Jianhong Lin,Yangang Nie,Feng Mao,Peng Wang,Chunming Wu

2023-01-01

Abstract:In mobile communication, private user information such as phone numbers are likely to be stole by attackers. By exploiting this information, attackers can make malicious harassment calls to bring troubles to mobile customers, leading to significant impacts on the society. In this paper, we construct a temporal filtering method to address this problem. This method analyzes the 24-h behaviors of phone numbers. According to the analysis results, it uses neural networks to simulate the behaviors of malicious calls and that of various normal calls, including express delivery, takeaway delivery and so on. With such a model, it accurately identifies malicious calls. Our experiments indicate that compared to existing methods, our approach significantly improves the accuracy and coverage respectively.

Jianyu Wang,Chunming Wu

DOI: https://doi.org/10.1177/0020294020970213

2020-01-01

Abstract:Given users and products that he/she reviews, can we recognize fake reviews just using the text information, or determine whether a reviewer is a fraud or not? Automatically detecting fake reviews and reviewers is an urgent problem and lots of work attempts for discovering linguistics, behaviors and graph patterns. However, in reality, there are new kinds of fraudsters who can change their behaviors to camouflage as genuine reviewers to avoid detection systems. With the fraudsters become distributed, dynamic, and adversarial, anti-spam tasks face a new challenge. In this paper, we tackle the challenge of adversarial fraudsters in online app review platform and propose a system called DDF (Detect, Defense, and Forecast) to uncover camouflage accounts. Firstly, we select a small set of seed with high-precision based on text and behavior features; Secondly, we build our graph-based detection model for uncovering hidden (distant) users who serve structurally similar to the seed by utilizing Graph Convolutional Network (GCN) algorithm. Thirdly, we evaluate DDF using real-world data set from Tencent APP Store and analyze the potential fraudsters detected by DDF. It is worth mentioning that precision can achieve 0.95+. Finally, we validate the efficiency and scalability of DDF and show that it can be well transferred to other anti-spam tasks.

Jianhong Lin,Peng Wang,Chunming Wu

DOI: https://doi.org/10.20532/cit.2022.1005459

2022-01-01

Abstract:With the development of economic globalization and modern information and communication technology, the situation of communication fraud is becoming more and more serious. How to identify fraudulent calls accurately and effectively has become an urgent task in current telecommunications operations. Affected by the sample set and the current state of the art, the current machine learning methods used to identify the imbalanced distribution dataset of positive and negative samples have low recognition accuracy. Therefore, in this paper, we propose a new hybrid model solution that uses feature construction, feature selection and imbalanced classes handling. A stacking model fusion algorithm composed of a two-layer stacking framework with several state-of-the-art machine learning classifiers is adopted. The results show that the risk user identification model based on mobile network communication behavior established by our stacking model fusion algorithm can accurately predict the category labels of telecom users and improve the risk of telecom users. The generalization performance of the identification is high, which provides a certain reference for the telecommunications industry to identify risk users based on mobile network communication behaviors.

Qiongzan Ye,Yangbo Gao,Zhenhua Zhang,Yu Chen,Yupeng Li,Min Gao,Shutong Chen,Xin Wang,Yang Chen

DOI: https://doi.org/10.1109/ijcnn55064.2022.9892383

2022-01-01

Abstract:Online-to-Offline (O2O) e-commerce service platforms and their users are faced with various fraud risks. Among them, financial identity theft is a widely existing challenge. However, existing methods are insufficient to detect this type of fraud. In this paper, we address the financial identity theft detection problem in e-commerce services by leveraging access environment and behavior sequence. To explore the fraud patterns, we first make a detailed analysis using real cases of identity theft from Meituan, a leading O2O e-commerce platform in China. Our findings are twofold. First, fraudulent accounts sharing the same personal ID would have different access environments, such as devices and IP addresses. Second, a group of fraudulent accounts may have aggregations of devices, IP addresses, and delivery addresses. Based on these observations, we propose a hybrid method termed EnvIT to detect financial identity theft based on the heterogeneous graph and the behavior sequence. EnvIT is able to characterize the access environment and the historical behavior of the accounts. Furthermore, an attentive module is adopted to assign weights to different features automatically. We further evaluate EnvIT via extensive experiments using a real-world dataset from Meituan. Our experimental results demonstrate that EnvIt outperforms several baseline methods in fraudulent account detection and achieves an AUC of 0.9210.

