000000272 001__ 272
000000272 005__ 20130522141946.0
000000272 037__ $$aLERSSE-REPORT-2012-001
000000272 100__ $$aYazan Boshmaf
000000272 245__ $$aThe Socialbot Network: When Bots Socialize for Fame and Money
000000272 260__ $$c2012-02-27
000000272 300__ $$amult. p
000000272 520__ $$aOnline Social Networks (OSNs) have attracted millions of active users and have become an integral part of today's Web ecosystem. Unfortunately, in the wrong hands, OSNs can be used to harvest private user data, distribute malware, control botnets, perform surveillance, influence algorithmic trading, and spread misinformation. Usually, an adversary starts off by running an infiltration campaign using hijacked or adversary-owned OSN accounts, with an objective to connect to a large number of users in the targeted OSN. In this paper, we evaluate how vulnerable OSNs are to a large-scale infiltration by socialbots: bots that control OSN accounts and mimic actions of real users. We adopted a traditional web-based botnet design and built a prototype of a Socialbot Network (SbN): a group of coordinated programmable socialbots. We operated our prototype on Facebook for eight weeks, and collected data about users' behavior in response to a large-scale infiltration by our socialbots. Our results show that (1) OSNs, such as Facebook, can be infiltrated with a success rate of up to 80%, (2) depending on users' privacy settings, a successful infiltration can result in privacy breaches where even more users' data are exposed, and (3) in practice, OSN security defenses, such as the Facebook Immune System, are not effective enough in detecting or stopping a large-scale infiltration as it occurs.
000000272 6531_ $$aOnline Social Networks
000000272 6531_ $$aSocial Network Security
000000272 6531_ $$aLarge-scale Infiltration
000000272 6531_ $$aSocialbots
000000272 6531_ $$aBotnets
000000272 700__ $$aIldar Muslukhov
000000272 700__ $$aKonstantin Beznosov
000000272 700__ $$aMatei Ripeanu
000000272 8560_ $$fboshmaf@ece.ubc.ca
000000272 8564_ $$uhttp://lersse-dl.ece.ubc.ca/record/272/files/272.pdf$$yTransfer from CDS 0.99.7
000000272 909C4 $$pYazan Boshmaf, Ildar Muslukhov, Konstantin Beznosov, and Matei Ripeanu. The socialbot network: when bots socialize for fame and money. In Proceedings of the 27th Annual Computer Security Applications Conference (ACSAC'11), December 2011
000000272 980__ $$aREPORT