Detecting Hacked Twitter Accounts based on Behavioural Change

Meike Nauta; Mena Habib; Maurice van Keulen

doi:10.5220/0006213600190031

Detecting Hacked Twitter Accounts based on Behavioural Change

Meike Nauta^*, Mena Habib, Maurice van Keulen

^*Corresponding author for this work

Robots, Agents, Interaction

Research output: Chapter in Book/Report/Conference proceeding › Conference article in proceeding › Academic › peer-review

Abstract

Social media accounts are valuable for hackers for spreading phishing links, malware and spam. Furthermore, some people deliberately hack an acquaintance to damage his or her image. This paper describes a classification for detecting hacked Twitter accounts. The model is mainly based on features associated with behavioural change such as changes in language, source, URLs, retweets, frequency and time. We experiment with a Twitter data set containing tweets of more than 100 Dutch users including 37 who were hacked. The model detects 99% of the malicious tweets which proves that behavioural changes can reveal a hack and that anomaly-based features perform better than regular features. Our approach can be used by social media systems such as Twitter to automatically detect a hack of an account only a short time after the fact allowing the legitimate owner of the account to be warned or protected, preventing reputational damage and annoyance.

Original language	English
Title of host publication	Proceedings of the 13th International Conference on Web Information Systems and Technologies
Pages	19-31
DOIs	https://doi.org/10.5220/0006213600190031
Publication status	Published - 2017

Access to Document

10.5220/0006213600190031Licence: CC BY-NC-ND

Cite this

@inproceedings{09ccd56019b345cfb1b9873f44a3d99c,

title = "Detecting Hacked Twitter Accounts based on Behavioural Change",

abstract = "Social media accounts are valuable for hackers for spreading phishing links, malware and spam. Furthermore, some people deliberately hack an acquaintance to damage his or her image. This paper describes a classification for detecting hacked Twitter accounts. The model is mainly based on features associated with behavioural change such as changes in language, source, URLs, retweets, frequency and time. We experiment with a Twitter data set containing tweets of more than 100 Dutch users including 37 who were hacked. The model detects 99% of the malicious tweets which proves that behavioural changes can reveal a hack and that anomaly-based features perform better than regular features. Our approach can be used by social media systems such as Twitter to automatically detect a hack of an account only a short time after the fact allowing the legitimate owner of the account to be warned or protected, preventing reputational damage and annoyance.",

author = "Meike Nauta and Mena Habib and Keulen, {Maurice van}",

year = "2017",

doi = "10.5220/0006213600190031",

language = "English",

pages = "19--31",

booktitle = "Proceedings of the 13th International Conference on Web Information Systems and Technologies",

}

TY - GEN

T1 - Detecting Hacked Twitter Accounts based on Behavioural Change

AU - Nauta, Meike

AU - Habib, Mena

AU - Keulen, Maurice van

PY - 2017

Y1 - 2017

N2 - Social media accounts are valuable for hackers for spreading phishing links, malware and spam. Furthermore, some people deliberately hack an acquaintance to damage his or her image. This paper describes a classification for detecting hacked Twitter accounts. The model is mainly based on features associated with behavioural change such as changes in language, source, URLs, retweets, frequency and time. We experiment with a Twitter data set containing tweets of more than 100 Dutch users including 37 who were hacked. The model detects 99% of the malicious tweets which proves that behavioural changes can reveal a hack and that anomaly-based features perform better than regular features. Our approach can be used by social media systems such as Twitter to automatically detect a hack of an account only a short time after the fact allowing the legitimate owner of the account to be warned or protected, preventing reputational damage and annoyance.

AB - Social media accounts are valuable for hackers for spreading phishing links, malware and spam. Furthermore, some people deliberately hack an acquaintance to damage his or her image. This paper describes a classification for detecting hacked Twitter accounts. The model is mainly based on features associated with behavioural change such as changes in language, source, URLs, retweets, frequency and time. We experiment with a Twitter data set containing tweets of more than 100 Dutch users including 37 who were hacked. The model detects 99% of the malicious tweets which proves that behavioural changes can reveal a hack and that anomaly-based features perform better than regular features. Our approach can be used by social media systems such as Twitter to automatically detect a hack of an account only a short time after the fact allowing the legitimate owner of the account to be warned or protected, preventing reputational damage and annoyance.

U2 - 10.5220/0006213600190031

DO - 10.5220/0006213600190031

M3 - Conference article in proceeding

SP - 19

EP - 31

BT - Proceedings of the 13th International Conference on Web Information Systems and Technologies

ER -