Li Longfei,Liu Ziqi,Chen Chaochao,Zhang Ya-Lin,Zhou Jun,Li Xiaolong

2019-01-01

Abstract: With online payment platforms being ubiquitous and important, fraud transaction detection has become the key for such platforms, to ensure user account safety and platform security. In this work, we present a novel method for detecting fraud transactions by leveraging patterns from both users' static profiles and users' dynamic behaviors in a unified framework. To address and explore the information of users' behaviors in continuous time spaces, we propose to use \emph{time attention based recurrent layers} to embed the detailed information of the time interval, such as the durations of specific actions, time differences between different actions and sequential behavior patterns,etc., in the same latent space. We further combine the learned embeddings and users' static profiles altogether in a unified framework. Extensive experiments validate the effectiveness of our proposed methods over state-of-the-art methods on various evaluation metrics, especially on \emph{recall at top percent} which is an important metric for measuring the balance between service experiences and risk of potential losses.

Yang Yang,Yuhong Xu,Yizhou Sun,Yuxiao Dong,Fei Wu,Yueting Zhuang

DOI: https://doi.org/10.1109/tkde.2019.2924431

IF: 9.235

2021-01-01

IEEE Transactions on Knowledge and Data Engineering

Abstract:The rapid development of modern communication technologies—in particular, (mobile) phone communications—has largely facilitated human social interactions and information exchange. However, the emergence of telemarketing frauds can significantly dissipate individual fortune and social wealth, resulting in a potential slow down or damage to economics. In this work, we propose to spot telemarketing frauds, with an emphasis on unveiling the "precise fraud" phenomenon and the strategies that are used by fraudsters to precisely select targets. To study this problem, we employ a one-month complete dataset of telecommunication metadata in Shanghai with 54 million users and 698 million call logs. Through our study, we find that user's information might have been seriously leaked, and fraudsters have a preference over the target user's age and activity in mobile network. We further propose a novel semi-supervised learning framework to distinguish fraudsters from non-fraudsters. Experimental results on a real-world data show that our approach outperforms several state-of-the-art algorithms in accuracy of detecting fraudsters (e.g., $+0.278$<math>+0.278</math> in terms of F1 on average). We believe that our study can potentially inform policymaking for government and mobile service providers.

computer science, information systems, artificial intelligence,engineering, electrical & electronic

Guojun Chu,Jingyu Wang,Qi Qi,Haifeng Sun,Shimin Tao,Hao Yang,Jianxin Liao,Zhu Han

DOI: https://doi.org/10.1109/tdsc.2022.3228797

2022-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:Fraud detection in telecom network is a crucial problem that threatens users&#x27; privacy and property security. In recent years, fraudsters adopt more advanced camouflage strategies to avoid being detected by traditional algorithms. To deal with these new types of fraud, it is necessary to analyze the integrated spatial-temporal features, which are rarely involved in existing literature. In this paper, we propose a novel fraud detection model based on the intertwined spatial-temporal patterns of user behaviors. Specifically, we first introduce the extension of statistical and interactive features to dynamic call patterns, and build a probabilistic model to simulate users&#x27; call behaviors. Then the sequential patterns reflecting users&#x27; own behaviors are obtained by the mixture Hidden Markov Models, and the structural patterns reflecting the collaboration between users in the telecom network are obtained by the attention-based Graph-SAGE model. Finally, our model outputs a fraud score for each user to detect potential fraudsters. We conduct extensive experiments on a real-world telecom dataset. The experimental results demonstrate that our intertwined spatial-temporal call patterns can effectively represent user behavior and improve the accuracy of fraud detection compared with state-of-the-art methods. The results also validate the efficiency and the interpretability of our model.

computer science, information systems, software engineering, hardware & architecture

