Study Reveals Social Media Platforms' Inadequate Defenses Against AI Bots
3 Sources
3 Sources
[1]
AI bots easily bypass some social media safeguards, study reveals
While artificial intelligence (AI) bots can serve a legitimate purpose on social media -- such as marketing or customer service -- some are designed to manipulate public discussion, incite hate speech, spread misinformation or enact fraud and scams. To combat potentially harmful bot activity, some platforms have published policies on using bots and created technical mechanisms to enforce those policies. But are those policies and mechanisms enough to keep social media users safe? Research from the University of Notre Dame analyzed the AI bot policies and mechanisms of eight social media platforms: LinkedIn, Mastodon, Reddit, TikTok, X (formerly known as Twitter) and Meta platforms Facebook, Instagram and Threads. Then researchers attempted to launch bots to test bot policy enforcement processes. Their research is published on the arXiv preprint server. The researchers successfully published a benign "test" post from a bot on every platform. "As computer scientists, we know how these bots are created, how they get plugged in and how malicious they can be, but we hoped the social media platforms would block or shut the bots down and it wouldn't really be a problem," said Paul Brenner, a faculty member and director in the Center for Research Computing at Notre Dame and senior author of the study. "So we took a look at what the platforms, often vaguely, state they do and then tested to see if they actually enforce their policies." The researchers found that the Meta platforms were the most difficult to launch bots on -- it took multiple attempts to bypass their policy enforcement mechanisms. Although the researchers racked up three suspensions in the process, they were successful in launching a bot and posting a "test" post on their fourth attempt. The only other platform that presented a modest challenge was TikTok, due to the platform's frequent use of CAPTCHAs. But three platforms provided no challenge at all. "Reddit, Mastodon and X were trivial," Brenner said. "Despite what their policy says or the technical bot mechanisms they have, it was very easy to get a bot up and working on X. They aren't effectively enforcing their policies." As of the study's publishing date, all test bot accounts and posts were still live. Brenner shared that interns, who had only a high school-level education and minimal training, were able to launch the test bots using technology that is readily available to the public, highlighting how easy it is to launch bots online. Overall, the researchers concluded that none of the eight social media platforms tested are providing sufficient protection and monitoring to keep users safe from malicious bot activity. Brenner argued that laws, economic incentive structures, user education and technological advances are needed to protect the public from malicious bots. "There needs to be U.S. legislation requiring platforms to identify human versus bot accounts because we know people can't differentiate the two by themselves," Brenner said. "The economics right now are skewed against this as the number of accounts on each platform are a basis of marketing revenue. This needs to be in front of policymakers." To create their bots, researchers used Selenium, which is a suite of tools for automating web browsers, and OpenAI's GPT-4o and DALL-E 3. The research was led by Kristina Radivojevic, a doctoral student at Notre Dame.
[2]
Social media policies are no match for AI bots
Social media platforms aren't doing enough to stop harmful AI bots, research finds. While artificial intelligence (AI) bots can serve a legitimate purpose on social media -- such as marketing or customer service -- some are designed to manipulate public discussion, incite hate speech, spread misinformation, or enact fraud and scams. To combat potentially harmful bot activity, some platforms have published policies on using bots and created technical mechanisms to enforce those policies. But are those policies and mechanisms enough to keep social media users safe? The new research analyzed the AI bot policies and mechanisms of eight social media platforms: LinkedIn, Mastodon, Reddit, TikTok, X (formerly known as Twitter), and Meta platforms Facebook, Instagram, and Threads. Then researchers attempted to launch bots to test bot policy enforcement processes. The researchers successfully published a benign "test" post from a bot on every platform. "As computer scientists, we know how these bots are created, how they get plugged in, and how malicious they can be, but we hoped the social media platforms would block or shut the bots down and it wouldn't really be a problem," says Paul Brenner, a faculty member and director in the Center for Research Computing at the University of Notre Dame and senior author of the study. "So we took a look at what the platforms, often vaguely, state they do and then tested to see if they actually enforce their policies." The researchers found that the Meta platforms were the most difficult to launch bots on -- it took multiple attempts to bypass their policy enforcement mechanisms. Although the researchers racked up three suspensions in the process, they were successful in launching a