generation of large social cascades are important in the field of security. By being able to understand the nature of these events by means of analyzing the various social triggers which led to its cascade, we will be able to contain its further spread.

View PDFchevron_right
Argumentation Models for Cyber Attribution
Paulo Shakarian

—A major challenge in cyber-threat analysis is combining information from different sources to find the person or the group responsible for the cyber-attack. It is one of the most important technical and policy challenges in cyber-security. The lack of ground truth for an individual responsible for an attack has limited previous studies. In this paper, we take a first step towards overcoming this limitation by building a dataset from the capture-the-flag event held at DEFCON, and propose an argumentation model based on a formal reasoning framework called DeLP (Defeasible Logic Programming) designed to aid an analyst in attributing a cyber-attack. We build models from latent variables to reduce the search space of culprits (attackers), and show that this reduction significantly improves the performance of classification-based approaches from 37% to 62% in identifying the attacker.

View PDFchevron_right
Detecting and Destroying Spam Activities on Social Networks: A Pragmatic Approach
Kamoru A B I O D U N Balogun PhD

Spam detection and destroying spamming activities has been a major research area of interest. In detecting the spam on social networks has been a major breakthrough in research field. Over the last few years, online social networks (OSNs), such as Facebook, Twitter and Sina Weibo, have experienced exponential growth in both profile registrations and social interactions. These networks allow people to share different information ranging from news, photos, videos, feelings, personal information or research activities. The rapid growth of OSNs has triggered a dramatic rise in malicious activities including spamming, fake accounts creation, phishing, and malware distribution. However, developing an efficient detection system that can identify malicious accounts, as well as their suspicious behaviors on the social networks, has been quite challenging. Researchers have proposed a number of features and methods to detect malicious accounts and spam activities. This paper presents a systematic mapping review of related studies that deal with detection of spam and identifying the root cause of spam and destroying spam activities on social networking sites. The mapping review focuses on four main categories, which include detection of spam accounts,fake accounts, compromised accounts, and phishing. To group the studies, the pragmatic approach of the different features and methods used in the literature to identify malicious spam and their behaviors are proposed. The review considered only social networking sites and excluded studies such as email spam detection. The significance of proposed features and methods, as well as their limitations, are analyzed. Key issues and challenges that require substantial research efforts are discussed. In conclusion, the paper identifies the important future research areas with the aim of advancing the development of scalable malicious spam and destroying the potential target of spam on social networks.

View PDFchevron_right
The Infiltration Game: Artificial Immune System for the Exploitation of Crime Relevant Information in Social Networks
Michael Spranger

Efficient and sensitive monitoring of social networks has become increasingly important for criminal investigations and crime prevention during the last years. However, with the growing amount of data and increasing complexity to be considered, monitoring tasks are difficult to handle, up to a point where manual observation is infeasible in most cases and, thus, automated systems are very much needed. In this paper, a system of adaptive agents is proposed, which aims at monitoring publicly accessible parts of a given social network for malign actions, such as propaganda, hate speeches or other malicious posts and comments made by groups or individuals. Subsequently, some of these agents try to gain access to crime relevant information exchanged in closed environments said individuals or groups are potentially part of. The presented monitoring and investigation processes are implemented by mimicking central aspects of the human immune system. The monitoring processes are realized by ...

View PDFchevron_right

References (50)

