December 31, 2024 ZW confirmed
Zimbabwe: RBZ maintains AML framework post-FATF grey list exit — high risk hyperinflation + gold
The Reserve Bank of Zimbabwe (RBZ) and the Financial Intelligence Unit (FIU Zimbabwe) intensified AML/CFT inspections during 2024 under the framework of the Money Laundering and Proceeds of Crime Act 2013. Zimbabwe was added to the FATF grey list in October 2019 and exited in February 2022 after completing the action plan. Zimbabwe's specific AML risks are extraordinarily elevated: chronic hyperinflation (ZW$ loses value daily), de facto dollarized economy with parallel US dollar use, massive illegal gold mining (Al Jazeera's Gold Mafia exposé in 2023 linked ZANU-PF politicians to gold laundering to Dubai and South Africa), systemic ruling party corruption, US/EU sanctions on Mnangagwa regime individuals. The banking sector is concentrated in: CBZ Bank, Standard Chartered Zimbabwe, Stanbic Zimbabwe (Standard Bank Group), ZB Financial Holdings. Zimbabwe is an ESAAMLG member. The introduction of ZiG (Zimbabwe Gold) in April 2024 as a new gold-backed currency has generated additional AML risks due to its limited traceability.
November 30, 2008 ZW confirmed
Zimbabwe: hyperinflation 89.7 sextillion % Nov 2008 (second worst in history) + Mugabe/Gono sanctions
Zimbabwe (16M inhabitants, capital Harare, former Rhodesia, independence 1980) lived under **Robert Mugabe** (President 1987-2017, PM 1980-1987 — **37 years in power**, removed by military coup November 2017, died 2019) **one of the worst hyperinflations in world history**. In **November 2008, Zimbabwe's monthly inflation reached 79,600,000,000% (79.6 billion percent monthly) = ~89.7 sextillion percent annually** — the **second worst documented hyperinflation in history after Hungary 1946**. The Reserve Bank of Zimbabwe (RBZ) under governor **Gideon Gono** (1983-2013) printed banknotes of up to **$100 TRILLION Zimbabwean dollars** (worth ~$0.40 USD) — phenomenon catalyzed by: Mugabe's **'Fast Track Land Reform' (2000)** that expropriated white farmers' farms (collapsing agriculture, formerly 'Africa's breadbasket'), uncontrolled money printing to finance deficits + Congo war + ZANU-PF patronage, Western sanctions. In **April 2009, Zimbabwe abandoned the Zimbabwean dollar** and adopted multi-currency (USD + South African rand + others). It returned to an RTGS dollar 2019, bond notes, and in **2024 launched the 'ZiG' (Zimbabwe Gold)** gold-backed currency — still with credibility problems. **Robert Mugabe + Grace Mugabe (wife) + 200+ ZANU-PF elite were sanctioned by OFAC (SDN) since 2003** (Executive Order 13288 + 13391 + 13469) + EU + UK for human rights abuses + corruption + electoral fraud + Gukurahundi massacres (1983-1987, 20,000 Ndebele killed). **Emmerson Mnangagwa** ('the Crocodile', Mugabe's VP, succeeded him after the 2017 coup, President since 2017) — sanctions partially lifted/modified 2024 (US transitioned to targeted Global Magnitsky). The RBZ + Financial Intelligence Unit supervise. Zimbabwe is an ESAAMLG member.
December 31, 2024 ZM confirmed
Zambia: BoZ tightens AML — first African country default 2020 + 2024 Chinese debt restructuring
The Bank of Zambia (BoZ) and the Financial Intelligence Centre (FIC Zambia) intensified AML/CFT inspections during 2024 under the framework of the Prohibition and Prevention of Money Laundering Act 2001, amended in 2010, 2020 and 2023 to align with FATF recommendations. Zambia became the **first African country to make a sovereign default post-COVID** in November 2020 ($17 billion external debt), being the first significant case under the G20 Common Framework. Restructuring was completed in June 2024 with a partial pardon coordinated by China (the largest creditor with $6.5 billion of $17 billion), after 4 years of extensive diplomatic negotiations. Specific Zambian AML risks include: illegal copper and emerald mining (Zambia is the world's second copper producer + Kagem Mining produces 25% of world emeralds), political corruption associated with Edgar Lungu's PF (US Engel List designations), conflict with DRC (cobalt, copper), massive Chinese investment (Belt and Road, Chinese debt), wildlife trafficking (ivory, rhino horn). The banking sector is dominated by subsidiaries: First National Bank Zambia (South African FirstRand), Standard Chartered Zambia, Stanbic Bank Zambia (Standard Bank Group), Zambia National Commercial Bank (Zanaco, partially Dutch Rabobank). Zambia is an ESAAMLG member. President Hakainde Hichilema (UPND, since August 2021) has promoted visible anti-corruption reforms but with mixed results.
