- Lin-Manuel Miranda tweets his disappointment about Trump and Puerto Rico 3 Years Ago
- YouTuber Simone Giertz reveals her brain tumor has returned 3 Years Ago
- ‘Conversations With a Killer: The Ted Bundy Tapes’ feels like a bad one-man show 3 Years Ago
- Post-cataclysmic sci-fi flick ‘IO’ fails to stand out in its saturated genre Today 12:30 PM
- Trump peddles right-wing ‘prayer rug’ conspiracy Today 11:29 AM
- Summit1G reportedly overtakes Ninja as king of Twitch subscribers Today 11:18 AM
- FCC’s request to postpone net neutrality case denied by federal court Today 11:02 AM
- School employee investigated for yelling, ‘Build the wall,’ at picketing teachers Today 10:50 AM
- Netflix announces staggering viewership for ‘You’—but many are skeptical Today 10:50 AM
- YouTuber Jesus Christ responds to sexual misconduct allegation Today 10:32 AM
- Pro-Trump Twitter blasts BuzzFeed report claiming Trump directed Cohen to lie to Congress Today 10:24 AM
- Mexican airline trolls Americans with DNA tests—and discounts Today 9:58 AM
- There are apparently ASMR videos for role-playing with a fictional boyfriend Today 9:08 AM
- Let’s take a look at Captain Pike’s Starfleet service record in ‘Star Trek: Discovery’ Today 8:25 AM
- How to watch Demetrius Andrade vs. Artur Akavov for free Today 7:00 AM
New system automatically detects when your Twitter or Facebook account gets hacked
Social networks are a battlefield.
If that sounds strange, remember the 2013 hack against the Associated Press’s Twitter account that claimed a terror attack on the White House. Thanks to a single tweet from the AP account, which was shared thousands of times, the U.S. stock market instantly plummeted $136 billion before Twitter flagged the account as hacked. Or consider the last four years of Syrian Electronic Army attacks against major Western social media accounts and websites (including this one).
Given this vulnerability, a key question has arisen: How do you sniff out the hackers aiming for social media accounts that have become such impressively important and trusted megaphones?
A new system called COMPA quickly identifies compromised social network accounts by checking old habits against sudden changes, a significantly reliable way to detect hacked accounts, according to new research from American and British academics posted at Cornell University’s arXiv.
“COMPA is based on a simple observation: social network users develop habits over time, and these habits are fairly stable,” the researchers wrote.
“A typical social network user, for example, might consistently check her posts in the morning from her phone, and during the lunch break from her desktop computer. Furthermore, interaction will likely be limited to a moderate number of social network contacts (i.e., friends). Conversely, if the account falls under the control of an adversary, the messages that the attacker sends will likely show anomalies compared to the typical behavior of the user.”
COMPA builds a behavioral profile of each user based on a few pertinent questions—When do they post? How do they access the social network? What language do they write in? What kind of links do they send? Who are they connecting with?—and then watches for aberrations like an out-of-character tweet or a strange Facebook message that doesn’t match up.
When an action deviates from the behavioral profile, COMPA flags the account as potentially compromised.
One bizarre caveat originates in 2013, when the American restaurant Chipotle faked a social media hack as a publicity stunt. The hack fooled a lot of people—Chipotle’s Twitter account gained 1,600 percent more followers in a single day—but COMPA recognized the fraud, researchers boasted, because the fake hack actually matched previous behavior.
You can read the research below:
The research paper was written by Manuel Egele of Boston University, Gianluca Stringhini of University College London, as well as Christopher Kruegel and Giovanni Vigna of UC Santa Barbara.
Illustration by Max Fleishman
Patrick Howell O'Neill is a notable cybersecurity reporter whose work has focused on the dark net, national security, and law enforcement. A former senior writer at the Daily Dot, O'Neill joined CyberScoop in October 2016. I am a cybersecurity journalist at CyberScoop. I cover the security industry, national security and law enforcement.