  1. Abokhodair, N., Yoo, D., McDonald, D.W. (2015). Dissecting a social botnet: growth, content and influence in Twitter. In Proceedings of the 18th ACM conference on computer supported cooperative work & social computing (pp. 839-851). ACM.
  2. Baget, J.F., Mugnier, M.L., Rudolph S, Thomazo M (2011a). Walking the complexity lines for generalized guarded existential rules. In 22nd international joint conference on artificial intelligence. AAAI Press.
  3. Baget, J.F., Mugnier, M.L., Thomazo, M. (2011b). Towards farsighted dependencies for existential rules. In Web reasoning and rule systems (pp. 30-45). Berlin: Springer.
  4. Bekiros, S., Nguyen, D.K., Junior, L.S., Uddin, G.S. (2017). Information diffusion, cluster formation and entropy-based network dynamics in equity and commodity markets. European Journal of Operational Research, 256(3), 945-961.
  5. Benigni, M., & Carley, K.M. (2016). From tweets to intelligence: Understanding the islamic jihad supporting community on twitter. In Xu, K.S., Reitter, D., Lee, D., Osgood, N. (Eds.) Social, cultural, and behavioral modeling (pp. 346-355). Cham: Springer International Publishing.
  6. Benigni, M.C., Joseph, K., Carley, K.M. (2017). Online extremism and the communities that sustain it: Detecting the isis supporting community on twitter. PloS one, 12(12), e0181405.
  7. Benigni, M.C., Joseph, K., Carley, K.M. (2019). Bot-ivistm: Assessing information manipulation in social media using network analytics, (pp. 19-42). Cham: Springer International Publishing.
  8. Bianconi, G. (2015). Interdisciplinary and physics challenges of network theory. EPL (Europhysics Letters), 111(5), 56001.
  9. Calì, A., Gottlob, G., Lukasiewicz, T. (2012). A general Datalog-based framework for tractable query answering over ontologies. Web Semantics: Science, Services and Agents on the World Wide Web, 4, 57-83.
  10. Cali, A., Gottlob, G., Pieris, A. (2012). Towards more expressive ontology languages: the query answering problem. Artificial Intelligence, 193, 87-128.
  11. Calì, A., Gottlob, G., Kifer, M. (2013). Taming the infinite chase: Query answering under expressive relational constraints. Journal of Artificial Intelligence Research, 48, 115-174.
  12. Centola, D. (2015). The social origins networks and diffusion. American Journal of Sociology, 120(5), 1295-1338.
  13. Conroy, N.J., Rubin, V.L., Chen, Y. (2015). Automatic deception detection: Methods for finding fake news. Proceedings of the association for information science and technology, 52(1), 1-4.
  14. Davis, C.A., Varol, O., Ferrara, E., Flammini, A., Menczer, F. (2016). BotOrNot: A system to evaluate social bots. In Proceedings of the 25th international conference companion on World Wide Web. (pp. 273-274). International World Wide Web Conferences Steering Committee.
  15. Deagustini, C.A.D., Martinez, M.V., Falappa, M.A., Simari, G.R. (2016). Datalog+/-ontology consolidation. Journal of Artificial Intelligence Research, 56, 613-656.
  16. Deagustini, C.A.D., Martinez, M.V., Falappa, M.A., Simari, G.R. (2018). How does incoherence affect inconsistency-tolerant semantics for Datalog+/-? Annals of Mathematics and Artificial Intelligence, 82(1-3), 43-68.
  17. Della Valle, E., Ceri, S., van Harmelen, F., Fensel, D. (2009). It's a streaming world! reasoning upon rapidly changing information. IEEE Intelligent Systems, 24(6), 83-89.
  18. Falappa, M.A., Kern-Isberner, G., Reis, M.D.L., Simari, G.R. (2012). Prioritized and non-prioritized multiple change on belief bases. J Philosophical Log, 41(1), 77-113.
  19. Falappa, M.A., García, A.J., Kern-Isberner, G., Simari, G.R. (2013). Stratified belief bases revision with argumentative inference. Journal of Philosophical Logic, 42(1), 161-193.
  20. Ferrara, E., Varol, O., Davis, C., Menczer, F., Flammini, A. (2016). The rise of social bots. Communications of the ACM, 59(7), 96-104.
  21. Gallo, F.R., Simari, G.I., Martinez, M.V., Falappa, M.A., Santos, N.A. (2017). Reasoning about sentiment and knowledge diffusion in social networks. IEEE Internet Computing, 21(6), 8-17.
  22. Gallo, F.R., Simari, G.I., Martinez, M.V., Falappa, M.A. (2019). Predicting user reactions to twitter feed content based on personality type and social cues. Future Generation Computer Systems (In Press).
  23. Jain, P., Kumaraguru, P., Joshi A (2013). @ i seek 'fb. me': Identifying users across multiple online social networks. In Proceedings of the 22nd International Conference on World Wide Web, (pp. 1259-1268). ACM.
  24. Jalili, M., & Perc, M. (2017). Information cascades in complex networks. Journal of Complex Networks, 5(5), 665-693.