January 17, 2024 YE confirmed
Yemen: OFAC designates Houthis as FTO in Jan 2024 — civil war + Red Sea blockade + dual financial system
On **January 17, 2024**, OFAC **redesignated the Houthis (Ansar Allah)** as **Specially Designated Global Terrorists (SDGT)** under Executive Order 13224, after systematic attacks on international shipping in the Red Sea started in November 2023 (in supposed solidarity with Hamas post-October 7). Trump 1.0 had designated the Houthis as FTO in January 2021, Biden removed them in February 2021 due to humanitarian concerns, and Biden redesignated them in January 2024 (SDGT, not FTO). Trump 2.0 is proceeding with FTO designation (announced March 2025). Yemen lives **a civil war since 2014** between the **Houthis (Zaidi Shia, controlling ~70% of the population via Sanaa)** and the **legitimate Yemen government (Aden, Sunni)** supported by the Saudi-Emirati coalition. Yemen has **two parallel banking systems**: **(1) Central Bank of Yemen Aden** (internationally recognized government, controlled by Hadi/Alimi), **(2) Central Bank of Yemen Sanaa** (controlled by Houthis, **redesignated SDGT by OFAC in May 2025**). The conflict has caused **390,000+ deaths** (2014-2024 according to ACLED + UNDP) and **the world's worst humanitarian crisis** (24M people needing assistance, famine documented by UN). Specific Yemeni AML risks: **Houthi taxation** in controlled areas (massive taxes on local businesses), **Iranian arms smuggling** via Hodeidah port (annual UN reports, IRGC support since 2014), **oil blocked** from Hadhramaut/Marib, **dominant hawala** post-banking collapse, **Saudi Arabian aid funds** diverted. Yemen is a MENAFATF member.
December 31, 2024 YE confirmed
Yemen: dual banking system since 2014 — Houthis designated FTO by OFAC in January 2024
Yemen presents one of the world's most complex banking systems since the start of the civil war in 2014: after the Houthi (Ansar Allah, Zaidi Shia movement backed by Iran) takeover of Sanaa in September 2014, the Central Bank of Yemen was divided into two jurisdictions: the Central Bank of Yemen-Aden (controlled by the internationally recognized government, President Rashad al-Alimi, backed by the Saudi coalition), and the Central Bank of Yemen-Sanaa (controlled by the Houthis). Both institutions issue the same currency (Yemeni rial, YER) but with drastically different exchange rates and mutual circulation rejection. **On January 17, 2024**, OFAC designated the Houthi movement (Ansar Allah) as a Specially Designated Global Terrorist (SDGT) after attacks on merchant ships in the Red Sea since November 2023. Additionally, **on February 6, 2024**, OFAC designated Ansar Allah as a Foreign Terrorist Organization (FTO), restoring a designation that the Biden administration had reversed in 2021. The designations affect the Central Bank of Yemen-Sanaa's relations with the international banking system. Yemen is in high-risk position in MENAFATF evaluations, with specific AML risks: massive informal hawala, Houthi financing via Iran (Quds Force), arms trafficking, contested refugees, exposure to USS Cole 2000 attack legacy, AQAP (Al-Qaeda in the Arabian Peninsula) — Al-Qaeda's most lethal branch. The Yemeni humanitarian crisis is considered the world's worst according to the UN.
January 17, 2024 YE confirmed
Yemen: OFAC re-designated Houthis as FTO on Jan 17 2024 — dual banking system Sanaa vs Aden + Red Sea attacks
On January 17, 2024, the Biden administration re-designated the Houthis (Ansar Allah, Iran-backed Yemeni Zaidi-Shia movement) as Specially Designated Global Terrorists (SDGT) under Executive Order 13224 — had been designated FTO in January 2021 by Trump 1.0 and reverted by Biden in February 2021 over humanitarian concerns. The 2024 re-designation was catalyzed by massive Houthi attacks on Red Sea Shipping since November 2023 (post-Oct 7 2023 Gaza war), including anti-ship ballistic missiles, drones, attacks against USS Carney + multiple merchant vessels, Galaxy Leader hijacking (Nov 2023). Global trade through Red Sea + Bab el-Mandeb (~12% of world maritime trade, $1 trillion annually) has been massively disrupted, with Maersk, MSC, CMA CGM, Hapag-Lloyd routing via Cape of Good Hope (extra 10-14 days + $1M+ extra fuel per ship). Yemen has lived civil war 9+ years (since March 2015 — Saudi-Emirati coalition vs Houthis) — the conflict has caused the world's worst humanitarian crisis according to UN (377,000+ deaths, 24M+ needing humanitarian aid out of 30M inhabitants). The Yemeni banking sector is divided: Central Bank of Yemen (CBY) in Sanaa (controlled by Houthis) vs CBY in Aden (internationally recognized government, chaired by Rashad al-Alimi Presidential Leadership Council). The banking system has been devastated: hyperinflation, dual currency (Yemeni rial splits into two versions), banking restrictions in Houthi zones. Yemen is a MENAFATF member.
