LORETTA: A Low Resource Framework to Poison Continuous Time Dynamic Graphs
DOI:
https://doi.org/10.1609/aaai.v40i10.37770Abstract
Temporal Graph Neural Networks (TGNNs) are increasingly used in high-stakes domains, such as financial forecasting, recommendation systems, and fraud detection. However, their susceptibility to poisoning attacks poses a critical security risk. We introduce LoReTTA (Low Resource Two-phase Temporal Attack), a novel adversarial framework on Continuous-Time Dynamic Graphs, which degrades TGNN performance by an average of 29.47% across 4 widely benchmark datasets and 4 State-of-the-Art (SotA) models. LoReTTA operates through a two-stage approach: (1) sparsify the graph by removing high-impact edges using any of the 16 tested temporal importance metrics, (2) strategically replace removed edges with adversarial negatives via LoReTTA’s novel degree-preserving negative sampling algorithm. Our plug-and-play design eliminates the need for expensive surrogate models while adhering to realistic unnoticeability constraints. LoReTTA degrades performance by upto 42.0% on MOOC, 31.5% on Wikipedia, 28.8% on UCI, and 15.6% on Enron. LoReTTA outperforms 11 attack baselines, remains undetectable to 4 leading anomaly detection systems, and is robust to 4 SotA adversarial defense training methods, establishing its effectiveness, unnoticeability, and robustness.
Downloads
Published
2026-03-14
How to Cite
Pal, H., Bachina, V. S. P., Gangwal, A., & Sharma, C. (2026). LORETTA: A Low Resource Framework to Poison Continuous Time Dynamic Graphs. Proceedings of the AAAI Conference on Artificial Intelligence, 40(10), 8224–8232. https://doi.org/10.1609/aaai.v40i10.37770
Issue
Section
AAAI Technical Track on Computer Vision VII