  25. Kolaitism, P.G. (2018). Reflections on schema mappings, data exchange, and metadata management. In Proc.ACM SIG- MOD/PODS, (pp. 107-109). ACM.
  26. Konieczny, S., & Pino Pérez, R. (2002). Merging information under constraints: A logical framework. Journal of Logic And Computation, 12(5), 773-808.
  27. Konieczny, S., & Pino Pérez, R. (2011). Logic based merging. Journal of Philosophical Logic, 40(2), 239-270.
  28. Kumar, A., Garg, D., Singh, P. (2017a). Clustering approach to detect profile injection attacks in recommender system. International Journal Of Computer Applications, 166(6), 7-11.
  29. Kumar, S., Cheng, J., Leskovec, J., Subrahmanian, V. (2017b). An army of me: Sockpuppets in online discussion communities. In Proceedings of WWW, International World Wide Web conferences steering committee. (pp. 857-866).
  30. Leone, N., Manna, M., Terracina, G., Veltri, P. (2012). Efficiently computable datalog ∃ programs. In Thirteenth international confer- ence on the principles of knowledge representation and reasoning. (AAAI Press).
  31. Lukasiewicz, T., Martinez, M.V., Simari, G.I. (2012). Inconsistency handling in datalog+/-ontologies. In Proc. ECAI, (pp. 558-563).
  32. Malhotra, A., Totti, L., Meira, W. Jr., Kumaraguru, P., Almeida, V. (2012). Studying user footprints in different online social net- works. In Proc. ASONAM, IEEE computer society, (pp. 1065-1070).
  33. Malliaros, F.D., Rossi, M.E.G., Vazirgiannis, M. (2016). Locating influential nodes in complex networks. Scientific reports, 6, 19307.
  34. Marin, E., Diab, A., Shakarian, P. (2016). Product offerings in malicious hacker markets. In 2016 IEEE conference on intelligence and security informatics (ISI). (IEEE) (pp. 187-189).
  35. Miller, R.J. (2018). Open data integration. Proceedings of the VLDB Endowment, 11(12), 2130-2139.
  36. Noh, G., Ym, K.ang., Oh, H., Ck, Kim. (2014). Robust sybil attack defense with information level in online recommender systems. Expert Systems with Applications, 41(4), 1781-1791.
  37. Nunes, E., Shakarian, P., Simari, G.I. (2018). At-risk system identification via analysis of discussions on the darkweb. In 2018 APWG symposium on electronic crime research (eCrime), (pp 1-12). IEEE.
  38. Paredes, J.N., Martinez, M.V., Simari, G.I., Falappa, M.A. (2018a). Leveraging probabilistic existential rules for adversarial dedupli- cation. In Proceedings of PRUV@IJCAR 2018 CEUR-WS.
  39. Paredes, J.N., Simari, G.I., Martinez, M.V., Falappa, M.A. (2018b). First steps towards data-driven adversarial deduplication. Informa- tion, 9(8), 189.
  40. Pavlopoulos, G.A., Secrier, M., Moschopoulos, C.N., Soldatos, T.G., Kossida, S., Aerts, J., Schneider, R., Bagos, P.G. (2011). Using graph theory to analyze biological networks. BioData Mining, 4(1), 10.
  41. Robson, D. (2019). Why smart people are more likely to believe fake news. https://www.theguardian.com/books/2019/apr/ 01/why-smart-people-are-more-likely-to-believe-fake-news, (Accessed June 12, 2019).
  42. Sarkar, S., Almukaynizi, M., Shakarian, J., Shakarian, P. (2018). Predicting enterprise cyber incidents using social network analysis on the darkweb hacker forums. CoRR arXiv:1811.06537.
  43. Shakarian, P., Simari, G.I., Callahan, D. (2013). Reasoning about complex networks: A logic programming approach. Theory and Practice of Logic Programming, 13. 4-5-Online-Supplement.
  44. Shao, C., Ciampaglia, G.L., Varol, O., Flammini, A., Menczer, F. (2017). The spread of fake news by social bots, (pp 96-104). arXiv:170707592.
  45. Shu, K., Sliva, A., Wang, S., Tang, J., Liu, H. (2017). Fake news detection on social media: A data mining perspective. ACM SIGKDD Explorations Newsletter, 19(1), 22-36.
  46. Simari, G.I., Molinaro, C., Martinez, M.V., Lukasiewicz, L., Predoiu, L. (2017). Ontology-based data access leveraging subjective reports, 1st edn.: Springer Publishing Company, Inc.
  47. Subrahmanian, V.S., Azaria, A., Durst, S., Kagan, V., Galstyan, A., Lerman, K., Zhu, L., Ferrara, E., Flammini, A., Menczer, F. (2016). The DARPA twitter bot challenge. IEEE Computer, 49(6), 38-46.
  48. Tavabi, N., Goyal, P., Almukaynizi, M., Shakarian, P., Lerman, K. (2018). Darkembed: Exploit prediction with neural language models. In 32nd AAAI conference on artificial intelligence. (AAAI Press).
  49. Yamak, Z., Saunier, J., Vercouter, L. (2018). Sockscatch: Auto- matic detection and grouping of sockpuppets in social media. Knowledge-Based Systems, 149, 124-142.
  50. Zheng, X., Lai, Y.M., Chow, K.P., Hui, L.C., Yiu, S.M. (2011). Sockpuppet detection in online discussion forums. In Proc. international conference on intelligent information hiding and multimedia signal processing, (pp 374-377). IEEE.

