Evaluating the Robustness of Fake News Detectors to Adversarial Attacks with Real User Comments (Extended Abstract)

Annat Koren; Chandler Underwood; Edoardo Serra; Francesca Spezzano

doi:10.1109/DSAA61799.2024.10722837

Evaluating the Robustness of Fake News Detectors to Adversarial Attacks with Real User Comments (Extended Abstract)

Annat Koren, Chandler Underwood, Edoardo Serra, Francesca Spezzano

Computer Science Department

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

The widespread use of social media has led to an increase in false and misleading information presented as legitimate news, also known as fake news. This poses a threat to societal stability and has led to the development of fake news de-tectors that use machine learning to flag suspicious information. However, existing fake news detection models are vulnerable to attacks by malicious actors who can manipulate data to change predictions. Research on attacks on news comments is limited, and current attack models are easily detectable. We propose two new attack strategies that instead use real, pre-existing comments from the same dataset as the news article to fool fake news detectors. Our experimental results show that fake news detectors are less robust to our proposed attack strategies than existing methods using pre-existing human-written comments, as well as a malicious synthetic comment generator.

Original language	English
Title of host publication	2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024
Publisher	Institute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)	9798350364941
DOIs	https://doi.org/10.1109/DSAA61799.2024.10722837
State	Published - 2024
Event	11th IEEE International Conference on Data Science and Advanced Analytics, DSAA 2024 - San Diego, United States Duration: 6 Oct 2024 → 10 Oct 2024

Publication series

Name	2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024

Conference

Conference	11th IEEE International Conference on Data Science and Advanced Analytics, DSAA 2024
Country/Territory	United States
City	San Diego
Period	6/10/24 → 10/10/24

Keywords

adversarial machine learning
machine learning robustness
misinformation

Access to Document

10.1109/DSAA61799.2024.10722837

Cite this

Koren, A., Underwood, C., Serra, E., & Spezzano, F. (2024). Evaluating the Robustness of Fake News Detectors to Adversarial Attacks with Real User Comments (Extended Abstract). In 2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024 (2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/DSAA61799.2024.10722837

Koren, Annat ; Underwood, Chandler ; Serra, Edoardo et al. / Evaluating the Robustness of Fake News Detectors to Adversarial Attacks with Real User Comments (Extended Abstract). 2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024. Institute of Electrical and Electronics Engineers Inc., 2024. (2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024).

@inproceedings{e12b1256556a4e4ca72f00824d873781,

title = "Evaluating the Robustness of Fake News Detectors to Adversarial Attacks with Real User Comments (Extended Abstract)",

abstract = "The widespread use of social media has led to an increase in false and misleading information presented as legitimate news, also known as fake news. This poses a threat to societal stability and has led to the development of fake news de-tectors that use machine learning to flag suspicious information. However, existing fake news detection models are vulnerable to attacks by malicious actors who can manipulate data to change predictions. Research on attacks on news comments is limited, and current attack models are easily detectable. We propose two new attack strategies that instead use real, pre-existing comments from the same dataset as the news article to fool fake news detectors. Our experimental results show that fake news detectors are less robust to our proposed attack strategies than existing methods using pre-existing human-written comments, as well as a malicious synthetic comment generator.",

keywords = "adversarial machine learning, machine learning robustness, misinformation",

author = "Annat Koren and Chandler Underwood and Edoardo Serra and Francesca Spezzano",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 11th IEEE International Conference on Data Science and Advanced Analytics, DSAA 2024 ; Conference date: 06-10-2024 Through 10-10-2024",

year = "2024",

doi = "10.1109/DSAA61799.2024.10722837",

language = "English",

series = "2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

booktitle = "2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024",

}

Koren, A, Underwood, C, Serra, E & Spezzano, F 2024, Evaluating the Robustness of Fake News Detectors to Adversarial Attacks with Real User Comments (Extended Abstract). in 2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024. 2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024, Institute of Electrical and Electronics Engineers Inc., 11th IEEE International Conference on Data Science and Advanced Analytics, DSAA 2024, San Diego, United States, 6/10/24. https://doi.org/10.1109/DSAA61799.2024.10722837

Evaluating the Robustness of Fake News Detectors to Adversarial Attacks with Real User Comments (Extended Abstract). / Koren, Annat; Underwood, Chandler; Serra, Edoardo et al.
2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024. Institute of Electrical and Electronics Engineers Inc., 2024. (2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Evaluating the Robustness of Fake News Detectors to Adversarial Attacks with Real User Comments (Extended Abstract)

AU - Koren, Annat

AU - Underwood, Chandler

AU - Serra, Edoardo

AU - Spezzano, Francesca

PY - 2024

Y1 - 2024

N2 - The widespread use of social media has led to an increase in false and misleading information presented as legitimate news, also known as fake news. This poses a threat to societal stability and has led to the development of fake news de-tectors that use machine learning to flag suspicious information. However, existing fake news detection models are vulnerable to attacks by malicious actors who can manipulate data to change predictions. Research on attacks on news comments is limited, and current attack models are easily detectable. We propose two new attack strategies that instead use real, pre-existing comments from the same dataset as the news article to fool fake news detectors. Our experimental results show that fake news detectors are less robust to our proposed attack strategies than existing methods using pre-existing human-written comments, as well as a malicious synthetic comment generator.

AB - The widespread use of social media has led to an increase in false and misleading information presented as legitimate news, also known as fake news. This poses a threat to societal stability and has led to the development of fake news de-tectors that use machine learning to flag suspicious information. However, existing fake news detection models are vulnerable to attacks by malicious actors who can manipulate data to change predictions. Research on attacks on news comments is limited, and current attack models are easily detectable. We propose two new attack strategies that instead use real, pre-existing comments from the same dataset as the news article to fool fake news detectors. Our experimental results show that fake news detectors are less robust to our proposed attack strategies than existing methods using pre-existing human-written comments, as well as a malicious synthetic comment generator.

KW - adversarial machine learning

KW - machine learning robustness

KW - misinformation

UR - http://www.scopus.com/inward/record.url?scp=85209407450&partnerID=8YFLogxK

U2 - 10.1109/DSAA61799.2024.10722837

DO - 10.1109/DSAA61799.2024.10722837

M3 - Conference contribution

AN - SCOPUS:85209407450

T3 - 2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024

BT - 2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 11th IEEE International Conference on Data Science and Advanced Analytics, DSAA 2024

Y2 - 6 October 2024 through 10 October 2024

ER -

Koren A, Underwood C, Serra E , Spezzano F. Evaluating the Robustness of Fake News Detectors to Adversarial Attacks with Real User Comments (Extended Abstract). In 2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024. Institute of Electrical and Electronics Engineers Inc. 2024. (2024 IEEE 11th International Conference on Data Science and Advanced Analytics, DSAA 2024). doi: 10.1109/DSAA61799.2024.10722837

Evaluating the Robustness of Fake News Detectors to Adversarial Attacks with Real User Comments (Extended Abstract)

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this