Catalogo dei prodotti della ricerca

Fake news detection models are critical to countering disinformation but can be manipulated through adversarial attacks. In this position paper, we analyze how an attacker can compromise the performance of an online learning detector on specific news content without being able to manipulate the original target news. In some contexts, such as social networks, where the attacker cannot exert complete control over all the information, this scenario can indeed be quite plausible. Therefore, we show how an attacker could potentially introduce poisoning data into the training data to manipulate the behavior of an online learning method. Our initial findings reveal varying susceptibility of logistic regression models based on complexity and attack type.

Adversarial Data Poisoning for Fake News Detection: How to Make a Model Misclassify a Target News Without Modifying it / Siciliano, Federico; Maiano, Luca; Papa, Lorenzo; Baccini, Federica; Amerini, Irene; Silvestri, Fabrizio. - 2134:(2025), pp. 525-530. ( Joint European Conference on Machine Learning and Principles and Practice of Knowledge Discovery in Databases, ECML PKDD 2023 Torino; Italia ) [10.1007/978-3-031-74627-7_44].

Adversarial Data Poisoning for Fake News Detection: How to Make a Model Misclassify a Target News Without Modifying it

Federico Siciliano
Methodology
;Luca Maiano
Methodology
;Lorenzo Papa
Methodology
;Federica Baccini
Writing – Review & Editing
;Irene Amerini
Supervision
;Fabrizio Silvestri
Supervision
2025

Abstract

Fake news detection models are critical to countering disinformation but can be manipulated through adversarial attacks. In this position paper, we analyze how an attacker can compromise the performance of an online learning detector on specific news content without being able to manipulate the original target news. In some contexts, such as social networks, where the attacker cannot exert complete control over all the information, this scenario can indeed be quite plausible. Therefore, we show how an attacker could potentially introduce poisoning data into the training data to manipulate the behavior of an online learning method. Our initial findings reveal varying susceptibility of logistic regression models based on complexity and attack type.
2025
Joint European Conference on Machine Learning and Principles and Practice of Knowledge Discovery in Databases, ECML PKDD 2023
Misinformation; Data Poisoning; Online Learning
04 Pubblicazione in atti di convegno::04b Atto di convegno in volume
Adversarial Data Poisoning for Fake News Detection: How to Make a Model Misclassify a Target News Without Modifying it / Siciliano, Federico; Maiano, Luca; Papa, Lorenzo; Baccini, Federica; Amerini, Irene; Silvestri, Fabrizio. - 2134:(2025), pp. 525-530. ( Joint European Conference on Machine Learning and Principles and Practice of Knowledge Discovery in Databases, ECML PKDD 2023 Torino; Italia ) [10.1007/978-3-031-74627-7_44].
04b Atto di convegno in volume
File allegati a questo prodotto
File Dimensione Formato  
Siciliano_postprint_Adversarial-Data_2025.pdf

accesso aperto

Note: https://link.springer.com/chapter/10.1007/978-3-031-74627-7_44
Tipologia: Documento in Post-print (versione successiva alla peer review e accettata per la pubblicazione)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 613.69 kB
Formato Adobe PDF
613.69 kB Adobe PDF
Siciliano_Adversarial-Data_2025.pdf

solo gestori archivio

Tipologia: Versione editoriale (versione pubblicata con il layout dell'editore)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 1.7 MB
Formato Adobe PDF
  Contatta l'autore
1.7 MB Adobe PDF   Contatta l'autore

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11573/1731395
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus ND
  • ???jsp.display-item.citation.isi??? 1
social impact