Tech
Contrastive learning framework can detect blockchain-based smart Ponzi schemes
Blockchain technologies are digital systems that work by distributing copies of information across several computers, also referred to as nodes, all of which are connected to a common network. These technologies underpin the trading of cryptocurrencies, as well as the functioning of other emerging digital services.
While blockchain technology opens new opportunities for the trading of cryptocurrencies, digital arts and other digital assets, they are also often used for fraudulent activities. Perhaps most notably, they are now widely used for fraudulent investment schemes known as smart Ponzi schemes.
In a smart Ponzi scheme, individuals are asked to invest in specific digital currencies or assets and sign a so-called smart contract that automatically draws money from them on a regular basis. Their investments might initially seem fruitful, yet the early investors are in fact being paid with the money invested by new individuals. After some time, the whole system collapses, as there are no longer enough resources to pay all investors.
In recent years, computer scientists and financial security experts have been trying to devise strategies to automatically detect these fraudulent schemes. Most solutions developed so far rely on deep learning algorithms trained to identify patterns associated with smart Ponzi schemes in blockchain transactions.
Despite their promise, to perform well, these deep learning-based techniques must be trained on large datasets containing blockchain transactions labeled by human experts. As labeling this data requires extensive time and resources, existing solutions might not be ideal for the reliable detection of smart Ponzi schemes in real-world settings.
The University of Electronic Science and Technology of China, City University of Macau and Swinburne University of Technology recently developed CASPER (Contrastive Approach for Smart Ponzi detectER), a deep-learning-based framework that can detect smart Ponzi schemes with good accuracy without requiring labeled training data.
This new technique, introduced in a paper published on the arXiv preprint server, relies on models that can learn to detect these fraudulent activities by comparing the similarities and differences between different blockchain transactions.
“Traditional Ponzi scheme detection methods based on deep learning typically rely on fully supervised models, which require large amounts of labeled data,” wrote Weija Yang, Tian Lan and their colleagues in their paper. “However, such data is often scarce, hindering effective model training. To address this challenge, we propose a novel contrastive learning framework, CASPER (Contrastive Approach for Smart Ponzi detectER with more negative samples), designed to enhance smart Ponzi scheme detection in blockchain transactions.”
To pick up signs of smart Ponzi schemes in blockchain transactions, Yang, Lan and their colleagues employed an approach known as contrastive learning. This is a machine learning technique through which a computational model learns to tell different things apart by comparing them.
“By leveraging contrastive learning techniques, CASPER can learn more effective representations of smart contract source code using unlabeled datasets, significantly reducing both operational costs and system complexity,” wrote the researchers.
The team assessed the new Ponzi scheme detection technique in a series of tests, in which it was fed blockchain transactions from a publicly available dataset. Their framework performed remarkably well, despite being trained on a limited amount of labeled data.
“We evaluate CASPER on the XBlock dataset, where it outperforms the baseline by 2.3% in F1 score when trained with 100% labeled data,” the team wrote. “More impressively, with only 25% labeled data, CASPER achieves an F1 score nearly 20% higher than the baseline under identical experimental conditions. These results highlight CASPER’s potential for effective and cost-efficient detection of smart Ponzi schemes, paving the way for scalable fraud detection solutions in the future.”
In the future, the CASPER framework could be improved and tested on more real-world data, to further assess its potential for detecting and mitigating smart Ponzi schemes. Eventually, it could make its way into real-world settings, where it could help to protect digital currency investors against malicious activities.
Written for you by our author Ingrid Fadelli,
edited by Stephanie Baum, and fact-checked and reviewed by Robert Egan—this article is the result of careful human work. We rely on readers like you to keep independent science journalism alive.
If this reporting matters to you,
please consider a donation (especially monthly).
You’ll get an ad-free account as a thank-you.