bot and posting a "test" post on their fourth attempt. The only other platform that presented a modest challenge was TikTok, due to the platform's frequent use of CAPTCHAs. But three platforms provided no challenge at all. "Reddit, Mastodon, and X were trivial," Brenner says. "Despite what their policy says or the technical bot mechanisms they have, it was very easy to get a bot up and working on X. They aren't effectively enforcing their policies." As of the study's publishing date, all test bot accounts and posts were still live. Brenner shared that interns, who had only a high school-level education and minimal training, were able to launch the test bots using technology that is readily available to the public, highlighting how easy it is to launch bots online. Overall, the researchers concluded that none of the eight social media platforms tested are providing sufficient protection and monitoring to keep users safe from malicious bot activity. Brenner argued that laws, economic incentive structures, user education, and technological advances are needed to protect the public from malicious bots. "There needs to be US legislation requiring platforms to identify human versus bot accounts because we know people can't differentiate the two by themselves," Brenner says. "The economics right now are skewed against this as the number of accounts on each platform are a basis of marketing revenue. This needs to be in front of policymakers." To create their bots, researchers used Selenium, which is a suite of tools for automating web browsers, and OpenAI's GPT-4o and DALL-E 3. The research appears as a pre-print on ArXiv. This pre-print paper has not undergone peer review and its findings are preliminary.
[3]
Social media platforms aren't doing enough to st | Newswise
Paul Brenner, Director in the Center for Research Computing at the University of Notre Dame While artificial intelligence (AI) bots can serve a legitimate purpose on social media -- such as marketing or customer service -- some are designed to manipulate public discussion, incite hate speech, spread misinformation or enact fraud and scams. To combat potentially harmful bot activity, some platforms have published policies on using bots and created technical mechanisms to enforce those policies. But are those policies and mechanisms enough to keep social media users safe? New research from the University of Notre Dame analyzed the AI bot policies and mechanisms of eight social media platforms: LinkedIn, Mastodon, Reddit, TikTok, X (formerly known as Twitter) and Meta platforms Facebook, Instagram and Threads. Then researchers attempted to launch bots to test bot policy enforcement processes. The researchers successfully published a benign "test" post from a bot on every platform. "As computer scientists, we know how these bots are created, how they get plugged in and how malicious they can be, but we hoped the social media platforms would block or shut the bots down and it wouldn't really be a problem," said Paul Brenner, a faculty member and director in the Center for Research Computing at Notre Dame and senior author of the study. "So we took a look at what the platforms, often vaguely, state they do and then tested to see if they actually enforce their policies." The researchers found that the Meta platforms were the most difficult to launch bots on -- it took multiple attempts to bypass their policy enforcement mechanisms. Although the researchers racked up three suspensions in the process, they were successful in launching a bot and posting a "test" post on their fourth attempt. The only other platform that presented a modest challenge was TikTok, due to the platform's frequent use of CAPTCHAs. But three platforms provided no challenge at all. "Reddit, Mastodon and X were trivial," Brenner said. "Despite what their policy says or the technical bot mechanisms they have, it was very easy to get a bot up and working on X. They aren't effectively enforcing their policies." As of the study's publishing date, all test bot accounts and posts were still live. Brenner shared that interns, who had only a high school-level education and minimal training, were able to launch the test bots using technology that is readily available to the public, highlighting how easy it is to launch bots online. Overall, the researchers concluded that none of the eight social media platforms tested are providing sufficient protection and monitoring to keep users safe from malicious bot activity. Brenner argued that laws, economic incentive structures, user education and technological advances are needed to protect the public from malicious bots. "There needs to be U.S. legislation requiring platforms to identify human versus bot accounts because we know people can't differentiate the two by themselves," Brenner said. "The economics right now are skewed against this as the number of accounts on each platform are a basis of marketing revenue. This needs to be in front of policymakers." To create their bots, researchers used Selenium, which is a suite of tools for automating web browsers, and OpenAI's GPT-4o and DALL-E 3. The research, published as a pre-print on ArXiv, was led by Kristina Radivojevic, a doctoral student at Notre Dame, and supported by CRC student interns Catrell Conley, Cormac Kennedy and Christopher McAleer.