Wen Deng,Guangjun Liang,Chenfei Yu,Kefan Yao,Chengrui Wang,Xuan Zhang

DOI: https://doi.org/10.32604/cmc.2023.035016

2023-01-01

Abstract:With the frequent occurrence of telecommunications and network fraud crimes in recent years, new frauds have emerged one after another which has caused huge losses to the people. However, due to the lack of an effective preventive mechanism, the police are often in a passive position. Using technologies such as web crawlers, feature engineering, deep learning, and artificial intelligence, this paper proposes a user portrait fraud warning scheme based on Weibo public data. First, we perform preliminary screening and cleaning based on the keyword “defrauded” to obtain valid fraudulent user Identity Documents (IDs). The basic information and account information of these users is user-labeled to achieve the purpose of distinguishing the types of fraud. Secondly, through feature engineering technologies such as avatar recognition, Artificial Intelligence (AI) sentiment analysis, data screening, and follower blogger type analysis, these pictures and texts will be abstracted into user preferences and personality characteristics which integrate multi-dimensional information to build user portraits. Third, deep neural network training is performed on the cube. 80% percent of the data is predicted based on the N-way K-shot problem and used to train the model, and the remaining 20% is used for model accuracy evaluation. Experiments have shown that Few-short learning has higher accuracy compared with Long Short Term Memory (LSTM), Recurrent Neural Networks (RNN) and Convolutional Neural Network (CNN). On this basis, this paper develops a WeChat small program for early warning of telecommunications network fraud based on user portraits. When the user enters some personal information on the front end, the back-end database can perform correlation analysis by itself, so as to match the most likely fraud types and give relevant early warning information. The fraud warning model is highly scaleable. The data of other Applications (APPs) can be extended to further improve the efficiency of anti-fraud which has extremely high public welfare value.

computer science, information systems,materials science, multidisciplinary

H. Kunling,L. Fenghua,Jessie Hui Wang,Han Zhang,Yi Zhao

DOI: https://doi.org/10.23919/ifipnetworking62109.2024.10619828

2024-01-01

Abstract:In the fast-growing Internet, legitimate user accounts can be stolen by attackers, posing a serious threat to network security. Therefore, compromised account detection is an urgent problem. Most existing work is based on the behavior and content associated with posts. However, these approaches cannot detect anomalous behavior that attackers only collect information in the early stage, and often fail to consider temporal features. In this paper, we propose an access behavior-based two-stage compromised account detection framework, called AB-TCAD. In the first stage, we propose a novel feature called URL graph that depicts a user's website access pattern. To analyze abnormal changes in user access patterns, we design an AddEdge-GNN algorithm that detects similarities between URL graphs and obtains suspicious accounts. AddEdge-GNN predicts potential new user access behavior and reduces misjudgments that treat normal behavioral changes as anomalies. In the second stage, we propose an RVAE-based temporal detection. We construct temporal features of access behavior in multiple dimensions and use RVAE to detect anomalies, thereby identifying compromised accounts. We perform a real-world evaluation using data from a production network. The results show that AB-TCAD outperforms existing solutions in terms of both precision and recall metrics.

Dong Guo,Jian Cao,Xiaoqi Wang,Qiang Fu,Qiang Li

DOI: https://doi.org/10.3390/s16091522

IF: 3.9

2016-01-01

Sensors

Abstract:Cyber Physical Social Sensing makes mobile social networks (MSNs) popular with users. However, such attacks are rampant as malicious URLs are spread covertly through quick response (QR) codes to control compromised accounts in MSNs to propagate malicious messages. Currently, there are generally two types of methods to identify compromised accounts in MSNs: one type is to analyze the potential threats on wireless access points and the potential threats on handheld devices' operation systems so as to stop compromised accounts from spreading malicious messages; the other type is to apply the method of detecting compromised accounts in online social networks to MSNs. The above types of methods above focus neither on the problems of MSNs themselves nor on the interaction of sensors' messages, which leads to the restrictiveness of platforms and the simplification of methods. In order to stop the spreading of compromised accounts in MSNs effectively, the attacks have to be traced to their sources first. Through sensors, users exchange information in MSNs and acquire information by scanning QR codes. Therefore, analyzing the traces of sensor-related information helps to identify the compromised accounts in MSNs. This paper analyzes the diversity of information sending modes of compromised accounts and normal accounts, analyzes the regularity of GPS (Global Positioning System)-based location information, and introduces the concepts of entropy and conditional entropy so as to construct an entropy-based model based on machine learning strategies. To achieve the goal, about 500,000 accounts of Sina Weibo and about 100 million corresponding messages are collected. Through the validation, the accuracy rate of the model is proved to be as high as 87.6%, and the false positive rate is only 3.7%. Meanwhile, the comparative experiments of the feature sets prove that sensor-based location information can be applied to detect the compromised accounts in MSNs.