More information:
Weijia Yang et al, CASPER: Contrastive Approach for Smart Ponzi Scheme Detecter with More Negative Samples, arXiv (2025). DOI: 10.48550/arxiv.2507.16840
© 2025 Science X Network
Citation:
Contrastive learning framework can detect blockchain-based smart Ponzi schemes (2025, August 24)
retrieved 24 August 2025
from https://techxplore.com/news/2025-08-contrastive-framework-blockchain-based-smart.html
This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no
part may be reproduced without the written permission. The content is provided for information purposes only.
Shipping through the Strait of Hormuz—the narrow but vital oil trade route in the Middle East—has almost ground to a halt since the start of the United States and Israel’s war against Iran. Tankers in the region have faced military strikes and a spike in GPS jamming attacks, a new analysis says.
Since the first US-Israeli strikes against Iran on February 28, more than 1,100 ships operating across the Gulf region have had their GPS or automatic identification system (AIS) communications technology disrupted, says Ami Daniel, the CEO of maritime intelligence firm Windward. Ships have been made to appear as if they were inland on maps, including at a nuclear power plant, the firm says.
The analysis comes as maritime officials have warned of a “critical” risk to ships operating in the region and as the initial conflict has quickly expanded to involve countries across the Middle East. At least three tankers in the region have been damaged in the conflict.
“We’re seeing a lot of GPS jamming,” Daniel says of shipping in the Strait of Hormuz and surrounding areas. The levels of electronic interference are “way above the baseline” of usual interference, he says. “It’s becoming very dangerous to go in and out.”
Over the last few years, attacks against GPS and navigation systems have been on the rise—largely driven by the wars in Ukraine and Gaza. They can impact people’s phones or devices, but also disrupt the safety and navigation systems in planes and ships. The electronic interference largely comes in two forms: jamming and spoofing. During jamming attacks, satellite signals are overwhelmed so that positioning data isn’t available. Whereas spoofing can create false signals that make an object appear incorrectly on a map—for instance, making ships appear as if they are inland at airports.
Inaccurate location data can lead to ships running off course, potentially increasing the chances of them crashing into other tankers, running aground, or causing damaging oil spills. In warzones, electronic interference is often used to try and disrupt the navigation systems of drones or missiles, which can rely on location data to find and hit their targets.
Analysis of shipping data by Windward found that there has been an “escalating” level of electronic interference across Iranian, United Arab Emirates, Qatari, and Omani waters since the initial strikes on February 28. Daniel says that the majority of the activity the company has identified so far has been jamming rather than spoofing. The company’s analysis says it has identified around 21 “new clusters” where ships have had their AIS data jammed in recent days.
“Ships were falsely positioned at airports, a nuclear power plant, and on Iranian land, creating navigation and compliance risks,” a report from the firm says. “AIS signals have also been diverted to the Barakah Nuclear Power Plant and nearby waters, while hundreds of other vessels are creating circle-like patterns off UAE, Qatari, and Omani waters.”
GPS and AIS interference within the Strait of Hormuz and the surrounding area is not new. In June 2025, as Israel and Iran exchanged missile fire, significant jamming in the region was reported.
While almost all commercial air travel has been grounded around the Middle East, there have been signs of electronic interference on aircraft flying ahead of and around the strikes. “There are at least six new spoofing signatures in the Middle East,” says Jeremy Bennington, vice president of positioning, navigation, and timing strategy and innovation at technology firm Spirent Communications. “Hundreds of flights have been impacted. However, that decreased significantly over the weekend as flights have been canceled.”
In the wake of a major series of new US and Israel-led attacks on Iran and subsequent retaliatory strikes on Gulf states including Bahrain, Kuwait and the UAE, the UK’s National Cyber Security Centre (NCSC) has reassured British organisations that there is likely no significant change in the direct cyber threat posed by Iranian actors.
But that despite the attacks, Iranian state threat actors likely retain some ability to conduct cyber attacks, and more widely, there is a risk of collateral impacts – such as distributed denial of service (DDoS) attacks – originating from hacktivist groups sympathetic to Iran.
And, as the spreading conflict threatens to draw in the UK, the GCHQ-backed cyber agency said it this assessment was subject to change at short notice, and there was almost certainly a heightened risk of indirect cyber threat for any UK organisations with a presence in the Middle East.
