Jiaying Xu

Tianlong Yu, Yang Yang, Ziyi Zhou et al.

The emerging threat of AR-LLM-based Social Engineering (AR-LLM-SE) attacks (e.g. SEAR) poses a significant risk to real-world social interactions. In such an attack, a malicious actor uses Augmented Reality (AR) glasses to capture a target visual and vocal data. A Large Language Model (LLM) then analyzes this data to identify the individual and generate a detailed social profile. Subsequently, LLM-powered agents employ social engineering strategies, providing real-time conversation suggestions, to gain the target trust and ultimately execute phishing or other malicious acts. Despite its potential, the practical application of AR-LLM-SE faces two major bottlenecks, (1) Cold-start personalization, Current Retrieval-Augmented Generation (RAG) methods introduce critical delays in the earliest turns, slowing initial profile formation and disrupting real-time interaction, (2) Static Attack Strategies, Existing approaches rely on fixed-stage, handcrafted social engineering tactics that lack foundation in established psychological theory. To address these limitations, we propose PhySE, a novel framework with two core innovations, (1) VLM-Based SocialContext Training, To eliminate profiling delays, we efficiently pre-train a Visual Language Model (VLM) with social-context data, enabling rapid, on-the-fly profile generation, (2) Adaptive Psychological Agent, We introduce a psychological LLM that dynamically deploys distinct classes of psychological strategies based on target response, moving beyond static, handcrafted scripts. We evaluated PhySE through an IRB-approved user study with 60 participants, collecting a novel dataset of 360 annotated conversations across diverse social scenarios.

Guillaume Salha-Galvan, Jiaying Xu

This paper investigates the understudied practice of weight sharing (WS) in variational graph autoencoders (VGAE). WS presents both benefits and drawbacks for VGAE model design and node embedding learning, leaving its overall relevance unclear and the question of whether it should be adopted unresolved. We rigorously analyze its implications and, through extensive experiments on a wide range of graphs and VGAE variants, demonstrate that the benefits of WS consistently outweigh its drawbacks. Based on our findings, we recommend WS as an effective approach to optimize, regularize, and simplify VGAE models without significant performance loss.

Jiajun Zhou, Chenkai Hu, Shenbo Gong et al.

Blockchain technology has the characteristics of decentralization, traceability and tamper proof, which creates a reliable decentralized transaction mode, further accelerating the development of the blockchain platforms. However, with the popularization of various financial applications, security problems caused by blockchain digital assets, such as money laundering, illegal fundraising and phishing fraud, are constantly on the rise. Therefore, financial security has become an important issue in the blockchain ecosystem, and identifying the types of accounts in blockchain (e.g. miners, phishing accounts, Ponzi contracts, etc.) is of great significance in risk assessment and market supervision. In this paper, we construct an account interaction graph using raw blockchain data in a graph perspective, and proposes a joint learning framework for account identity inference on blockchain with graph contrast. We first capture transaction feature and correlation feature from interaction graph, and then perform sampling and data augmentation to generate multiple views for account subgraphs, finally jointly train the subgraph contrast and account classification task. Extensive experiments on Ethereum datasets show that our method achieves significant advantages in account identity inference task in terms of classification performance, scalability and generalization.