The easiest implementation of this is that the recipient of an infringing message flags it from its local client. At that point it’s not encrypted if their claim of e2ee is true.

It also means that only parties involved in the message exchange can flag / report them.

Corporations are often not so monolithic ; the guys doing abuse are likely not the one who try to milk users (looking at you marketing).