Related papers

Semantics based analysis of botnet activity from heterogeneous data sources
Santiago Rincon

2015 International Wireless Communications and Mobile Computing Conference (IWCMC), 2015

The diversity in network devices, protocols, data sources and probes impose different challenges to uniformly measure and analyse network traffic. Analysing a network means considering distinctive reporting approaches and diverse methods to represent data, measure times or identify nodes. In this work, we tackle these challenges by relying on semantics, taking advantage of the ontologies' ability to map high-level network concepts to concrete information sources of different nature. In particular, we propose a simple architecture to map network concepts to data stored in relational databases. Based on this architecture, we implement a tool that looks for malicious bot activity, studying, from a unique point of view, DNS traffic from PCAP sources, and TCP connections from IPFIX reports. This approach is able to enhance current DNS based botnet detection methods, taking into account additional heterogeneous analysis elements.

View PDFchevron_right
Semantically Modeling Cyber Influence Campaigns (CICs): Ontology Model and Case Studies
Benjamin Turnbull

IEEE Access, 2021

This paper presents a novel ontological model of Cyber Influence Campaigns (CICs). The model accepts both physical and cyber based actions. The model represents the mechanics, linkages, and structure of tailored data to concurrently analyse both the physical and cyber realms. Influence modeling and ontological based analysis of social media has to date mainly focused on the use of ontologies to categorise or cluster the results of text based feature extraction. Whilst this is highly important for detection of misinformation that has the potential to influence a network, these methods do not provide a mechanism for mapping events across realms in order to quantify the influence in meaningful ways. By developing a novel semantic model and unique classes that leverage the graph nature of the ontological representation, our ontological model provides causal linkages and a framework which is applicable for analysis and deeper insights into CICs. This study also builds two tailored datasets for our ontological model from raw Twitter data as the IEEE DataPort Cyber Influence Campaign Ontology dataset (