May 5, 2016 PA confirmed
Panama: OFAC designates the Waked MLO under the Kingpin Act (May 5, 2016) — 8 individuals + ~68 companies, Balboa Bank seized; staggered delisting 2016-2025
On **May 5, 2016**, the US Treasury's Office of Foreign Assets Control (**OFAC**) designated the **Waked Money Laundering Organization (Waked MLO)** and its leaders **Nidal Ahmed Waked Hatum** and **Abdul Mohamed Waked Fares** (b. Dec 19, 1949, Kamed El Louz, Lebanon; Panama/Lebanon/Colombia citizen) as **Specially Designated Narcotics Traffickers** under the **Foreign Narcotics Kingpin Designation Act**. The action —coordinated with DEA, CBP and the FBI Miami division— reached **8 individuals and ~68 companies** (77 entities total). Designated associates: brothers **Gazy, Ali and Jalal Waked Hatum**; **Mohamed Abdo Waked Darwich** (Waked Fares' son, duty-free/real estate); and attorneys **Norman Douglas Castro Montoto** and **Lucia Touzard Romo** (shell-company incorporation). Core companies: **Grupo Wisa S.A.** (flagship holding), **Vida Panama (Zona Libre) S.A.**, **La Riviera** (duty-free chain in 11 countries, RUC 645451-1-458900), **Soho Panama S.A.** (luxury mall), **Importadora Maduro / Felix B. Maduro** (department store since 1877) and **Balboa Bank & Trust** (controlled by holding **Strategic Investors Group Inc.**). OFAC alleged **trade-based money laundering** (false commercial invoicing, bulk cash smuggling) for international drug traffickers (DEA cited clients from the Sinaloa Cartel to the FARC). That same May 5 (2:30 pm) the **Superintendence of Banks of Panama (SBP) seized Balboa Bank & Trust** and the SMV seized Balboa Securities. **Key point: the designation is administrative, not criminal.** Nidal Waked was arrested in Bogota (May 4-5, 2016), extradited to Miami (Jan 19, 2017) and signed a **plea deal for a SINGLE offense (bank fraud, Oct 19, 2017)**; he walked free in April 2018 after ~27 months. Judge Robert Scola dismissed a ~$20M fine; the plea acknowledged that **no bank suffered losses and all withdrawals were repaid with interest** (InSight Crime: 'the US bungled its case'). **Abdul Waked never faced formal criminal charges in the US.** OFAC delisted entities in stages: Felix B. Maduro (Nov 2016, sold to Grupo Arrocha), Soho Mall (Jun 2017, bought by Mexico's Citelis+CAABSA), La Estrella/El Siglo + Balboa Bank (Oct 2017, after transferring 51% of the papers to a foundation), attorney Touzard (Jan 2018), ~13 inactive companies (Apr 2021), dissolved Soho/Waked Internacional/Abif/Grupo La Riviera Panama S.A. (Sep 2021), and further removals of dissolved entities. The **La Riviera operation remained blocked** and **Abdul and Nidal Waked remained designated as of 2024** (Newsroom Panama). **Verification (primary source, 2026):** OFAC's May 15, 2025 action (FR 2025-09055) is a removal under Executive Order 13224 / the Hizballah Act (terrorism), NOT the Waked case (Kingpin Act/SDNTK); it therefore does not affect the Wakeds. As of 2024, Abdul and Nidal Waked remained designated.
September 1, 2025 VN confirmed
Vietnam: SBV deletes 86M bank accounts in Sep 2025 over biometric verification failure
The State Bank of Vietnam (SBV / Ngân hàng Nhà nước Việt Nam) executed from September 1, 2025 a mass bank account cleanup, deleting approximately 86 million accounts that had not completed biometric authentication or had been frozen for a long time. Of the approximately 200 million accounts in the system, only about 113 million personal and ~711,000 organizational ones remained valid. The regulatory framework is Circular 17/2024/TT-NHNN, which extends biometric KYC from consumers to corporate accounts: from July 1, 2025, legal representatives must be both ID-verified and biometrically verified. For individuals, transfers over 10 million VND (~$380) or daily totals above 20 million VND (~$760) require live biometric authentication. First mobile transaction from a new or unrecognized device also requires biometrics. 'This isn't a show-ID-once-at-onboarding world; it's continuous proof-of-life', analysts summarize. A parallel operation to Thailand's mule account cleanup but at a dramatically larger scale.
June 1, 2018 VU confirmed
Vanuatu: FATF blacklist exit 2018 + lost Schengen visa rights 2024 over CBI program
Vanuatu, an archipelago of 80 islands in the South Pacific with ~330,000 inhabitants, has historically been one of the world's most prominent tax havens, with the world's most permissive Citizenship by Investment (CBI) program (Vanuatuan passport for $130,000 USD without residency requirement). The Reserve Bank of Vanuatu (RBV) and the Financial Intelligence Unit (FIU Vanuatu) supervise the banking system under the framework of the Anti-Money Laundering and Counter-Terrorism Financing Act 13 of 2014, amended in 2017, 2019 and 2023. Vanuatu was added to FATF blacklist in 2016 and exited in June 2018 after implementing action plan. However, in 2024, the EU suspended Schengen visa privilege for Vanuatuan passport holders over the CBI program that sold passports to >10,000 people — many from high-risk jurisdictions (China, Russia, Iran, Syria). The CBI program generated ~$120M annually in revenues for Vanuatu (40% of government budget) but was identified as an AML vector by financial intelligence consultants and OCCRP reporting. The EU also included Vanuatu on its non-cooperative jurisdictions list (Annex II) in 2024.