Cheng WANG

DOI: https://doi.org/10.24963/ijcai.2020/636

2020-01-01

Abstract:As a matter of fact, it is usually taken for granted that the occurrence of unauthorized behaviors is necessary for the fraud detection in online payment services. However, we seek to break this stereotype in this work. We strive to design an ex-ante anti-fraud method that can work before unauthorized behaviors occur. The feasibility of our solution is supported by the cooperation of a characteristic and a finding in online payment fraud scenarios: The well-recognized characteristic is that online payment frauds are mostly caused by account compromise. Our finding is that account theft is indeed predictable based on users' high-risk behaviors, without relying on the behaviors of thieves. Accordingly, we propose an account risk prediction scheme to realize the ex-ante fraud detection. It takes in an account's historical transaction sequence, and outputs its risk score. The risk score is then used as an early evidence of whether a new transaction is fraudulent or not, before the occurrence of the new transaction. We examine our method on a real-world B2C transaction dataset from a commercial bank. Experimental results show that the ex-ante detection method can prevent more than 80\% of the fraudulent transactions before they actually occur. When the proposed method is combined with an interim detection to form a real-time anti-fraud system, it can detect more than 94\% of fraudulent transactions while maintaining a very low false alarm rate (less than 0.1\%).

Gaoxiang Li,Yuzhong Ye,Yangfei Shi,Jinlin Chen,Dexing Chen,Anyang Li

DOI: https://doi.org/10.1007/978-981-16-9229-1_10

2022-01-01

Abstract:Abstract With the increasing of the telecom network fraud in China, SMS (Short Message Service) has became an important channel exploited by the criminals to contact victims. Due to the tiny amount compared with normal SMS, the high proportion of malicious adversarial characters, and the lack of knowledge to specific fraud types, it is still challenging to identify the fraud SMS efficiently. In this paper, we firstly conduct a measurement study to explore the characteristics of the fraud SMS. Based on the exploration, we propose a two-stage algorithm called TFC. TFC can quickly filter out normal SMS in the first stage with two indicator functions, and then easily identifies the category of fraud SMS in the second stage by combining the semantic deep features and the domain-knowledge based artificial features. We conduct two real-world SMS datasets for extensive experiments, and the results show that TFC successfully reduces calculation cost and achieves better performance in distinguishing various categories of fraud SMS.

Chen Lyu,Dongmei Huang,Qingyao Jia,Xiao Han,Xiaomei Zhang,Chi-Hung Chi,Yang Xu

DOI: https://doi.org/10.1109/wcnc49053.2021.9417254

2021-01-01

Abstract:Mobile Social Networks have become one of the most convenient services for users to share information everywhere. This crowdsourced information is often meaningful and recommended to users, e.g., reviews on Yelp or high marks on Dianping, which poses the threat of Sybil attacks. To address the problem of Sybil attacks, previous solutions mostly use indirect/direct graph model or clickstream model to detect fake accounts. However, they are either dependent on strong connections or solely preserved by servers of social networks. In this paper, we propose a novel predictable approach by exploiting users’ custom patterns to distinguish Sybil attackers from normal users for the application of recommendation in mobile social networks. First, we introduce the entropy of spatial-temporal features to profile the mobility traces of normal users, which is quite different from Sybil attackers. Second, we develop discriminative entropy-based features, i.e., users’ preference features, to measure the uncertainty of users’ behaviors. Third, we design a smart Sybil detection model based on a binary classification approach by combining our entropy-based features with traditional behavior-based features. Finally, we examine our model and carry out extensive experiments on a real-world dataset from Dianping. Our results have demonstrated that the model can significantly improve the detection accuracy of Sybil attacks.