View PDFchevron_right
Leveraging Analysis of User Behavior to Identify Malicious Activities in Large-Scale Social Networks
Majed AlRubaian

IEEE Transactions on Industrial Informatics, 2017

With the enormous growth and volume of online social networks and their features, along with the vast number of socially connected users, it has become difficult to explain the true semantic value of published content for the detection of user behaviors. Without understanding the contextual background, it is impractical to differentiate among various groups in terms of their relevance and mutual relations, or to identify the most significant representatives from the community at large. In this paper, we propose an integrated social media content analysis platform that leverages three levels of features, i.e., user-generated content, social graph connections, and user profile activities, to analyze and detect anomalous behaviors that deviate significantly from the norm in large-scale social networks. Several types of analyses have been conducted for a better understanding of the different user behaviors in the detection of highly adaptive malicious users. We attempted a novel approach regarding the process of data extraction and classification to contextualize large-scale networks in a proper manner. We also collected a significant number of user profiles from Twitter and YouTube, along with around 13 million channel activities. Extensive evaluations were conducted on real-world datasets of user activities for both social networks. The evaluation results show the effectiveness and utility of the proposed approach. Index Terms-Malicious activity, social network, sybil attack, user behaviors. I. INTRODUCTION O VER, the recent years, a number of online social network (OSN) activities has greatly expanded in both scope and volume, opening new opportunities for public exposure. It

View PDFchevron_right
Coornet: An Integrated Approach to Surface Problematic Content, Malicious Actors, and Coordinated Networks
Giada Marino

AoIR Selected Papers of Internet Research, 2021

As much as the field of mis/disinformation studies flourished during the last few years, the efforts to measure its prevalence and effects are often hindered or significantly limited by the fuzziness of the phenomenon under study. Differently from approaches based on sole content or actors detection, the authors implement an integrated approach to understand the interplay between manipulative actors, deceptive behavior, and harmful content. To do so, the authors present a study on patterns of coordinated activity on Facebook (named “Coordinated Link Sharing Behavior”) during the first and second waves of the COVID-19 pandemic in Italy. Coordinated Link Sharing Behavior” (CLSB) refers to the coordinated shares of the same news article in a very short timeframe by networks of pages, groups, and verified public profiles. CLSB is a strategy used to boost the reach of content by gaming algorithms that govern the distribution of posts. Additionally, this coordinated activity has been prov...

View PDFchevron_right
Special issue on intelligent systems for tackling online harms
Daniela Godoy

Personal and Ubiquitous Computing

View PDFchevron_right

Related topics

  • Information Systems
  • Computer Science
  • Architecture
  • Malicious Behavior

    • Cited by

    Engineering user-centered explanations to query answers in ontology-driven socio-technical systems
    Maria Vanina Martinez

    Semantic web, 2023

    The role of explanations in intelligent systems has in the last few years entered the spotlight as AI-based solutions appear in an ever-growing set of applications. Though data-driven (or machine learning) techniques are often used as examples of how opaque (also called black box) approaches can lead to problems such as bias and general lack of explainability and interpretability, in reality these features are difficult to tame in general, even for approaches that are based on tools typically considered to be more amenable, like knowledge-based formalisms. In this paper, we continue a line of research and development towards building tools that facilitate the implementation of explainable and interpretable hybrid intelligent socio-technical systems, focusing on features that users can leverage to build explanations to their queries. In particular, we present the implementation of a recently-proposed application framework (and make available its source code) for developing such systems, and explore user-centered mechanisms for building explanations based both on the kinds of explanations required (such as counterfactual, contextual, etc.) and the inputs used for building them (coming from various sources, such as the knowledge base and lower-level data-driven modules). In order to validate our approach, we develop two use cases, one as a running example for detecting hate speech in social platforms and the other as an extension that also contemplates cyberbullying scenarios.

    View PDFchevron_right
    580 California St., Suite 400
    San Francisco, CA, 94104
    © 2025 Academia. All rights reserved