Yes, of course new accounts should be scrutinized.

But what I find more interesting is how you prevent someone from training a model adversarially via one of your legitimate customers.

Wouldn't any of your customers that use your service to make a decision about something uploaded by a user be an attack vector?