December 31, 2024 UY confirmed
Uruguay: BCU + SENACLAFT tighten AML — regional financial center + crypto-friendly post-2021 + compliant
The Central Bank of Uruguay (BCU) and the National Secretariat for the Fight against Money Laundering and Terrorist Financing (SENACLAFT) supervise the Uruguayan banking sector under the framework of Law 17,835 / 19,574 on AML/CFT. Uruguay (3.4M inhabitants, capital Montevideo) is one of Latin America's most stable and compliant countries, **#1 in Transparency CPI LAC region 2024 (tied with Chile)**. Operates the Uruguayan peso (UYU). Uruguay has **one of the few reformed full-secrecy banking systems** post-OECD pressure 2009 — gradually eliminated historical bank secrecy, complete reform post-2017 (Law 19,484 with full beneficial ownership transparency). Specific Uruguayan AML risks: **agriculture + livestock** (Uruguay is largest sheep producer worldwide per capita + 4th global beef exporter), **Punta del Este real estate boom** (Buenos Aires riche escape + Brazilian wealth) — Punta del Este is comparable to Cap d'Antibes + Aspen, **regional financial center** attractive for Argentine + Brazilian HNWIs refugees from instability — Uruguay grants quick residency via **'pensionado' or investment residency** ($1.7M property purchase pathway). Uruguay is one of the most **crypto-friendly in the region** — Law 19,620 (Financial Inclusion Law) recognizes crypto + 2024 Virtual Assets Law in discussion. **Asylum in Uruguay case - Sebastián Marset** (Uruguayan drug trafficker, expelled from Paraguay 2023, Bolivia fugitive 2025). The banking sector is concentrated in: Banco República (BROU, largest state-owned), Banco Bandes Uruguay (Venezuelan subsidiary), Banco Santander Uruguay, Banco Itaú Uruguay, BBVA Uruguay, HSBC Uruguay, Discount Bank. Uruguay is a GAFILAT member.
October 24, 2025 BF confirmed
WAEMU: Togo + Benin + Mali + Burkina Faso + Niger — Sahel coups 2020-2023 + Burkina Faso FATF exit Oct 2025
The 5 WAEMU countries analyzed (excluding Ivory Coast, Senegal, Guinea-Bissau covered separately) sharing CFA franc XOF: Togo (8.8M) + Benin (13M) + Mali (22M) + Burkina Faso (22M) + Niger (26M). The 'Sahel coup belt' 2020-2023 was one of the most significant political earthquakes in post-2000 Africa: Mali experienced military coups August 2020 + May 2021 (Assimi Goïta), expelled French Operation Barkhane (August 2022), invited Wagner Group (~1,500 mercenaries), left ECOWAS along with Burkina Faso + Niger (January 2024 forming AES Alliance des États du Sahel). Burkina Faso coups January 2022 (Damiba) + September 2022 (Ibrahim Traoré, 36 yo). Burkina Faso exited FATF grey list Oct 2025 along with South Africa, Mozambique, Nigeria. Niger coup July 26 2023 (Tchiani, removed Bazoum). Wagner/Africa Corps active in all three. All under varying ECOWAS + EU + US sanctions. Togo (Gnassingbé 58-year dynasty) + Benin (Patrice Talon since 2016) remain stable. BCEAO supervises 8 WAEMU countries. GIABA members.
December 31, 2024 TN confirmed
Tunisia: BCT + CTAF tighten AML — post-Ben Ali asset recovery + Arab Spring 2011 + Saied regime
The **Banque Centrale de Tunisie (BCT)** and the **Commission Tunisienne des Analyses Financières (CTAF)** supervise the Tunisian banking sector under the framework of Law 2015-26 on AML/CFT (amended in 2019 and 2023). Tunisia (12M inhabitants) was the **cradle of the Arab Spring** (Jasmine Revolution, December 2010 - January 2011 that overthrew **Zine El Abidine Ben Ali** who had governed since 1987). The Ben Ali-Trabelsi clan assets (first lady's political family) **were frozen in multiple jurisdictions**: Switzerland $700M+ (recovered 2018-2019 via Swiss-Tunisian cooperation), France $250M, Lebanon, US, UK. **Ben Ali died in exile in Saudi Arabia in September 2019**, without serving sentences (accumulated 200+ years in in absentia sentences). Under the **Kais Saied regime (President since October 2019)**, Tunisia has lived democratic tensions (constitutional coup July 25, 2021 when Saied suspended parliament + 2022 constitutional reform). Specific Tunisian AML risks: **post-Ben Ali asset recovery process** continued (Tunisia Recovery Commission), **terrorism and ISIS returnees** (Tunisia had the highest number of foreign fighters per capita who joined ISIS pre-2017), **Mediterranean corridor** (migrants to Italy/Lampedusa), **political corruption** (Hela Ouanes case 2024 — judicial corruption). The banking sector is concentrated in: BNA (Banque Nationale Agricole), STB (Société Tunisienne de Banque), BIAT (Banque Internationale Arabe de Tunisie), Attijari Bank Tunisia (Moroccan subsidiary), UIB (Union Internationale de Banques, Société Générale subsidiary). Tunisia is a MENAFATF member.
December 31, 2024 TT confirmed
Trinidad and Tobago: CBTT + FIUTT tighten AML supervision, designated 'major money laundering jurisdiction' by US
The Central Bank of Trinidad and Tobago (CBTT) along with the Financial Intelligence Unit of Trinidad and Tobago (FIUTT) and the Trinidad and Tobago Securities Exchange Commission (TTSEC) intensified AML/CFT/CPF inspections during 2024 under the framework of the Financial Obligations Regulations 2010. Trinidad and Tobago was removed from the FATF grey list in February 2020 after 'significant progress' in AML effectiveness, but the US Department of State maintains it designated as a 'major money laundering jurisdiction' due to: geographic proximity to Venezuela (7 miles), drug and human trafficking transit, status as the Caribbean's largest trading nation, and 'lack of political will, low prosecutions and weak capacity to address laundering'. Less than 10% of criminal proceeds are detected by the government according to independent evaluations. T&T is a CFATF member and works closely with the US on drug control and tax information exchange through the Caribbean Basin Security Initiative. Commercial banks and the Securities Commission monitor suspicious transactions and report to FIUTT.