“In light of rapidly evolving events in the Middle East, it is critical that all UK organisations remain alert to the potential risk of cyber compromise, particularly those with assets or supply chains that are in areas of regional tensions,” said NCSC director for national resilience, Jonathon Ellison.
“Today, the National Cyber Security Centre has published an alert outlining the current cyber threat to the UK and the practical steps organisations should take in response.
“This includes engaging with our guidance to reduce the likelihood of falling victim to an attack where the cyber risk is heightened, and how critical national infrastructure organisations can prepare for and respond to severe cyber threats.
“Organisations are strongly encouraged to act now, following the recommended actions to prioritise and strengthen their cyber security posture,” said Ellison.
Global conflict
Although no European states have taken part in the initial strikes, Dennis Calderone, principal and chief technology officer (CTO) at Suzu Labs, said that European organisations still needed to pay attention.
“Iran’s cyber operations don’t stop at US borders, and the proxy groups operating on Iran’s behalf are even less predictable in their targeting,” said Calderone. “When the motivation is retaliation and the conventional military is gone, cyber operators cast a wide net.
“Since it appears that conventional military options are looking increasingly to be off the table, cyber is what Iran has left,” he added.
“And even with their own internet down, pre-positioned implants and operators based outside Iran can still execute. If you’re in energy, water, financial services, or defense, assume you’re a target. Start hunting for anomalous access in your environment now. Don’t wait for something to break.”
James Turgal, vice president of global cyber risk and board relations at Optiv, said that over the next 30 days or so, there will likely be a surge of cyber activity linked to Iran, including website defacements, DDoS attacks, doxxing and leaks, and disruptive intrusions designed to create symbolic impact and public fear. This will likely include influence operations.
Threat actors will likely opportunistically exploit vulnerabilities in unpatched, internet-facing systems, and take advantage of other cyber weaknesses, such as exposed VPNs, and badly-secured operational technology (OT) or industrial control systems (ICS).
Within 72 hours, at-risk organisations should move to lock down internet-facing exposures, verify they are patched and up-to-date, have removed or limited unnecessary remote admin surfaces, rotated any exposed credentials, and validated multifactor authentication on any remote devices, said Turgal. CNI operators should also review their OT and ICS segmentation and monitoring.
More widely, security leaders should take steps to protect user identities against potential intrusion, and ensure their infrastructure is hardened against DDoS attacks.
Blended threat
Halcyon’s Cynthia Kaiser – who was previously deputy assistant director of the FBI’s cyber division, said she was already seeing increased activity in the Middle East, and calls to action from hacktivists, DDoS botnet operators, and ransomware gangs.
“Iran has a long track record of using cyber operations to retaliate against perceived political slights…. Tehran’s cyber playbook has been aggressive and evolving,” she said.
“Increasingly, ransomware is incorporated into these escalating operations. Last year, an Iranian national pleaded guilty to ransomware attacks that crippled Baltimore and other US municipalities, causing tens of millions in damages. Since at least 2017, Iranian operators have targeted US critical infrastructure … with ransomware campaigns that blur the line between criminal extortion and state-sponsored sabotage.”
In practice, Kaiser explained, Iranian cyber ops blend state sponsorship, personal profiteering, and outright criminal behaviour. For example, she said, financially-motivated hackers may attempt to monetise access gained through government-funded campaigns.
Like Moscow, she added, Tehran turns a blind – or at least indifferent – eye to criminal cyber ops against shared enemies such as the US, Israel and their regional allies.
“Having access to cyber criminals gives the government options. As Iran considers its response to US and Israeli military actions, it is likely to activate any of these cyber actors if it believes their operations can deliver a meaningful retaliatory impact,” said Kaiser.
Oil prices surged on Monday following the United States and Israel’s attacks on Iran this weekend, as some analysts predict that it could soon reach over $100 a barrel. Amid escalating attacks on oil and gas infrastructure in the region and stopped traffic in a crucial shipping route, experts tell WIRED that how the White House directs the conflict over the coming week—as well as Iran’s and other oil producers’ responses—will be key in determining just how high prices eventually climb.
