The company said the features are designed to flag potentially fraudulent activity earlier, as scammers usually try to evade detection by initially behaving like normal users before launching attacks.

Facebook to warn users about suspicious friend requests

Meta said it is testing alerts on Facebook that warn users about suspicious friend requests.

Under the new system, users sending or receiving a request from an account showing unusual behaviour, such as having very few mutual friends or listing a location in a different country, will see a notification encouraging them to review the request carefully before accepting it.

The alert is meant to help users decide whether to proceed with the request, reject it, or block the account.

WhatsApp introduces device-linking scam warnings

On WhatsApp, Meta is rolling out new alerts to stop scammers from tricking users into linking their accounts to a fraudster’s device.

According to the company, scammers sometimes impersonate talent competitions or other promotions and ask users to vote on a website by entering their phone number. Victims are then prompted to provide a device-linking code sent to their WhatsApp account.

In other cases, users may be persuaded to scan a QR code that secretly links their WhatsApp account to a scammer’s device.

“To stay ahead of these tactics, WhatsApp will now alert you when behavioural signals suggest a linking request might be suspicious,” Meta said in a blog post.

The warning will show where the request originated and notify users that it could be a scam before the account is linked.

Messenger expands AI-powered scam detection

Meta is also expanding its advanced scam detection system on Messenger to more countries this month, although the company did not specify which markets will be included.

The tool uses artificial intelligence to analyse patterns commonly associated with scams, including suspicious job offers and other fraudulent messages sent by unknown contacts.

If the system detects a potential scam, Messenger will warn the user and ask whether they want to share recent chat messages for an AI review. When a scam is confirmed, the platform will recommend blocking or reporting the account and provide information about common online fraud tactics.

Meta steps up enforcement against scam networks

Meta said it removed more than 159 million scam ads in 2025, with 92% taken down before being reported by users.

The company also shut down 10.9 million Facebook and Instagram accounts linked to criminal scam centres during the year.

In a recent global enforcement operation involving several law-enforcement agencies, Meta investigators disabled more than 150,000 accounts connected to scam networks, while the Royal Thai Police carried out 21 arrests linked to the activity.

The company also worked with the Nigeria Police Force and the UK National Crime Agency to dismantle a scam centre in Agbor, Delta State, leading to the arrest of seven suspects accused of targeting victims in the United Kingdom and the United States.

AI tools targeting impersonation scams

Meta said it is relying on artificial intelligence to detect sophisticated scams, particularly those involving impersonation of celebrities, public figures or brands.

The AI systems analyse signals across text, images and account behaviour to identify deceptive tactics such as fake fan pages, misleading bios and fraudulent links that mimic legitimate websites.

The technology also helps the company detect domain impersonation, where scammers redirect victims to websites designed to look like trusted platforms.

Advertiser verification to curb scam ads

As part of its anti-scam strategy, Meta said it is expanding advertiser verification requirements across its platforms.

The company aims for verified advertisers to account for 90% of its ad revenue by the end of 2026, up from about 70% today.

Meta said this will focus primarily on high-risk advertising categories, while lower-risk businesses such as small local retailers will account for the remaining share.

Global awareness campaigns

Meta added that technology alone cannot stop online fraud, stressing the importance of public awareness campaigns.

The company said it has partnered with organisations including the UN Office on Drugs and Crime (UNODC) and the International Justice Mission to run global campaigns aimed at helping people recognise and avoid online scams.

“Scammers are constantly evolving their tactics, and so are we,” the company said. “We will continue investing in technology, partnerships and education to help keep people safe across our platforms.”

This was laid bare in the newly released 2025 Africa Cyberthreat Assessment Report by INTERPOL, which reveals a troubling picture of a continent under siege from complex and well-organised cybercriminals.

The report draws on data submitted by African governments and private sector firms working with INTERPOL. Two-thirds of the countries surveyed admitted that cyber-related offences now make up a medium-to-high portion of their overall crime rate. In parts of West and East Africa, cybercrime accounts for over 30% of all reported criminal incidents.

One of the most jarring findings in the report is the sheer explosion in scam attempts. Countries such as Kenya, Nigeria, and South Africa have reported up to 3,000% increases in scam-related alerts within the last year alone. 

According to Kaspersky, a key contributor to the report, this surge is largely driven by phishing—emails and messages designed to trick users into giving up personal or financial information.

But phishing is just the beginning. The report highlights an increase in ransomware attacks across digitally advanced countries. “Ransomware detections in Africa also rose in 2024, with South Africa and Egypt suffering the highest number, at 17,849 and 12,281 detections respectively, according to data from Trend Micro, followed by other highly digitized economies such as Nigeria (3,459) and Kenya (3,030).”