Share
Share
Copy Link
A University of Notre Dame study exposes the vulnerability of major social media platforms to AI bot infiltration, raising concerns about user safety and the need for stronger regulations.
AI Bots Easily Bypass Social Media Safeguards
A recent study conducted by researchers at the University of Notre Dame has revealed alarming vulnerabilities in the defenses of major social media platforms against artificial intelligence (AI) bots. The research, led by doctoral student Kristina Radivojevic and published as a pre-print on ArXiv, analyzed the AI bot policies and enforcement mechanisms of eight popular social media platforms: LinkedIn, Mastodon, Reddit, TikTok, X (formerly Twitter), and Meta's Facebook, Instagram, and Threads
1
.Testing Platform Defenses
The researchers attempted to launch benign "test" bots on each platform to evaluate the effectiveness of their bot policy enforcement processes. Surprisingly, they successfully published test posts from bots on all eight platforms, exposing significant gaps in their security measures
2
.Varying Levels of Difficulty
Among the platforms tested, Meta's services (Facebook, Instagram, and Threads) proved to be the most challenging for bot deployment. It took researchers multiple attempts and three suspensions before successfully launching a bot on their fourth try. TikTok presented moderate difficulty due to its frequent use of CAPTCHAs
3
.Alarming Ease of Bot Creation
The study revealed that platforms like Reddit, Mastodon, and X (formerly Twitter) were "trivial" to infiltrate with bots. Paul Brenner, a faculty member and director at Notre Dame's Center for Research Computing, expressed concern about the ease with which bots could be created and deployed on these platforms, despite their stated policies
1
.Tools and Techniques Used
To create their test bots, the researchers employed readily available technologies:
- Selenium: A suite of tools for automating web browsers
- OpenAI's GPT-4o: An advanced language model
- DALL-E 3: An AI image generation model
2
Related Stories
Implications and Concerns
The study highlights several critical issues:
- Insufficient protection: None of the eight platforms tested provided adequate safeguards against malicious bot activity.
- Ease of deployment: Even interns with minimal training and high school-level education could successfully launch bots using publicly available technology.
- Persistent presence: As of the study's publication, all test bot accounts and posts remained active on the platforms
3
.
Call for Action
Brenner argues that a multi-faceted approach is necessary to address this issue:
- Legislation: Implementation of U.S. laws requiring platforms to distinguish between human and bot accounts.
- Economic incentives: Addressing the current skewed economics that prioritize account numbers for marketing revenue.
- User education: Improving public awareness about bot detection and risks.
- Technological advancements: Developing more robust bot detection and prevention mechanisms
1
.
This research underscores the urgent need for improved security measures and regulatory oversight in the rapidly evolving landscape of social media and AI technology.
References
Summarized by
Navi
[2]
Related Stories
Foreign Influence Operations Exploit AI to Manipulate Social Media and Public Opinion
09 Oct 2024•Technology
Meta's Plan to Integrate AI-Generated Profiles on Facebook and Instagram Sparks Controversy
28 Dec 2024•Technology
Meta's AI Personas: The Controversial Future of Social Media
04 Jan 2025•Technology
Weekly Highlights
1
Anthropic Secures $13B in Funding, Reaching $183B Valuation Amid AI Industry Boom
Business and Economy
2
Tesla Proposes $1 Trillion Pay Package for Elon Musk Tied to Ambitious AI and Robotics Goals
Business and Economy
3
Anthropic's $1.5B AI Copyright Settlement: A Landmark Deal Under Scrutiny
Policy and Regulation
Weekly Highlights
Explore today's top stories
Your Daily Dose of Curated AI News
Don’t drown in AI news. We cut through the noise - filtering, ranking and summarizing the most important AI news, breakthroughs and research daily. Spend less time searching for the latest in AI and get straight to action.
