SlideShare une entreprise Scribd logo

Detecting Spammers on Social Networks

Gianluca Stringhini
Gianluca Stringhini
TechnologieActualités & Politique
1  sur  30
Télécharger pour lire hors ligne
Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna University of California, Santa Barbara December 8, 2010
Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Part I Social Network Spam
Detecting Why Targeting Social Networks? Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Social networking sites are constantly gaining popularity Malicious parties can use them to: Steal personal information. Reach a large number of people. Execute targeted campaigns. Exploit networks of trust.
Detecting Sample Scenario Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
Detecting Sample Scenario Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
Detecting Sample Scenario Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
Detecting Sample Scenario Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
Detecting Is it really a problem? Spammers on Social Networks Gianluca Stringhini, Yes, it is Christopher Kruegel, and A previous study showed that: Giovanni Vigna 20% of the malicious friend requests are acknowledged. Users click on 45% of links posted by their “friends”. What makes spamming harder Javascript. Captchas. Twitter makes it easier Most pages are public. A developer-friendly API is provided.
Detecting User Awareness Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Part II Spam Observation
Detecting Our Methodology Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Honey profiles
Detecting Honey Profiles Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna 300 honey profiles on each of 3 popular social networks Facebook MySpace Twitter We observed the behavior of spammers Spam bots show some characteristic behavior. We also studied the targeting of users based on certain information.
Detecting Profiles that contacted us Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna network overall spammers facebook 3,831 173 myspace 22 8 twitter 397 361 Only a minority were spammers! We had to manually look at them.
Detecting Spam Behavior Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Follow users aggressively. Followed back only by a fraction of the requests. Most of their messages contain a URL. The structure of the messages sent does not change much. Profile names are built on “templates”. Profile pictures come from a small set. Use “easier” ways to spam (e.g., Facebook mobile, Twitter API).
Detecting Bot Categories Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna We categorize the bots based on their spam activity: Frequency of activity Slow Fast Ratio of spam content sent Greedy Stealth
Detecting Targeted Campaigns Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Gender-related campaigns: 80% of spam victims on Facebook are males. Some campaigns use lists of names to target victims.
Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Part III Spam Detection
Detecting Detection Approach Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna We leverage our observations to detect spammers. We built a classifier that looks for typical features Following Followers Ratio. URL Ratio. Message Similarity. Friend Choice. Messages sent. Number of Friends.
Detecting Spam Detection on Facebook Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna No FF feature available. Difficult to get data Dataset from the Los Angeles and New York networks. We applied our classifier to 790,951 profiles. We detected 130 spammers, with 7 false positives. Spammers did not use geographic networks
Detecting Spam Detection on Twitter Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna On Twitter, most profiles are public We developed a real-time spam detection system. Twitter limits us to 20,000 API calls per hour We started crawling for those profiles sending tweets similar to the ones that have been flagged as spam during the training. Whenever we find new spam tweets, we search for them as well.
Detecting @spamdetector Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Our Crawling is targeted to previously observed campaigns We set up a Twitter profile users can flag spammers to. Whenever our system detects one of those profiles as a spammer, it inserts it into the crawling system.
Detecting Results Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna In three months, we flagged 15,932 profiles as spammers. Twitter anti spam team considered 75 of these as false positives.
Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Part IV Analysis of Collected Spam
Detecting What kind of spam is out there? Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Traditional Spam (e.g., pharmacy, dating) Phishing Malicious sites (e.g., koobface)
Detecting Spammer typical traits Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna The vast majority of spammers are “slow”. There are both “greedy” and “stealth” spammers. They act in “campaigns”. There is no common way to target users
Detecting Spam Campaigns Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
Detecting Spam Campaigns Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
Detecting Campaign-Specific Features Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Profilename templates. Profile pictures. Typical spamming times. Typical hashtags / mentions. look at where the URLs point. Our system does not use them, but they might be useful to completely eradicate a given campaign.
Detecting Open Problems & Future Work Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Detect spammers whose behaviour differs from the modeled one. Detect DM spam.
Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Thanks!

