As this fracas unraveled, my first reaction was ! People on were losing their mind over the enormity of the data loot. Even my tech-leaning acquaintances were at-least mildly impressed that that data belonging to as many as 30 to 50 users was siphoned off in the guise of academic research and fed into sinister statistical pipelines drenched in malaise to wreck political mischief, put mildly. Cambridge Analytica HOLY-EFFING-SH*T social media million Facebook legally Now, here comes the plot-twist. This was a whole kind of a moment for me. As someone whose was in the field of , I knew for a fact that 50 million was . Academics who worked on the big data facet of the field had routinely amassed and touted far bigger numbers in their publications during my doctoral studies. different HOLY-EFFING-SH*T PhD thesis literally Network Science puny small Given the inherently romantic nature of the field, I still devote some of my Sundays towards keeping myself abreast of the exciting developments in the field. One such rather I recall having read early this year (published in Dec 2017) came to my mind when I saw the . This paper had bragged about figures that will make all those worried about the enormity of the Cambridge Analytica breach dive deep into depression. impressive paper Channel 4 news expose Are you ready for the number? Are ya sure? OK, here it goes: 368 MILLION USERS. In a paper smartly titled ‘ ’, a Swedish-Polish team of merely 4 researchers from 2 humble schools ( Blekinge Institute of Technology and Wrocław University of Science and Technology) had amassed a dataset of interacting in little over ! Do We Really Need to Catch Them All? A New User-Guided Social Media Crawling Method 368 million unique users 1.3 billion social interactions The abstract of the paper But how did a team of 4 pull this off? Combination of 2 ideas: a) Smart ‘attack/seed points’: Facebook pages. b) A nifty crawling engine. The team had built this rather impressive crawler — SINCE- Social Interaction Network Crawling Engine that they used to collect publicly available Facebook data. Now, which 160 pages you ask? It’s all openly available neatly curated and hosted on Harvard’s . dataverse The numbers on their descriptive stats table is strictly orgasmic. Take a look. Now, what if a reader/journalist wants to give this a shot? Sans sinister intentions, purely for intellectual curiosity? Can’t code? No worries. GUI tools to the rescue! If you can spare , you can get access to like the one above that will allow you to indirectly target users based on one rather interesting backdoor: ! $75 tools Facebook fan pages Example: Now, bear in mind that this is not an expose or a witch-hunt against the authors of the fine paper above or their excellent piece of engineering research. For what it’s worth, the authors do vividly state that ‘ ’, and I for one take their word for that. This work is from mainstream reputed academics. We adhere to Facebook’s data privacy policy by anonymizing all data to an extent where it is only possible to backtrack the particular public page that is analyzed do The main point here is that if you are considering state-of-the-art publications in areas such as Graph exploration or even recommendation engines, data belonging to a user-set spanning a few hundred million users is par for the course. Proof? This: So, now what? Does Facebook go through the entire list of academics who were given academic access one by one and flies one their Data engineer and a lawyer to make sure that the data is strongly anonymized? This where I squirm a little. Online social networks by their volition are tricky beasts to anonymize. This is not an unfounded fear. During my Ph.D, I knew of researchers who were actively working on de-anonymization strategies and had met with plenty of successes. Example: Also, believe it or not, we have been here before! In my first year at CMU, I had read Mike Zimmer’s paper on Facebook’s infamous breach of 2008. Because we millennials co-exist co-temporally on several social media platforms and carry forward our social allegiances elsewhere, all it takes is one or a few breaches (See figure below) and we will face cataclysmic ripple effect breakdown of anonymity. Harvard freshman from Wyoming So, perhaps, the only solution is forced deletion from every single academic repository that there is out there? Possibly so.

Analytica

Facebook

Target

YouTube

Kannada-MNIST dataset: https://github.com/vinayprabhu/Kannada_MNIST

Read My Stories

Too Long; Didn't Read

Questions about cloud security? Get answers here.

‘Academic’ honeypot datasets with 368 million users. Why is nobody talking about these!?

Too Long; Didn't Read

Companies Mentioned

Vinay Prabhu

About Author

TOPICS

THIS ARTICLE WAS FEATURED IN...

‘Academic’ honeypot datasets with 368 million users. Why is nobody talking about these!?

Too Long; Didn't Read

Companies Mentioned

Vinay Prabhu

About Author

TOPICS

THIS ARTICLE WAS FEATURED IN...

RELATED STORIES