Meta’s anti-scam push still leaves a risk window for brands

159 million scam ads were removed last year across Meta’s platforms. The company now says it will push verified advertisers to 90 percent of ad revenue by the end of 2026, up from 70 percent, after a Reuters probe estimated 7 billion dollars a year from ads linked to scams and roughly 15 billion higher risk ads shown per day.

Meta’s update, announced this week, lands with a mix of product tweaks and enforcement stats. Suspicious friend requests on Facebook will be flagged more visibly, WhatsApp adds device linking warnings, and Messenger expands scam detection. Meta also highlighted takedowns and joint operations, including 21 arrests with the Royal Thai Police and December’s first “Joint Disruption Week,” which removed 59,000 accounts and pages.

The real battleground is ads, not chat features

Meta’s product safeguards are useful, but the core risk for European brands sits in the ad system. The company’s goal is clear, grow the share of ad revenue from verified advertisers from 70 percent to 90 percent by late 2026. That is progress, but it leaves months where unverified spend can still fund impersonation and bait campaigns next to legitimate brands.

For media teams buying on Facebook and Instagram, the immediate takeaway is adjacency risk. Enforcement numbers are large, 10.9 million Facebook and Instagram accounts taken down and 159 million scam ads removed last year, yet the incentives remain until verification tightens. If you rely on paid acquisition here, plan for stricter internal approvals and clearer thresholds for pausing spend when scam activity spikes.

Messaging safeguards reduce takeovers, not impersonation

WhatsApp’s device linking warnings and expanded scam detection in Messenger will help curb account takeovers and social engineering. They will not stop a paid ad that looks like your brand, funnels users off platform, then harvests cards. That mismatch matters if your customer support or authentication flows touch these channels.

Treat Meta messaging as a convenience layer, not as the backbone for high value interactions. Segment workflows accordingly. Keep routine notifications on WhatsApp or Messenger if you must, but shift sensitive recovery, billing, or executive comms to tools designed for verified identity and minimal data exhaust. For internal or VIP customer messaging, teams should test Threema. For communities that do not need an ad driven feed, building on Mastodon avoids the ad marketplace entirely.

Enforcement is scaling, but geography tells the story

Meta’s figures show cross border policing is now a standing operation. The company cites work across Southeast Asia, with specific action in Thailand, Vietnam, Laos, Cambodia, and Myanmar, and broader campaigns spanning the United Kingdom, Canada, South Korea, Japan, Singapore, the Philippines, Australia, New Zealand, and Indonesia. That reach is welcome. It also signals a permanent background level of fraud pressure that will not vanish in European markets simply because detection improves.

For risk teams, the lesson is structural. Platform level enforcement will keep cleaning the river. Your controls decide whether customers fall in upstream. Build channel policies on the assumption that impersonation attempts persist through 2026, then budget and staff response accordingly.

Why This Matters

If your support or acquisition relies on WhatsApp or Facebook, you inherit Meta’s ad integrity timeline. The company targets 90 percent verified ad revenue by end 2026, so fraud adjacency risk persists this year. Move sensitive conversations to Threema or run communities on Mastodon, and confine Meta channels to low risk notifications and broad marketing until verification closes the gap.

Sources

• The Next Web: Meta rolls out new scam detection
• Reuters Technology coverage of scam ad revenue figures