Recommandé

Presentation-Detecting Spammers on Social Networks
Presentation-Detecting Spammers on Social NetworksPresentation-Detecting Spammers on Social Networks
Presentation-Detecting Spammers on Social Networks
Ashish Arora
 
Microposts2015 - Social Spam Detection on Twitter
Microposts2015 - Social Spam Detection on TwitterMicroposts2015 - Social Spam Detection on Twitter
Microposts2015 - Social Spam Detection on Twitter
azubiaga
 
EvilCohort: Detecting Communities of Malicious Accounts on Online Services
EvilCohort: Detecting Communities of Malicious Accounts on Online ServicesEvilCohort: Detecting Communities of Malicious Accounts on Online Services
EvilCohort: Detecting Communities of Malicious Accounts on Online Services
Gianluca Stringhini
 
That Ain't You: Detecting Spearphishing Through Behavioral Modelling
That Ain't You: Detecting Spearphishing Through Behavioral ModellingThat Ain't You: Detecting Spearphishing Through Behavioral Modelling
That Ain't You: Detecting Spearphishing Through Behavioral Modelling
Gianluca Stringhini
 
Thinking Like They Do: An Inside Look At Cybercriminal Operations
Thinking Like They Do: An Inside Look At Cybercriminal OperationsThinking Like They Do: An Inside Look At Cybercriminal Operations
Thinking Like They Do: An Inside Look At Cybercriminal Operations
Gianluca Stringhini
 
The Harvester, the Botmaster, and the Spammer: On the Relations Between the D...
The Harvester, the Botmaster, and the Spammer: On the Relations Between the D...The Harvester, the Botmaster, and the Spammer: On the Relations Between the D...
The Harvester, the Botmaster, and the Spammer: On the Relations Between the D...
Gianluca Stringhini
 
The Tricks of the Trade: What Makes Spam Campaigns Successful?
The Tricks of the Trade: What Makes Spam Campaigns Successful?The Tricks of the Trade: What Makes Spam Campaigns Successful?
The Tricks of the Trade: What Makes Spam Campaigns Successful?
Gianluca Stringhini
 
Shady Paths: Leveraging Surfing Crowds to Detect Malicious Web Pages
Shady Paths: Leveraging Surfing Crowds to Detect Malicious Web PagesShady Paths: Leveraging Surfing Crowds to Detect Malicious Web Pages
Shady Paths: Leveraging Surfing Crowds to Detect Malicious Web Pages
Gianluca Stringhini
 

Recommandé

Presentation-Detecting Spammers on Social Networks
Presentation-Detecting Spammers on Social NetworksPresentation-Detecting Spammers on Social Networks
Presentation-Detecting Spammers on Social Networks
Ashish Arora
 
Microposts2015 - Social Spam Detection on Twitter
Microposts2015 - Social Spam Detection on TwitterMicroposts2015 - Social Spam Detection on Twitter
Microposts2015 - Social Spam Detection on Twitter
azubiaga
 
EvilCohort: Detecting Communities of Malicious Accounts on Online Services
EvilCohort: Detecting Communities of Malicious Accounts on Online ServicesEvilCohort: Detecting Communities of Malicious Accounts on Online Services
EvilCohort: Detecting Communities of Malicious Accounts on Online Services
Gianluca Stringhini
 
That Ain't You: Detecting Spearphishing Through Behavioral Modelling
That Ain't You: Detecting Spearphishing Through Behavioral ModellingThat Ain't You: Detecting Spearphishing Through Behavioral Modelling
That Ain't You: Detecting Spearphishing Through Behavioral Modelling
Gianluca Stringhini
 
Thinking Like They Do: An Inside Look At Cybercriminal Operations
Thinking Like They Do: An Inside Look At Cybercriminal OperationsThinking Like They Do: An Inside Look At Cybercriminal Operations
Thinking Like They Do: An Inside Look At Cybercriminal Operations
Gianluca Stringhini
 
The Harvester, the Botmaster, and the Spammer: On the Relations Between the D...
The Harvester, the Botmaster, and the Spammer: On the Relations Between the D...The Harvester, the Botmaster, and the Spammer: On the Relations Between the D...
The Harvester, the Botmaster, and the Spammer: On the Relations Between the D...
Gianluca Stringhini
 