December 31, 2024 TT confirmed
Trinidad and Tobago: CBTT tightens AML — post-FATF grey list 2017-2020 + ISIS recruitment legacy
The Central Bank of Trinidad and Tobago (CBTT) and the Financial Intelligence Unit of Trinidad and Tobago (FIUTT) supervise the Trinidadian banking sector under the framework of the Proceeds of Crime Act 2018 (amended in 2020 and 2023). Trinidad and Tobago (1.4M inhabitants, Caribbean archipelago near Venezuela, capital Port of Spain) **exited the FATF grey list in February 2020** after inclusion in November 2017 (28 months in monitoring). The country is one of the main natural gas producers in the Caribbean and Americas (Atlantic LNG, Methanex methanol). Specific Trinidadian AML risks: **ISIS recruitment legacy** — Trinidad and Tobago has **the highest per capita rate in the Western world of ISIS recruits post-2014** (~400 documented, mainly from the Muslim Trinidadian community of Diego Martin and other neighborhoods — case prominently covered by Foreign Policy/NYT 2017), **Venezuela-Caribbean-US cocaine corridor** (Trinidad is ~11 km from Venezuela), **Port of Spain gangs** (Rasta City vs Muslim City rivalry — 600+ annual homicides), real estate boom from diaspora. The banking sector is concentrated in: Republic Financial Holdings (Republic Bank), First Citizens Bank, Royal Bank of Trinidad and Tobago (RBTT, now RBC), Scotiabank Trinidad, Citibank Trinidad. Trinidad and Tobago is a CFATF member.
December 31, 2024 TO confirmed
Tonga: NRBT tightens AML — remittances 40% GDP + constitutional monarchy + 2022 Hunga Tonga volcano
The **National Reserve Bank of Tonga (NRBT)** and the Transactions Reporting Authority supervise the Tongan banking sector under the framework of the Money Laundering and Proceeds of Crime Act 2000 (amended in 2014, 2018 and 2022). Tonga (107,000 inhabitants, archipelago of 169 islands in the South Pacific) is **a constitutional monarchy under King Tupou VI** (on the throne since 2012). The country operates the Tongan paʻanga (TOP), pegged to a basket of USD/AUD/NZD/JPY. Specific Tongan AML risks: **massive remittances** (40% of GDP, $200M annually — second most dependent country in Polynesia, after Samoa), economy dependent on tourism and fishing, corridor with New Zealand and United States (largest Tongan diasporas, ~125,000 outside Tonga, more than inside), absentee tonga overseas real estate, extreme climate vulnerability (Hunga Tonga–Hunga Haʻapai volcano eruption of January 15, 2022 — the largest eruption of the 21st century, caused tsunami that affected Pacific Rim coasts, lost submarine communication for weeks), recent massive cyberattack in 2023 to NRBT (Akira ransomware). The banking sector is dominated by: ANZ Tonga (Australian), Bank of South Pacific Tonga (BSP), MBf Bank Tonga, Westpac Tonga (closed 2024 — sold to BSP). Tonga is an APG member.
December 31, 2024 TL confirmed
Timor-Leste: BCTL tightens AML — Petroleum Fund $19B + Australia/Indonesia corridor
The **Banco Central de Timor-Leste (BCTL)** and the Financial Intelligence Unit (UIF) supervise the Timorese banking sector under the framework of Law 17/2011 on AML/CFT (amended in 2018 and 2023). Timor-Leste (1.3M inhabitants, capital Dili) became independent on **May 20, 2002** after 24 years of Indonesian occupation (1975-1999) post-genocide (~200,000 deaths according to the Commission for Reception Truth and Reconciliation CAVR) and UN UNTAET transitional administration (1999-2002). The country operates the USD as official currency (without its own currency). Specific Timorese AML risks: **Petroleum Fund** ($19 billion AUM managed according to the Norwegian Pension Fund model — one of the world's highest per capita SWFs proportional to GDP), corridor with Australia (Timor Sea oil dispute resolved in 2018 via Hague PCA arbitration), corridor with Indonesia (porous border, refugees, smuggling), political corruption associated with former PM Mari Alkatiri (Fretilin) and Gusmão/Ramos-Horta dynasty, **Timorese in Australia/Portugal/UK** (diaspora ~50,000), Dili real estate boom. The banking sector is concentrated in: BNU Timor-Leste (Banco Nacional Ultramarino, Portuguese CGD subsidiary), Bank Mandiri Timor (Indonesian subsidiary), ANZ Timor-Leste (Australian), Banco Nacional de Comércio (BNCTL, state). Timor-Leste is an APG member.
December 31, 2024 TH confirmed
Thailand: BOT suspends 1.75M mule accounts in 2024 and tightens penalties under 2025 Royal Decree
The Bank of Thailand (BOT) coordinated in 2024 the collective suspension of 1,750,000 mule accounts (accounts used by third parties to launder money) under the Anti-Online Scam Operation Center (AOC) created by Royal Decree. The operation, in collaboration with the Ministry of Digital Economy and Society, Royal Thai Police, the Technology Crime Suppression Division, AMLO (Anti-Money Laundering Office) and others, also arrested 2,495 individuals for possessing mule accounts and SIMs linked to laundering. Thai citizens lost 60 billion baht ($1.7B) to digital scams between 2023 and 2024 (~60-70 million baht daily). In April 2025 the Royal Decree on Measures for the Prevention and Suppression of Technology Crimes (No. 2) B.E. 2568 was passed, increasing penalties: unauthorized disclosure of personal data up to 5M baht ($145K) and 5 years prison (up from 1M and 1 year); mule accounts up to 300,000 baht ($9K) and 3 years prison; P2P crypto transactions prohibited. The law makes banks liable for fraud, even when the customer authorized the transaction under deception.
