Tracking cybercrime at Euro 2016

University researchers will deploy ‘intelligent system’ to track the spreading of malicious viruses across Twitter during Euro 2016

In an attempt to crack down on the spreading of malicious computer viruses, experts from Cardiff University will be trawling through thousands of suspicious links that are spread across social media during this year’s European Football Championships.

The researchers, from the School of Computer Sciences & Informatics, will be deploying a trained computer, known as an ‘intelligent system’, to trawl through thousands of inconspicuous URLs that are tacked on to a vast array of tweets relating to the ‘Euro 2016’ tournament in France.

The team are using the event as a test bed to further refine their computer system and gather more information about the types of malicious viruses and software, collectively known as malware, that are being spread across Twitter.

It is hoped the information can be used to help law enforcement authorities develop a future warning system that can flag a malicious link to the computer user in real-time, which the researchers hope can also be rolled out in the form of an app to mobile users.

The European Football Championships have been specifically chosen to trial the detection systems due to the large volume of tweets that are sent during this time. According to data taken in 2014, the football World Cup that took place in Brazil was the most tweeted about event ever. In the same year, eight of the 10 most tweeted about events were sports related.

As such, sporting events are an ideal opportunity for cybercriminals to target the masses and spread malicious viruses through social media.

The intelligent computer system developed by the researchers at Cardiff will be searching for ‘drive-by downloads’, a name given to malicious malware that is downloaded onto a computer after a user simply visits, or ‘drives by’, a website.

The system has already been tested around two major sporting events – the Cricket World Cup and the Superbowl – and can currently pinpoint the exact time malicious viruses or software attack a computer, within a 30 second window, with 89% accuracy.

Dr Pete Burnap, Director of the Social Data Science Lab in the School of Computer Science & Informatics at Cardiff University, and lead scientist on the research, said: “It is well known that people use online social networks such as Twitter to find information about an event. URLs are often shortened on social media due to character limitations in posts, so it's incredibly difficult to know which are legitimate.

“Once infected the malware can turn your computer into a zombie computer and become part of a global network of machines used to hide information or route further attacks. At the moment many existing anti-virus solutions identify malware using known code signatures, which make it difficult to detect previously unseen attacks. Our system is making decision using code behaviour, which is more difficult for cyber criminals to mask.

“We are trying to build systems that can help law enforcement authorities make decisions in a changing Cyber Security landscape. Social media adds a whole new dimension to network security risk. This work contributes to new insight into this and we hope to take this forward and develop a real-time system that can protect users as they search for information about real-world events using new forms of information sources”