Cheng Wang,Bo Yang

DOI: https://doi.org/10.48550/arXiv.1801.06825

2018-01-21

Abstract:In this work, we aim at building a bridge from poor behavioral data to an effective, quick-response, and robust behavior model for online identity theft detection. We concentrate on this issue in online social networks (OSNs) where users usually have composite behavioral records, consisting of multi-dimensional low-quality data, e.g., offline check-ins and online user generated content (UGC). As an insightful result, we find that there is a complementary effect among different dimensions of records for modeling users' behavioral patterns. To deeply exploit such a complementary effect, we propose a joint model to capture both online and offline features of a user's composite behavior. We evaluate the proposed joint model by comparing with some typical models on two real-world datasets: Foursquare and Yelp. In the widely-used setting of theft simulation (simulating thefts via behavioral replacement), the experimental results show that our model outperforms the existing ones, with the AUC values $0.956$ in Foursquare and $0.947$ in Yelp, respectively. Particularly, the recall (True Positive Rate) can reach up to $65.3\%$ in Foursquare and $72.2\%$ in Yelp with the corresponding disturbance rate (False Positive Rate) below $1\%$. It is worth mentioning that these performances can be achieved by examining only one composite behavior (visiting a place and posting a tip online simultaneously) per authentication, which guarantees the low response latency of our method. This study would give the cybersecurity community new insights into whether and how a real-time online identity authentication can be improved via modeling users' composite behavioral patterns.

Social and Information Networks,Cryptography and Security

Fusheng Jin,Zhendong Niu,Haiyang Lang

DOI: https://doi.org/10.1109/icee.2010.68

2010-01-01

Abstract:Although reputation models are available to encourage good services of sellers as well as punish their bad ones in the C2C ecommerce environment, their anti-fraud ability appears to be weak in general. Based on our TRUST model and the method of combing fraud pattern recognition with Time Window, we propose a Fraud Identification Method which has certain anti-fraud capabilities. Simulation experiments show that the introduction of TRUST model of the method in this paper has more advantages.

Rui Li,Yongzheng Zhang,Yupeng Tuo,Peng Chang

DOI: https://doi.org/10.1109/icise.2018.00016

2018-05-01

Abstract:Telecom fraud has been a worldwide problem with substantial annual revenue losses for many subscribers and service provider companies. To achieve effective and inexpensive detection for telecom fraud users, we propose an effective and applicable fraud user detection method based on user&#x27;s Call Detail Record (CDR). The proposed method consists of two modules, namely machine learning module and template detection module. In the machine learning module, a Support Vector Machine (SVM) algorithm based on supervised learning is used to classify users using summary characteristics. In the template detection module, a Finite State Machine (FSM) based on fraud user&#x27;s behavior is used to filter suspicious users, which generated in the machine learning module. After the two modules, fraud users can be detected. We implement our approach and evaluate it on a real-world dataset. The experiments show that the method can achieve high detection accuracy of 93.56%, which demonstrate that the proposed method has more excellent performance in comparison with the state-of-the-art approaches.

Shunyu Yao,Dan Liu,Zhifei Guo,Zhiyuan Zhang,Jie Hu

DOI: https://doi.org/10.3390/electronics13234742

IF: 2.9

2024-11-30

Electronics

Abstract:With the rapid development of e-commerce, malicious accounts have become a threat, especially in the business field. Therefore, how to efficiently detect malicious accounts has become one an important issue requiring resolution. Present research on malicious detection mainly uses the basic statistics of the original data to build models, and ignores malicious activities in the business field. To address the context-independent nature of business activities and their lack of social structure, this study constructs an online model for detecting malicious accounts in the business field based on a stacking ensemble strategy with BiGRU-Conv1D-Capsule, XGBoost, and LightGBM as individual learners and AdaBoost as a meta-learner. Experimental results show that the stacking ensemble model constructed in this study has better predictive power than the typical shallow learning and baseline deep learning models. In addition to the basic feature, the behavior sequence of users is also applied in the proposed model. Overall, our experiments based on a real dataset from a financial platform show that the TPR, AUC, and F1 of the stacking ensemble model can reach 0.8258, 0.9860, and 0.8922 respectively, which outperforms all baseline models.

engineering, electrical & electronic,computer science, information systems,physics, applied