December 31, 2024 TJ confirmed
Tajikistan: NBT supervises — extreme poverty + remittances 35% of GDP + Rakhmon dynasty since 1994
The **National Bank of Tajikistan (NBT)** and the **Financial Monitoring Department** intensified AML/CFT inspections during 2024 under the framework of the Law on Counteracting Legalization of Proceeds from Crime and Financing of Terrorism 2011 (amended in 2016, 2020 and 2024). Tajikistan is one of Central Asia's poorest countries ($1,000 GDP per capita), with an economy highly dependent on **remittances (35% of GDP, $4.5 billion annually, mainly from Russia where 1 million Tajiks work)**. After the Russian invasion of Ukraine Feb 2022, remittance payments were affected by Western sanctions, leading to improvised solutions (cryptos, hawala, alternatives like Chinese UnionPay cards). The regime of President **Emomali Rahmon** (since November 1994, successively reelected in elections considered not free by OSCE/ODIHR), is the world's fourth longest-serving. His son Rustam Emomali (Dushanbe mayor since 2017, Senate President since 2020) is being prepared for succession. Specific Tajik AML risks: massive opium/heroin smuggling from Afghanistan (Tajikistan shares 1,357 km border, main heroin route to Russia/Europe), uranium and rare minerals (Talco Aluminum Company, largest producer), systemic political corruption (Tajikistan CPI Transparency 162/180), ISIS-K cells (Crocus City Hall attack Moscow Mar 2024 involved 4 Tajiks), Wagner Group/Africa Corps activity. The banking sector is dominated by: Eskhata Bank, Orienbank, IBT (International Bank of Tajikistan), Amonatbank (state). Tajikistan is an EAG (Eurasian Group) member.
August 15, 2024 CR confirmed
Costa Rica: SUGEF + UIF tighten AML banking sector supervision in 2024
Costa Rica's General Superintendency of Financial Entities (SUGEF) and the Financial Intelligence Unit (UIF) intensified inspections and administrative sanctions on the banking sector during 2024 under the framework of Law 7786 (Law on Narcotics, Psychotropic Substances, Unauthorized Use Drugs, Related Activities, Capital Legitimization and Terrorism Financing) and Law 8204. Costa Rica is under GAFILAT (Latin American Financial Action Group) supervision. SUGEF publishes sanctioning resolutions on its website but individual amounts are typically low compared to major FATF jurisdictions (average sanctions of 1-50 million colones, ~$2,000-$100,000 USD). The country occupies a key position in the Central American drug and laundering corridor between Mexico and South America.
September 13, 2024 AU confirmed
Australia: AUSTRAC keeps pending case against The Star Entities (opened 2022, 2024 in negotiation)
On November 30, 2022, AUSTRAC filed civil claims against The Star Pty Limited and The Star Entertainment QLD Limited (jointly, The Star Entities) for alleged serious and systemic non-compliance with Australia's AML/CTF laws. The Star Entertainment Group operates casinos in Sydney, Brisbane and Gold Coast. The allegations include: failures in AML/CTF risk management, lack of adequate supervision of junket operators (intermediaries who recruit Asian high-rollers), inadequate due diligence on high-risk customers, lack of ongoing monitoring and suspicious transaction reporting. In 2024, the group simultaneously faced investigations by NSW and Queensland state regulators that questioned the suitability of its casino licenses. The penalty settlement with AUSTRAC remains under negotiation, with market expectations of a significant fine (analysts estimate between A$100M and A$400M, potentially similar to SkyCity A$67M or Crown A$450M depending on scope). It is the fourth major AUSTRAC case in the casino sector after Tabcorp ($45M), CBA ($700M), Westpac ($1.3B), Crown ($450M) and SkyCity ($67M).
December 31, 2024 SV confirmed
El Salvador: SSF tightens AML supervision — first country with bitcoin as legal tender in 2021
El Salvador's Financial System Superintendency (SSF) and the Financial Intelligence Unit (UIF, under the Attorney General) intensified AML/CFT inspections on the banking sector during 2024, under the framework of the Law against Money Laundering and Assets. El Salvador presents a unique regulatory profile: in September 2021 it became the first country in the world to adopt bitcoin as legal tender (Bitcoin Law), generating specific AML/CFT obligations for bitcoin service providers (Chivo Wallet, exchanges). In January 2025, under IMF pressure, El Salvador partially reversed bitcoin's legal tender status, maintaining it as an optional asset. The Salvadoran banking sector is dominated by: Banco Agrícola (Colombian Bancolombia group), Banco Cuscatlán, BAC, Davivienda. The country is supervised by GAFILAT and faces the same Central American drug corridor challenges. The political opposition has denounced elevated AML risk due to bitcoin integration without solid regulatory framework.
