Write a SQL query to identify users who triggered multiple risk flags within a 24-hour window at ByteDance.