The Tricks of the Trade: What Makes Spam Campaigns Successful?
The Tricks of the Trade: What Makes Spam Campaigns Successful?The Tricks of the Trade: What Makes Spam Campaigns Successful?
The Tricks of the Trade: What Makes Spam Campaigns Successful?
Gianluca Stringhini
 
Shady Paths: Leveraging Surfing Crowds to Detect Malicious Web Pages
Shady Paths: Leveraging Surfing Crowds to Detect Malicious Web PagesShady Paths: Leveraging Surfing Crowds to Detect Malicious Web Pages
Shady Paths: Leveraging Surfing Crowds to Detect Malicious Web Pages
Gianluca Stringhini
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Miguel Araújo
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
wesley chun
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
Gabriella Davis
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
Rafal Los
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
debabhi2
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
Khem
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
Delhi Call girls
 
Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your Business
Pixlogix Infotech
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
RTylerCroy
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
Martijn de Jong
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
HampshireHUG
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
sudhanshuwaghmare1
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
Puma Security, LLC
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Igalia
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
Enterprise Knowledge
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
Joaquim Jorge
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
praypatel2
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Safe Software
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
Radu Cotescu
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
vu2urc
 
2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot
Marius Sescu
 
Everything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPTEverything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPT
Expeed Software
 

Contenu connexe

Dernier

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Miguel Araújo
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
Delhi Call girls
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
Puma Security, LLC
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Igalia
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
Enterprise Knowledge
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
Joaquim Jorge
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Safe Software
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
vu2urc
 

Dernier (20)

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your Business
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 

En vedette

How Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental HealthHow Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental Health
ThinkNow
 
Social Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie InsightsSocial Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie Insights
Kurio // The Social Media Age(ncy)
 
Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024
Search Engine Journal
 
5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary
SpeakerHub
 

En vedette (20)

2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot
 
Everything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPTEverything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPT
 
Product Design Trends in 2024 | Teenage Engineerings
Product Design Trends in 2024 | Teenage EngineeringsProduct Design Trends in 2024 | Teenage Engineerings
Product Design Trends in 2024 | Teenage Engineerings
 
How Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental HealthHow Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental Health
 
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
AI Trends in Creative Operations 2024 by Artwork Flow.pdfAI Trends in Creative Operations 2024 by Artwork Flow.pdf
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
 
Skeleton Culture Code
Skeleton Culture CodeSkeleton Culture Code
Skeleton Culture Code
 
PEPSICO Presentation to CAGNY Conference Feb 2024
PEPSICO Presentation to CAGNY Conference Feb 2024PEPSICO Presentation to CAGNY Conference Feb 2024
PEPSICO Presentation to CAGNY Conference Feb 2024
 
Content Methodology: A Best Practices Report (Webinar)
Content Methodology: A Best Practices Report (Webinar)Content Methodology: A Best Practices Report (Webinar)
Content Methodology: A Best Practices Report (Webinar)
 
How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024
 
Social Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie InsightsSocial Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie Insights
 
Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024
 
5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary
 
ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd
 
Getting into the tech field. what next
Getting into the tech field. what next Getting into the tech field. what next
Getting into the tech field. what next
 
Google's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search IntentGoogle's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search Intent
 
How to have difficult conversations
How to have difficult conversations How to have difficult conversations
How to have difficult conversations
 
Introduction to Data Science
Introduction to Data ScienceIntroduction to Data Science
Introduction to Data Science
 
Time Management & Productivity - Best Practices
Time Management & Productivity - Best PracticesTime Management & Productivity - Best Practices
Time Management & Productivity - Best Practices
 
The six step guide to practical project management
The six step guide to practical project managementThe six step guide to practical project management
The six step guide to practical project management
 