These attacks are disrupting individuals, businesses, and going after national institutions. Kenya’s Urban Roads Authority was one of the high-profile victims of a breach, while Nigeria’s National Bureau of Statistics suffered an attack on its databases.

Even more disturbing is the rise in Business Email Compromise (BEC) schemes, with West Africa emerging as a hotbed of syndicates such as the notorious Black Axe. These groups operate highly structured fraud networks that have siphoned millions from victims worldwide, often masquerading as legitimate organisations.

Another growing area of concern is digital sextortion. INTERPOL reported a 60% spike in such cases. Criminals often manipulate victims into sharing intimate content or use fake, AI-generated images to extort them. These attacks can be emotionally devastating and difficult to prosecute, especially in societies where victims may be reluctant to report such cases.

INTERPOL’s Cybercrime Director, Neal Jetton, stressed the gravity of the situation. “This fourth edition of the INTERPOL African Cyberthreat Assessment provides a vital snapshot of the current situation, informed by operational intelligence, extensive law enforcement engagement, and strategic private-sector collaboration. It paints a clear picture of a threat landscape in flux, with emerging dangers like AI-driven fraud that demand urgent attention. No single agency or country can face these challenges alone.”

The institutional response, however, is still inadequate. The report notes that 75% of African countries admitted their cybercrime laws and prosecutorial frameworks are outdated or insufficient. Even worse, 95% say they lack the training, tools, and resources to implement the laws that already exist.

Many countries still lack the basics: just 30% have a formal incident reporting system, 29% possess a digital evidence repository, and only 19% maintain a cyberthreat intelligence database. 

This limited capacity seriously affects cross-border investigations and slows down international cooperation. 86% of countries said collaboration with foreign agencies is hampered by red tape and logistical constraints.

Public-private partnerships are another weak link. 89% of countries surveyed said their cooperation with companies that could provide vital data or technical expertise is subpar, mostly due to poor coordination structures or outdated regulations.

With the challenges, however, there are small signs of progress. A growing number of African nations have begun aligning their cybersecurity legislation with global standards. Some have invested in specialised cybercrime units and forensic labs. 

These advances were showcased in INTERPOL-led operations such as Operation Serengeti and Operation Red Card, which led to more than 1,000 arrests and the takedown of hundreds of thousands of malicious networks.

Ambassador Jalel Chelba, acting executive director of AFRIPOL, noted that cybercrime is now a governance issue. “Cybersecurity is not merely a technical issue; it has become a fundamental pillar of stability, peace, and sustainable development in Africa. It directly concerns the digital sovereignty of states, the resilience of our institutions, citizen trust, and the proper functioning of our economies.”

To strengthen Africa’s ability to tackle this rising tide of cyber threats, INTERPOL recommends six immediate priorities: boost regional and international cooperation; run public awareness campaigns; modernise cybercrime laws; upgrade operational infrastructure; adopt advanced investigative technologies; and deepen collaboration with the private sector.

The report forms part of INTERPOL’s African Joint Operation against Cybercrime (AFJOC) programme, supported by the UK Foreign, Commonwealth & Development Office, and it benefits from contributions by global cybersecurity firms like Group-IB, Trend Micro, Bi.Zone, and Kaspersky.

Without urgent, coordinated action across governments, security agencies, and the tech sector, Africa may find itself overwhelmed by a threat that knows no borders and stops at nothing.

Aiming to tackle “celeb-bait” scams, the trial, set to begin in December, will enrol around 50,000 public figures whose Facebook profile pictures will be compared to images used in suspected scam ads.

If a match is found, Meta will block the offending advertisement. Celebrities involved will be notified and given the option to opt out of the programme. 

The initiative will be implemented globally, with exceptions in regions such as the UK, the EU, South Korea, and select U.S. states where regulatory clearance is still pending.

Monika Bickert, Meta’s vice president of Content Policy, noted that this new feature is one of the company’s tactics to protect public figures from scams that exploit their likeness without consent. “We aim to provide as much protection as possible,” Bickert stated, adding that public figures can easily opt-out if they prefer not to participate.

The announcement follows a challenging period for Meta in addressing privacy issues. In 2021, the company shut down its previous facial recognition system, due to societal concerns, and more recently faced a $1.4 billion fine in Texas over accusations of improperly collecting biometric data.

Despite these setbacks, Meta is pushing forward with this targeted use of facial recognition technology, aiming to strike a balance between fighting the growing threat of scam ads and respecting privacy boundaries. 

Meta has promised to delete all facial data used in the comparison process immediately, ensuring that it will not be stored or reused for other purposes.

In addition to tackling scams, the company is also testing the use of facial recognition to help users regain access to compromised accounts, ensuring a more secure alternative to traditional document-based verification methods.