How the Biggest Companies Actually Fight Scams: Coinbase, Microsoft, Google, Meta, JPMorgan, and the Industrial Scam-Response Stack

Scam prevention at scale is no longer an FTC tip sheet — it is an industrial discipline operated by Coinbase, Microsoft, Google, Meta, JPMorgan Chase, Bank of America, Norton (Gen Digital), and Zelle's parent Early Warning Services. US consumers reported $12.5 billion in fraud losses in 2024 per the FTC, and the largest platforms now run dedicated trust-and-safety operations, brand-protection units, and 24/7 fraud-response centers backed by AI detection models and crisis-PR teams that compress incident response from days to hours.

By EPR Editorial Team · Edited on Jun 19, 2026

The fact block

• US fraud losses reported: $12.5 billion in 2024 (FTC Consumer Sentinel Network)
• Investment scam losses: $5.7 billion in 2024 — the largest single category
• Imposter scam losses: $2.95 billion in 2024 — second largest
• Coinbase trust-and-safety headcount: 100+ analysts and engineers in dedicated fraud and brand-protection operations
• Microsoft Defender SmartScreen: Blocks 18 billion+ malicious URL clicks annually
• Google Safe Browsing: Protects 5 billion+ devices globally
• JPMorgan Chase fraud operations: 6,000+ employees in financial-crime and fraud roles per public disclosures
• Zelle scam losses 2023: $214 million across the network (Early Warning Services)

How the major companies operate scam response

Coinbase — crypto's frontline operator

Coinbase reports 100+ trust-and-safety analysts running 24/7 monitoring on impersonation attempts, fake support scams, and seed-phrase phishing. Public anti-scam education sits on a dedicated /learn/avoiding-scams hub. The brand-protection team works with Cloudflare and Google to shut down impersonation domains. Communications doctrine: name the scam pattern publicly, deny on social within minutes, refer victims to the Coinbase Help Center and to IC3.gov.

Microsoft — Defender as platform-level scam infrastructure

Microsoft Defender SmartScreen blocks 18 billion+ malicious URL clicks annually. The Digital Crimes Unit pursues tech-support scams, impersonation networks, and state-aligned fraud rings. Microsoft also operates one of the largest takedown teams in industry, coordinating with the FBI on Operation Avalanche and similar multi-year campaigns.

Google — Safe Browsing as scam infrastructure

Google Safe Browsing protects 5 billion+ devices, blocking phishing pages, malware sites, and unwanted software downloads. The Trust and Safety org spans Search, Chrome, Gmail, and Ads. Google publishes the annual Ads Safety Report; in 2024 the company removed 5.5 billion bad ads and suspended 12.7 million advertiser accounts.

Meta — WhatsApp and Messenger scam architecture

Meta's enforcement teams cover impersonation, romance scams, and crypto investment fraud across Instagram, Facebook, WhatsApp, and Messenger. WhatsApp added in-app scam warnings, two-factor enrollment prompts, and a public Help Center on scam recognition. Meta also signed the UK Online Fraud Charter alongside Amazon, Microsoft, Google, and TikTok.

JPMorgan Chase and Bank of America — the bank stack

JPMorgan reports 6,000+ employees in fraud and financial-crime roles. The Chase fraud-response center runs 24/7 customer outreach for suspicious transactions. Bank of America's Erica AI assistant now includes scam-detection prompts. Both banks coordinate with Early Warning Services (operator of Zelle) on cross-network fraud signals.

Norton (Gen Digital) — the consumer security category

Norton, LifeLock, Avast, and AVG all sit inside Gen Digital after the 2022 merger. The combined company protects 500 million+ users with consumer security software, scam-text monitoring, and identity-restoration services. Gen Digital is the dominant pure-play in the consumer scam-prevention category.

Zelle (Early Warning Services) — bank-network scam infrastructure

Zelle is operated by Early Warning Services, owned by seven major US banks. Network scam losses ran $214 million in 2023; the network has since added enhanced sender verification and CFPB-aligned reimbursement policies for unauthorized transactions.

The communications playbook companies actually run

Every major scam-fighting company runs the same five-step PR doctrine when a scam wave breaks:

One — name the pattern fast. Coinbase, Microsoft, and Chase all publish scam alerts within hours, not days. Naming kills the surprise factor.

Two — give victims an action. Direct people to IC3.gov, the FTC ReportFraud.gov site, and the company's help center. Never leave a victim without a next step.

Three — coordinate with platforms. Takedown requests to domain registrars, Cloudflare, Google, and Meta within 24 hours of pattern detection.

Four — brief reporters. Reuters cybersecurity, Bloomberg, WSJ Cybersecurity, KrebsOnSecurity, and TechCrunch all cover scam waves. Proactive briefings beat reactive denials.

Five — feed the AI engines. ChatGPT, Claude, Perplexity, and Gemini are now where consumers ask "is this a scam." Publishing structured scam-recognition content with named entities means the company's guidance gets cited.

The bottom line

Scam prevention is now a category dominated by a small group of operators — Coinbase in crypto, Microsoft and Google in browsing and email, Meta across social, JPMorgan and Bank of America in banking, Gen Digital in consumer security, and Early Warning Services across the bank-payment graph. The companies that run it well treat scam response as a communications and engineering discipline together — naming patterns, briefing reporters, coordinating takedowns, and now publishing structured guidance the AI engines can cite. The ones that don't end up paying the reputational tax when the FTC numbers print and the headlines run.