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
 

Detecting Spammers on Social Networks

  • 1. Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna University of California, Santa Barbara December 8, 2010
  • 2. Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Part I Social Network Spam
  • 3. Detecting Why Targeting Social Networks? Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Social networking sites are constantly gaining popularity Malicious parties can use them to: Steal personal information. Reach a large number of people. Execute targeted campaigns. Exploit networks of trust.
  • 4. Detecting Sample Scenario Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
  • 5. Detecting Sample Scenario Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
  • 6. Detecting Sample Scenario Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
  • 7. Detecting Sample Scenario Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
  • 8. Detecting Is it really a problem? Spammers on Social Networks Gianluca Stringhini, Yes, it is Christopher Kruegel, and A previous study showed that: Giovanni Vigna 20% of the malicious friend requests are acknowledged. Users click on 45% of links posted by their “friends”. What makes spamming harder Javascript. Captchas. Twitter makes it easier Most pages are public. A developer-friendly API is provided.
  • 9. Detecting User Awareness Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
  • 10. Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Part II Spam Observation
  • 11. Detecting Our Methodology Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Honey profiles
  • 12. Detecting Honey Profiles Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna 300 honey profiles on each of 3 popular social networks Facebook MySpace Twitter We observed the behavior of spammers Spam bots show some characteristic behavior. We also studied the targeting of users based on certain information.
  • 13. Detecting Profiles that contacted us Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna network overall spammers facebook 3,831 173 myspace 22 8 twitter 397 361 Only a minority were spammers! We had to manually look at them.
  • 14. Detecting Spam Behavior Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Follow users aggressively. Followed back only by a fraction of the requests. Most of their messages contain a URL. The structure of the messages sent does not change much. Profile names are built on “templates”. Profile pictures come from a small set. Use “easier” ways to spam (e.g., Facebook mobile, Twitter API).
  • 15. Detecting Bot Categories Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna We categorize the bots based on their spam activity: Frequency of activity Slow Fast Ratio of spam content sent Greedy Stealth
  • 16. Detecting Targeted Campaigns Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Gender-related campaigns: 80% of spam victims on Facebook are males. Some campaigns use lists of names to target victims.
  • 17. Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Part III Spam Detection
  • 18. Detecting Detection Approach Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna We leverage our observations to detect spammers. We built a classifier that looks for typical features Following Followers Ratio. URL Ratio. Message Similarity. Friend Choice. Messages sent. Number of Friends.
  • 19. Detecting Spam Detection on Facebook Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna No FF feature available. Difficult to get data Dataset from the Los Angeles and New York networks. We applied our classifier to 790,951 profiles. We detected 130 spammers, with 7 false positives. Spammers did not use geographic networks
  • 20. Detecting Spam Detection on Twitter Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna On Twitter, most profiles are public We developed a real-time spam detection system. Twitter limits us to 20,000 API calls per hour We started crawling for those profiles sending tweets similar to the ones that have been flagged as spam during the training. Whenever we find new spam tweets, we search for them as well.
  • 21. Detecting @spamdetector Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Our Crawling is targeted to previously observed campaigns We set up a Twitter profile users can flag spammers to. Whenever our system detects one of those profiles as a spammer, it inserts it into the crawling system.
  • 22. Detecting Results Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna In three months, we flagged 15,932 profiles as spammers. Twitter anti spam team considered 75 of these as false positives.
  • 23. Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Part IV Analysis of Collected Spam
  • 24. Detecting What kind of spam is out there? Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Traditional Spam (e.g., pharmacy, dating) Phishing Malicious sites (e.g., koobface)
  • 25. Detecting Spammer typical traits Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna The vast majority of spammers are “slow”. There are both “greedy” and “stealth” spammers. They act in “campaigns”. There is no common way to target users
  • 26. Detecting Spam Campaigns Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
  • 27. Detecting Spam Campaigns Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna
  • 28. Detecting Campaign-Specific Features Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Profilename templates. Profile pictures. Typical spamming times. Typical hashtags / mentions. look at where the URLs point. Our system does not use them, but they might be useful to completely eradicate a given campaign.
  • 29. Detecting Open Problems & Future Work Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Detect spammers whose behaviour differs from the modeled one. Detect DM spam.
  • 30. Detecting Spammers on Social Networks Gianluca Stringhini, Christopher Kruegel, and Giovanni Vigna Thanks!