October 24, 2025 ZA confirmed
South Africa: FATF removes South Africa from grey list Oct 2025 — Zuma state capture + Bain & Company scandal
On **October 24, 2025**, FATF removed South Africa from the grey list ('Jurisdictions under Increased Monitoring') after 30 months of monitoring initiated in February 2023. South Africa exited along with Mozambique, Burkina Faso and Nigeria — a historic record of 4 African countries exiting on the same date. The **South African Reserve Bank (SARB)** and the **Financial Intelligence Centre (FIC)** supervise the banking sector under the framework of the Financial Intelligence Centre Act 38/2001 (extensively amended in 2017 and 2022). South Africa (60M inhabitants, $400 billion GDP, largest African economy) has faced **'state capture'** during the Jacob Zuma administration (2009-2018): **Zondo Commission Report 2022** (1,700-page judicial) documented systematic state capture by the **Gupta family** (Atul, Ajay, Rajesh Gupta — refugees in UAE since 2018), Salim Essa, intermediaries, with connections to Eskom (utility), Transnet (rail), South African Airways, Denel (defense), South African passport review, regulation control via political friends (Brian Molefe, Lynne Brown, Mosebenzi Zwane). In **June 2023, Jacob Zuma was sentenced to 15 months prison for contempt** for refusing to testify to the Zondo Commission (partially released on compassionate parole). **On July 31, 2025, Zuma was found guilty** on Arms Deal corruption-related charges (trial initiated 2018, prolonged 7 years). **Bain & Company** (US consultancy) was excluded 2022 for 10 years from UK Treasury contracts for its role in state capture (parallel case in US, Africa, South Africa). The South African banking sector is concentrated in: Standard Bank Group (largest African bank), Absa Group (post-Barclays exit 2017), FirstRand (FNB), Nedbank Group, Investec. South Africa is an ESAAMLG founding member.
December 31, 2024 SO confirmed
Somalia: Al-Shabaab FTO since 2008 + state collapse since 1991 + CBS limited to Mogadishu
Somalia has lived a continuous state collapse since the fall of the Siad Barre regime in January 1991 (33 years of civil war). The Central Bank of Somalia (CBS), re-established in 2009 after decades of inactivity, operates under limited capabilities, mainly in Mogadishu. The money printing regime was completely abandoned (Somali diaspora uses USD informally). The Financial Reporting Center (FRC, Somali FIU) operates with support from IMF, World Bank and the UN Somalia Sanctions Committee. **Al-Shabaab** (Harakat al-Shabaab al-Mujahidin, Al-Qaeda affiliate since 2012) was designated FTO by OFAC in February 2008 and SDGT under Executive Order 13224. UN Security Council Resolutions 1844 (2008), 2002 (2011) and subsequent established arms embargo and individual sanctions against Al-Shabaab. UN Panel of Experts estimates indicate Al-Shabaab generates ~$200M annually via: taxes in zones under control (southern Somalia, Lower Shabelle, Middle Juba), extortion of merchants in non-controlled zones but with presence, charcoal smuggling to the Gulf, ransom kidnappings, taxes on illegal fishing. Somali piracy (2008-2012) generated ransom payments of ~$400-500M at its peak before being reduced by international operations (EU NAVFOR Atalanta, US CTF-151, NATO Ocean Shield). Somalia is a MENAFATF member.
December 31, 2024 SL confirmed
Sierra Leone: BSL + FIU-SL tighten AML — post-civil war RUF 1991-2002 + ICC Charles Taylor case
The **Bank of Sierra Leone (BSL)** and the Financial Intelligence Unit (FIU-SL) supervise the Sierra Leonean banking sector under the framework of the Anti-Money Laundering and Combating of Financing of Terrorism Act 2012 (amended in 2017 and 2023). Sierra Leone (8.8M inhabitants, capital Freetown), West African country, lived **Africa's most brutal civil war** (1991-2002, ~50,000-70,000 deaths, thousands of amputations by RUF — Revolutionary United Front led by Foday Sankoh, financed by **blood diamonds** and supported by Charles Taylor from Liberia). The war ended with British intervention (Operation Palliser 2000) + UN Mission UNAMSIL. The country adopted the **Sierra Leonean leone (SLE)** post-2022 redenomination (1,000:1 with old leone SLL to combat hyperinflation). The **Special Court for Sierra Leone** established in Freetown 2002 convicted multiple RUF leaders (Issa Sesay, Morris Kallon, Augustine Gbao — all 25-52 years prison) and former Liberian President Charles Taylor (case aml-liberia-cbl-taylor-2024). Specific Sierra Leonean AML risks: **Kimberley Process certified diamonds post-2003** but blood diamond corridor residuals persist, **mineral resources** (gold, iron, rutile — Sierra Rutile mine controls 30% of world rutile), Atlantic drug corridor, Freetown real estate, **President Ernest Bai Koroma case** (2007-2018) investigated for corruption by Bio administration (2018-present). The banking sector is concentrated in: Rokel Commercial Bank, Sierra Leone Commercial Bank, Standard Chartered Sierra Leone, Ecobank Sierra Leone, Union Trust Bank, GT Bank Sierra Leone. Sierra Leone is a GIABA member.
