Figure 1 shows a simplified process of the fake endorsement phishing scam. The authors of this digital crime are unknown- they can range from gangs, to the invisible threat of AI and bot armies, to even military intelligence agencies raising funds. Not only do these cybercriminals exploit scamming ecosystems inside popular social media platforms, they also exploit related ecosystems on platforms such as Huione Guarantee (now "Haowang Guarantee"), a Cambodian conglomerate. It offers a messaging app, stable coin, and crypto exchange, and has facilitated $2 billion in transactions. Such platforms are integral to the industrialisation and scaling-up of online scams, for example through supporting the outsourcing of scammers' money-laundering activities (The Economist, 2025).

2) Financial victims

3) Social media advertising services

4) Poorly-moderated content hosts

5) Banks

As the financial victims legitimately authorise payments off their own accounts, victims do no enjoy recourse via their banks. To avoid new transactions from scammers, these victims often have to pay banks for new cards after terminating their old ones. It is unclear what role banks could adopt in combating digital crimes, wherein clients are defrauded whilst following a seemingly legitimate payment process.

Figure 2 - Authorities who could contribute to fighting digital crimes

6) Cyber defence companies

8) Cybercrime researchers, and educators, in companies

In a similar collaborative vein, cybercrime researchers and educators in companies are working together to help combat digital crimes targeting their employees and clients. In particular, banks and insurance companies in SA are pro-actively raising awareness around phishing and other common digital crimes. This is done in communications that range from email newsletters, to pop-up warnings that clients must acknowledge reading post log-in.

9) Anti-crime activists (PBOs and NGOs)

Anti-digital crime education tends to focus on educating high school students and working professionals with preventative knowledge in English. However, our research into fake celebrity endorsement victims' online commentary suggest that most are over fifty five, with English being their second language, at best. In response, The Noakes Foundation has supported the development of modules in English for educating silver surfers on the most common digital crimes. Ideally, though, these modules (and reportfakeendorsement.com's content) should be available in South Africa's 11 official languages.

10) Social media platforms and their Big Tech owners

Social media companies, and their Big Tech owners, would seem to have a particular responsibility for protecting users from digital crime threats on their platforms. In contrast, there is a decade-long history in SA of even influential celebrities not being well-supported via speedy responses to their brandjacking, and scam adverts are seldom taken down based on celebrities', their representatives' and other victims' reports. 

The most popular platform for this scam in SA is Meta's Facebook and Instagram. Meta does not  understand the content that its users share (Horwitz, 2023). Further, it does not report on scam ecosystems based inside its own platforms. Consequently, neither Facebook nor Instagram can pro-actively identify digital crimes, let alone quickly adapt their systems to stop emergent threats from micro-fraudsters. It's left up to whistleblowers, former employees, investigative journalists and researchers to create awareness on these platforms' serious flaws, such as it being used as a scammers' ecosystem tied to scam-as-service ones. This would seems at odds with corporate responsibility- Meta should publicly report regarding its progress in tackling scam-ecosystems on its FB, WhatsApp and Instagram platforms. It could also pro-actively warn vulnerable users, such as the aged, against the latest scam risks. 

In a sense, digital crimes by cybercriminals on social networks can be considered a parasitic attack within a larger parasitic host: Meta’s Facebook and Instagram are infomediaries that misrepresent themselves as symbionts in supporting users’ communal connections online. In reality, Meta’s business model is parasitic in relying on 3 000 000 000 users to share content (Robbins, 2018). Much of this content is not the work of original/creative producers, but rather sampled from content that's proved popular on other platforms. In essence, social media platforms are middlemen between content creators and their audiences, taking most of the profits from advertising. These platforms also take the intellectual property of online content creators. In the Global South this serves as a form of neocolonial data extraction as Big Tech multinationals from the Global North extract its data, with little being reciprocated. For example, while powerful celebrities in the US can enjoy access to dedicated Facebook support, there is no equivalent offering for influential SA users. Instead, they are lucky to stumble onto internal staff or Trusted Partners who can best help them respond to the Facebookjacking or Instajacking crimes.

In contrast to the usefulness of human insiders, reports to Meta's AI that manages users' reports of dubious accounts and content is simply not capable of recognising malicious advertisers' accounts; At face value, there is in nothing “wrong” with how the scammers’ accounts are set up - They have have a human profile (fake name) managing a business profile (fake name and business). Reporting the scam accounts is useless, since the fraudsters fill-in all the right criteria to fly under the radar! The scammers use 'Like Farms' and a network of fake profiles to all create a sense of legitimacy through 'liking, sharing and commenting' on posts and ads. The criminals also use a “legitimate website” - this is a bought domain and hosing and (questionable design) - selling a “product” and accumulating data of visitors' info and credit card details. All this seems to be legitimate business behaviour to AI, but is malicious and AI cannot detect that. Scammers use a (stolen) credit card, or hijacked meta Ads manager profile and run advertIf this content had truly been verified by a human it would have been taken down immediately. Even to the most untrained eye it was obvious that this content was a deep fake.s through their “business page”. This works for a short while until the card or the account are stopped, and then they just create another one. These ADs are selling a product online, the product is seemly harmless and well within the legal parameters of Meta's Community standards. The fact that its a fake product is immaterial to Meta, the onus in on the customer to know when they are being scammed, and if users try to report this to be a harmful product, it doesn’t work” as that is deemed a matter of personal opinion! Where such content is checked by a human moderators, the content is so obviously fake that they taken it down quickly.

It appears that Meta's Facebook and Instagram are turning a blind eye to this digital advertising crime. The benefit to META is clear with them reaping the rewards through advertisers' spending: Trustfull's 2024 report expects Deep Fake Fraud to reach $ 15.7 billion in 2024. Meta is set to take a large chunk of that ad-spend revenue in distributing fake, malicious content. It’s hard not to draw to the conclusion that it seems irrelevant to META if the content is genuine or a scam, or if the account used to promote these scams has been hacked or cloned. Either way, META and Facebook still profits. 

11) Financial investors

12) Government politicians

13) Local police

14) International law enforcement

15) Local law

16) Higher Education and research funders

17) Product regulators

Celebrity, you are on your own in responding to digital crime?!

Please comment with suggestions to improve this post

Acknowledgements