[danpalmer]

I think you might underestimate the number of people working on this stuff. There are rarely trade-offs between, as you suggested, working on ad engagement and YouTube scam comments. Both will have teams working on them.

At a very high level you could argue that the number of people being allocated to each may not be right, but it's not that one or the other doesn't have any resources.

From what I've seen, people at Google are very cognizant of these issues, and the only real reason that the public may see progress come and go is that these are hard problems and the work against malicious content is sadly never-ending.

[luckylion]

Thank you for your perspective. It's frustrating from the outside with the lack of progress (or even acknowledgement, really), and it feels like nobody is working on it (or cares). I'm sure they're hard problems, but on the other hand I'm sure Google has lots of smart people, and they have sheer endless resources and own pretty much every part of the user journey and the stack, and the attacks aren't even sophisticated.

Amazon had a similar issue a while back where well-rated seller accounts got hacked (or sold?) and started offering vastly underpriced premium items with text added somewhere to get in contact with the seller, trying to get people off of the platform. But to their credit, they dealt with it pretty swiftly, and I'd consider it a solved problem, I haven't seen it since.