Goto

Collaborating Authors

 darknet market


Chainlet Orbits: Topological Address Embedding for the Bitcoin Blockchain

arXiv.org Artificial Intelligence

The rise of cryptocurrencies like Bitcoin, which enable transactions with a degree of pseudonymity, has led to a surge in various illicit activities, including ransomware payments and transactions on darknet markets. These illegal activities often utilize Bitcoin as the preferred payment method. However, current tools for detecting illicit behavior either rely on a few heuristics and laborious data collection processes or employ computationally inefficient graph neural network (GNN) models that are challenging to interpret. To overcome the computational and interpretability limitations of existing techniques, we introduce an effective solution called Chainlet Orbits. This approach embeds Bitcoin addresses by leveraging their topological characteristics in transactions. By employing our innovative address embedding, we investigate e-crime in Bitcoin networks by focusing on distinctive substructures that arise from illicit behavior. The results of our node classification experiments demonstrate superior performance compared to state-of-the-art methods, including both topological and GNN-based approaches. Moreover, our approach enables the use of interpretable and explainable machine learning models in as little as 15 minutes for most days on the Bitcoin transaction network.


URM4DMU: an user represention model for darknet markets users

arXiv.org Artificial Intelligence

Darknet markets provide a large platform for trading illicit goods and services due to their anonymity. Learning an invariant representation of each user based on their posts on different markets makes it easy to aggregate user information across different platforms, which helps identify anonymous users. Traditional user representation methods mainly rely on modeling the text information of posts and cannot capture the temporal content and the forum interaction of posts. While recent works mainly use CNN to model the text information of posts, failing to effectively model posts whose length changes frequently in an episode. To address the above problems, we propose a model named URM4DMU(User Representation Model for Darknet Markets Users) which mainly improves the post representation by augmenting convolutional operators and self-attention with an adaptive gate mechanism. It performs much better when combined with the temporal content and the forum interaction of posts. We demonstrate the effectiveness of URM4DMU on four darknet markets. The average improvements on MRR value and Recall@10 are 22.5% and 25.5% over the state-of-the-art method respectively.


How to Not Get Caught When You Launder Money on Blockchain?

arXiv.org Artificial Intelligence

The number of blockchain users has tremendously grown in recent years. As an unintended consequence, e-crime transactions on blockchains has been on the rise. Consequently, public blockchains have become a hotbed of research for developing AI tools to detect and trace users and transactions that are related to e-crime. We argue that following a few select strategies can make money laundering on blockchain virtually undetectable with most of the existing tools and algorithms. As a result, the effective combating of e-crime activities involving cryptocurrencies requires the development of novel analytic methodology in AI.


Identifying Hidden Buyers in Darknet Markets via Dirichlet Hawkes Process

arXiv.org Machine Learning

The darknet markets are notorious black markets in cyberspace, which involve selling or brokering drugs, weapons, stolen credit cards, and other illicit goods. To combat illicit transactions in the cyberspace, it is important to analyze the behaviors of participants in darknet markets. Currently, many studies focus on studying the behavior of vendors. However, there is no much work on analyzing buyers. The key challenge is that the buyers are anonymized in darknet markets. For most of the darknet markets, We only observe the first and last digits of a buyer's ID, such as ``a**b''. To tackle this challenge, we propose a hidden buyer identification model, called UNMIX, which can group the transactions from one hidden buyer into one cluster given a transaction sequence from an anonymized ID. UNMIX is able to model the temporal dynamics information as well as the product, comment, and vendor information associated with each transaction. As a result, the transactions with similar patterns in terms of time and content group together as the subsequence from one hidden buyer. Experiments on the data collected from three real-world darknet markets demonstrate the effectiveness of our approach measured by various clustering metrics. Case studies on real transaction sequences explicitly show that our approach can group transactions with similar patterns into the same clusters.


Machine Learning Goes Dark And Deep To Find Zero-Day Exploits Before Day Zero

#artificialintelligence

How do you stop someone from exploiting a vulnerability in your software when you don't know that the vulnerability exists? That's the problem faced by cyber security experts who try to stop zero-day exploits. If you're lucky, a friendly spots the vulnerability and tells you about it so you can fix it before any damage is done. If you're unlucky, the hackers find it first and you find out after the attacks begin on day zero. Mega-corporations like Google and Apple are attacking this problem with bounties offered to anyone who can hack their software.


Machine Learning Goes Dark And Deep To Find Zero-Day Exploits Before Day Zero

#artificialintelligence

How do you stop someone from exploiting a vulnerability in your software when you don't know that the vulnerability exists? That's the problem faced by cyber security experts who try to stop zero-day exploits. If you're lucky, a friendly spots the vulnerability and tells you about it so you can fix it before any damage is done. If you're unlucky, the hackers find it first and you find out after the attacks begin on day zero. Mega-corporations like and are attacking this problem with bounties offered to anyone who can hack their software.