Jipeng Cui,Chungang Yan,Cheng Wang

DOI: https://doi.org/10.1109/tcss.2021.3052950

2021-01-01

IEEE Transactions on Computational Social Systems

Abstract:Anomaly detection relies on individuals' behavior profiling and works by detecting any deviation from the norm. When used for online banking fraud detection, however, it mainly suffers from three disadvantages. First, for an individual, the historical behavior data are often too limited to profile his/her behavior pattern. Second, due to the heterogeneous nature of transaction data, there lacks a uniform treatment of different kinds of attribute values, which becomes a potential barrier for model development and further usage. Third, the transaction data are highly skewed, and it becomes a challenge to utilize the label information effectively. The three disadvantages result in both poor generalization and high false positive rate of anomaly detection, and we propose a ranking metric embedding based multi-contextual behavior profiling (ReMEMBeR) model to battle them effectively. We solve the original fraud detection problem as a pseudo-recommender system problem, where an individual is treated as a pseudo-user, his/her behavior as a pseudo-item, and the label as the corresponding pseudo-rating. With the idea of collaborative filtering, for an individual, information from other similar individuals can be used to establish his/her behavior profile. In order to obtain a uniform treatment of heterogeneous attributes, we turn to an embedding based method to learn both attribute embedding and individuals' behavior profiles within a common latent space simultaneously. To utilize the label information better, our model is designed to fit pseudo-users' correct preference ranking for pseudo-items. By doing so, it explicitly learns to tell the fraudulent from the legitimate. Last but not least, we propose to identify and distinguish individuals under different contexts and further generalize the behavior profiling model to be a multi-contextual one. The proposed model can, thus, integrate the multi-contextual behavior patterns and allow transactions to be examined under the different contexts. Extensive experiments on a real-world online banking transaction dataset demonstrate that our model not only outperforms benchmarks on all metrics but also can be combined with them to achieve even better performance.

Xinlei He,Qingyuan Gong,Yang Chen,Yang Zhang,Xin Wang,Xiaoming Fu

DOI: https://doi.org/10.1109/tdsc.2021.3068307

2021-01-01

Abstract:Dating apps have gained tremendous popularity during the past decade. Compared with traditional offline dating means, dating apps ease the process of partner finding significantly. While bringing convenience to hundreds of millions of users, dating apps are vulnerable to become targets of adversaries. In this article, we focus on malicious user detection in dating apps. Existing methods overlooked the signals hidden in the textual information of user interactions, particularly the interplay of temporal-spatial behaviors and textual information, leading to limited detection performance. To tackle this, we propose DatingSec, a novel malicious user detection system for dating apps. Concretely, DatingSec leverages long short-term memory neural networks (LSTM) and an attentive module to capture the interplay of users' temporal-spatial behaviors and user-generated textual content. We evaluate DatingSec on a real-world dataset collected from Momo, a widely used dating app with more than 180 million users. Experimental results show that DatingSec outperforms state-of-the-art methods and achieves an F1-score of 0.857 and AUC of 0.940.

Zijie Yang,Binghui Wang,Haoran Li,Dong Yuan,Zhuotao Liu,Neil Zhenqiang Gong,Chang Liu,Qi Li,Xiao Liang,Shaofeng Hu

DOI: https://doi.org/10.1145/3485832.3488013

2021-01-01

Abstract:Privacy-centric mobile social network (PC-MSN), which allows users to build intimate and private social circles, is an increasingly popular type of online social networks (OSNs). Because of strict usage policy enforced by PC-MSNs (such as restricted account and content access), malicious accounts (or users) have to act like normal accounts to accumulate credentials before committing malicious activities. Therefore, analysis merely relying on static account profile information or social graphs is ineffective to detect such growing-up accounts. Besides, existing behavior-based malicious account detection methods fail to effectively detect growing-up accounts who pretend to be benign and have similar behaviors to benign users during the growing-up stage. In this paper, we present the first comprehensive study of growing-up behaviors of malicious accounts in WeChat, one of the major PC-MSNs with billions of daily active users across the globe. Our analysis reveals that the behavior patterns of growing-up accounts are very similar to that of benign users, and yet quite different from typical malicious accounts. Based on this observation, we design Muses, a detection system that can automatically identify subtle yet effective behaviors (features) to distinguish growing-up accounts before they engage in obvious malicious campaigns. Muses is unsupervised so that it can adapt to new malicious campaigns even if the behavior patterns of malicious accounts are unknown a priori. In particular, Muses addresses the limitations of the previous supervised techniques, i.e., requiring manually labeled training sets, which is time-consuming and costly. We evaluate Muses on a large-scale anonymized dataset from WeChat with roughly 440k accounts. The experimental results show that Muses achieves 2x recall, with similar precision, compared with the previous methods. Specifically, Muses detects over 82% growing-up accounts with a precision of 90% and achieves an AUC of 0.95. Notably, Muses can also effectively detect growing-up accounts even if malicious users applied various evasion strategies.