The price of Brent crude jumped to almost $80 a barrel—a nearly 13 percent increase over Friday’s prices—when markets opened Sunday evening. The market has been pricing in the risk of the US’s aggressive stance toward Iran for months, says Tyson Slocum, the director of the energy program at the progressive think tank Public Citizen, insulating prices from an even more severe jump. But the disorganized US follow-through to the initial attack—which killed Ayatollah Ali Khamenei, Iran’s supreme leader—is introducing much more uncertainty.
“For all of Trump saying, ‘Hey, you know, we took out Khamenei, we knew exactly where he was,’—apparently we didn’t do the same for Iran’s attack capabilities,” Slocum says. “It seems like our plan was to take out Khamenei and then hope for the best.”
Iran controls the Strait of Hormuz, one of the most important shipping routes in the world. One out of every five barrels of oil travels through the strait. Major members of the Organization of the Petroleum Exporting Countries (OPEC), the world’s dominant oil and gas cartel, rely almost entirely on the strait to get their product out of the region.
“As long as I have been in the oil market, Iran and the closure of the Strait of Hormuz has been kind of the ultimate risk scenario for prices,” says Canadian oil market researcher Rory Johnston. Usually, he says, OPEC would respond to an international crisis that involves oil by increasing production. “But if OPEC’s emergency production is on the other side of the problem area, it doesn’t do as much good.” Johnston compares the region to a garden hose, where a kink in one section can decrease output.
Throughout the weekend, while Iranian officials sent mixed messages on whether the strait is formally closed, traffic through the strait dropped to near zero. Insurance companies have jacked up policies on ships traveling through the strait, while some ships have been hit by drone strikes. What seems to be happening, Johnston says, is more of a “voluntary closure” than an official one.
There are worse scenarios for oil prices that could unfold in the coming days than just the closure of the strait. In September of 2019, drones hit major oil production facilities east of the Saudi Arabian capital of Riyadh. While the Houthi rebel movement in Yemen publicly claimed responsibility for the attack, US officials blamed Iran. The attack temporarily shot oil prices up 15 percent.
On Monday, Saudi officials said that they had closed a major domestic refinery following drone strikes, while a few other oil and gas fields across the region were also shut down. Qatar LNG, the country’s state-run liquefied natural gas producer, said Monday it was shutting down production due to drone strikes, sending gas prices in Europe spiking. Johnston says that continued, serious strikes like these could have a massive impact on prices.
“Going back to the garden hose thing … [that would be] more like taking a gun and blasting off the faucet,” Johnston says.
Clayton Seigle, a senior fellow at the Center for Strategic and International Studies, a think tank based in Washington, DC, agrees. “The more desperate Iran becomes, the greater likelihood for it to use energy as leverage to advance its interests,” he says. “If tankers abandon the Gulf trade in large numbers, and certainly if major oil infrastructure is damaged, we’re likely to see triple-digit crude prices again.”
Colorado opts to practice, mourn death of Dominiq Ponder
Travel stocks fall after thousands of flights grounded following Iran strikes
Trump’s neck rash sparks fresh health questions
-
Business6 days agoHouseholds set for lower energy bills amid price cap shake-up
-
Entertainment1 week agoTalking minerals and megawatts
-
Business6 days agoLucid widely misses earnings expectations, forecasts continued EV growth in 2026
-
Sports1 week agoEileen Gu comments on Alysa Liu’s historic gold medal
-
Politics1 week agoSupreme Court ruling angers Trump: Global tariffs to rise from 10% to 15%
-
Sports1 week agoSouth Africa thrash India by 76 runs in T20 World Cup Super 8 – SUCH TV
-
Business1 week agoGovt to return unclaimed EPFO deposits, expand scholarships for unorganised workers’ children – The Times of India
-
Business1 week agoHaryana Govt bars IDFC First Bank, AU Small Finance Bank over alleged Rs 590 crore fraud