Dating with Scambots

understanding the ecosystem of fraudulent dating applications

Yangyu Hu, Haoyu Wang, Yajin Zhou, Yao Guo, Li Li, Bingxuan Luo, Fangren Xu

Research output: Contribution to journalArticleResearchpeer-review

Abstract

In this work, we are focusing on a new and yet uncovered way for malicious apps to gain profit. They claim to be dating apps. However, their sole purpose is to lure users into purchasing premium/VIP services to start conversations with other (likely fake female) accounts in the app. We call these apps as fraudulent dating apps. This paper performs a systematic study to understand the whole ecosystem of fraudulent dating apps. Specifically, we have proposed a three-phase method to detect them and subsequently comprehend their characteristics via analyzing the existing account profiles. Our observation reveals that most of the accounts are not managed by real persons, but by chatbots based on predefined conversation templates. We also analyze the business model of these apps and reveal that multiple parties are actually involved in the ecosystem, including producers who develop apps, publishers who publish apps to gain profit, and the distribution network that is responsible for distributing apps to end users. Finally, we analyze the impact of them to users (i.e., victims) and estimate the overall revenue. Our work is the first systematic study on fraudulent dating apps, and the results demonstrate the urge for a solution to protect users.

Original languageEnglish
Number of pages18
JournalIEEE Transactions on Dependable and Secure Computing
DOIs
Publication statusAccepted/In press - 2019

Keywords

  • Advertising
  • Android
  • Avatars
  • Dating App
  • Ecosystems
  • Fraud
  • Google
  • Malware
  • Mobile App
  • Systematics

Cite this

@article{67652190268747059bf049b0aa0f3311,
title = "Dating with Scambots: understanding the ecosystem of fraudulent dating applications",
abstract = "In this work, we are focusing on a new and yet uncovered way for malicious apps to gain profit. They claim to be dating apps. However, their sole purpose is to lure users into purchasing premium/VIP services to start conversations with other (likely fake female) accounts in the app. We call these apps as fraudulent dating apps. This paper performs a systematic study to understand the whole ecosystem of fraudulent dating apps. Specifically, we have proposed a three-phase method to detect them and subsequently comprehend their characteristics via analyzing the existing account profiles. Our observation reveals that most of the accounts are not managed by real persons, but by chatbots based on predefined conversation templates. We also analyze the business model of these apps and reveal that multiple parties are actually involved in the ecosystem, including producers who develop apps, publishers who publish apps to gain profit, and the distribution network that is responsible for distributing apps to end users. Finally, we analyze the impact of them to users (i.e., victims) and estimate the overall revenue. Our work is the first systematic study on fraudulent dating apps, and the results demonstrate the urge for a solution to protect users.",
keywords = "Advertising, Android, Avatars, Dating App, Ecosystems, Fraud, Google, Malware, Mobile App, Systematics",
author = "Yangyu Hu and Haoyu Wang and Yajin Zhou and Yao Guo and Li Li and Bingxuan Luo and Fangren Xu",
year = "2019",
doi = "10.1109/TDSC.2019.2908939",
language = "English",
journal = "IEEE Transactions on Dependable and Secure Computing",
issn = "1545-5971",
publisher = "IEEE, Institute of Electrical and Electronics Engineers",

}

Dating with Scambots : understanding the ecosystem of fraudulent dating applications. / Hu, Yangyu; Wang, Haoyu; Zhou, Yajin; Guo, Yao; Li, Li; Luo, Bingxuan; Xu, Fangren.

In: IEEE Transactions on Dependable and Secure Computing, 2019.

Research output: Contribution to journalArticleResearchpeer-review

TY - JOUR

T1 - Dating with Scambots

T2 - understanding the ecosystem of fraudulent dating applications

AU - Hu, Yangyu

AU - Wang, Haoyu

AU - Zhou, Yajin

AU - Guo, Yao

AU - Li, Li

AU - Luo, Bingxuan

AU - Xu, Fangren

PY - 2019

Y1 - 2019

N2 - In this work, we are focusing on a new and yet uncovered way for malicious apps to gain profit. They claim to be dating apps. However, their sole purpose is to lure users into purchasing premium/VIP services to start conversations with other (likely fake female) accounts in the app. We call these apps as fraudulent dating apps. This paper performs a systematic study to understand the whole ecosystem of fraudulent dating apps. Specifically, we have proposed a three-phase method to detect them and subsequently comprehend their characteristics via analyzing the existing account profiles. Our observation reveals that most of the accounts are not managed by real persons, but by chatbots based on predefined conversation templates. We also analyze the business model of these apps and reveal that multiple parties are actually involved in the ecosystem, including producers who develop apps, publishers who publish apps to gain profit, and the distribution network that is responsible for distributing apps to end users. Finally, we analyze the impact of them to users (i.e., victims) and estimate the overall revenue. Our work is the first systematic study on fraudulent dating apps, and the results demonstrate the urge for a solution to protect users.

AB - In this work, we are focusing on a new and yet uncovered way for malicious apps to gain profit. They claim to be dating apps. However, their sole purpose is to lure users into purchasing premium/VIP services to start conversations with other (likely fake female) accounts in the app. We call these apps as fraudulent dating apps. This paper performs a systematic study to understand the whole ecosystem of fraudulent dating apps. Specifically, we have proposed a three-phase method to detect them and subsequently comprehend their characteristics via analyzing the existing account profiles. Our observation reveals that most of the accounts are not managed by real persons, but by chatbots based on predefined conversation templates. We also analyze the business model of these apps and reveal that multiple parties are actually involved in the ecosystem, including producers who develop apps, publishers who publish apps to gain profit, and the distribution network that is responsible for distributing apps to end users. Finally, we analyze the impact of them to users (i.e., victims) and estimate the overall revenue. Our work is the first systematic study on fraudulent dating apps, and the results demonstrate the urge for a solution to protect users.

KW - Advertising

KW - Android

KW - Avatars

KW - Dating App

KW - Ecosystems

KW - Fraud

KW - Google

KW - Malware

KW - Mobile App

KW - Systematics

UR - http://www.scopus.com/inward/record.url?scp=85070686708&partnerID=8YFLogxK

U2 - 10.1109/TDSC.2019.2908939

DO - 10.1109/TDSC.2019.2908939

M3 - Article

JO - IEEE Transactions on Dependable and Secure Computing

JF - IEEE Transactions on Dependable and Secure Computing

SN - 1545-5971

ER -