December 31, 2024 GT confirmed
Guatemala: SIB sanctions banking sector in 2024, GAFILAT identifies serious deficiencies
Guatemala's Superintendency of Banks (SIB) and the Special Verification Intendancy (IVE) intensified administrative sanctions during 2024 under the framework of Decree 67-2001 (Law against Money Laundering and Other Assets). Guatemala was added to the FATF grey list in February 2025 after GAFILAT evaluation identified significant deficiencies in AML/CFT supervision and enforcement, particularly in the non-banking sector and the effective implementation of FATF recommendations. The country shares the Central American corridor with Costa Rica, Honduras and El Salvador for laundering flows linked to Mexican and South American drug trafficking. SIB publishes some sanctioning resolutions but amounts are typically low compared to major FATF jurisdictions. The grey list inclusion should trigger significant enforcement tightening in the next 24 months, similar to the pattern seen in UAE (exit in 2024), Turkey (2021-2024) and Pakistan (2018-2022).
December 31, 2024 SC confirmed
Seychelles: CBS + FSA tighten AML — former offshore with Pandora/Paradise Papers exposure
The Central Bank of Seychelles (CBS) and the Financial Services Authority (FSA) supervise the Seychelles banking and trust system under the framework of the Anti-Money Laundering and Countering the Financing of Terrorism Act 2020 (consolidated, replacing several previous laws including AML Acts 2006 and 2008). Seychelles, with 95,000 inhabitants, has historically been one of the world's most permissive offshores, with more than 200,000 International Business Companies (IBC) registered — more IBCs than inhabitants (ratio 2:1, the highest in the world). The offshore industry represents ~16% of GDP. ICIJ leaks (Panama Papers 2016, Paradise Papers 2017, Pandora Papers 2021) revealed thousands of Seychelles structures linked to global PEPs politicians, Russian oligarchs, massive tax evasion. In 2020, the EU included Seychelles on its non-cooperative jurisdictions list (Annex II), removed in February 2021 after reforms, but re-included in 2024 due to AML/CFT concerns. The banking sector is concentrated in: Mauritius Commercial Bank (Seychelles), Bank of Baroda Seychelles (Indian subsidiary), Habib Bank Seychelles, Nouvobanq, Seychelles International Mercantile Banking Corporation (SIMBC). Seychelles already has an event in this tracker (Garantex 2025 was via Seychelles). It is an ESAAMLG member.
December 31, 2024 SC confirmed
Seychelles: CBS tightens AML — offshore hub + Pandora Papers shell companies + 2020 reform
The Central Bank of Seychelles (CBS) and the Financial Intelligence Unit (FIU) supervise the Seychellois financial sector under the framework of the Anti-Money Laundering and Countering the Financing of Terrorism Act 2020 (amended in 2022 and 2024). Seychelles (98,000 inhabitants, archipelago of 115 islands in the Indian Ocean, capital Victoria) operates the Seychellois rupee (SCR) and maintains an economy based on tourism (60% GDP), tuna fishing, and offshore services. Specific Seychellois AML risks: International Business Companies (IBCs) — Seychelles issued 200,000+ IBCs historically (post-International Business Companies Act 1994), one of the largest volumes per capita in the world; corporate secrecy (anonymous bearer shares prohibited post-2017 reform); Pandora Papers (ICIJ Oct 2021) revealed extensive use of Alpha Consulting and Management (Seychellois firm) by global elites for hidden assets; Russian clientele post-2022; real estate boom in La Digue and Praslin (luxury tourism); cocaine corridor (Comoros-Seychelles-East Africa route). The banking sector is concentrated in: Mauritius Commercial Bank Seychelles, Habib Bank Seychelles, Barclays Seychelles (now Absa), Nouvobanq, Seychelles Commercial Bank. Seychelles is an ESAAMLG member.
December 31, 2024 RS confirmed
Serbia: NBS + APML tighten AML — difficult balance between EU and Russia post-2022
The Narodna Banka Srbije (NBS, National Bank of Serbia) and the Administration for the Prevention of Money Laundering (APML) intensified AML/CFT inspections on the banking sector during 2024 under the framework of the Law on the Prevention of Money Laundering and the Financing of Terrorism 2017, amended in 2018, 2020 and 2023 to align with the EU's 5th AMLD (Serbia is an EU candidate since March 2012). Specific Serbian AML risks include: difficult diplomatic balance between EU and Russia (Serbia is the only European country that rejects sanctions on Russia post-2022), dramatic increase of Russian citizens in Serbia (75,000+ migrants since February 2022 with $4 billion in reported remittances according to NBS), Russian natural gas (Gazprom controls NIS Naftna Industrija Srbije, sanctioned by OFAC in January 2025), Balkan drug corridor, Russian real estate in Belgrade and Montenegrin coast, unregulated casinos in sub-state territory. The banking sector is dominated by Austrian subsidiaries (Raiffeisen Banka, Erste Bank, UniCredit Bank Srbija), Italian (Intesa Sanpaolo Beograd), Greek (Alpha Bank, Eurobank), Bulgarian (DSK Bank via OTP), and local (Banca Intesa, AIK Banka). Serbia is a MONEYVAL member.
December 31, 2024 WS confirmed
Samoa: CBS tightens AML — Pacific offshore hub + International Trust Act 2014 + post-2017 EU tax haven reform
The Central Bank of Samoa (CBS) and the Samoa Financial Intelligence Unit (FIU) supervise the Samoan financial sector under the Money Laundering Prevention Act 2007. Samoa (215,000 inhabitants, South Pacific archipelago, capital Apia, independence from NZ 1962), operates the Samoan tala (WST). Samoa was historically a relevant Pacific offshore hub, operating IBCs under International Companies Act 1988 and International Trusts Act 2014, attracting companies and trusts especially from Asia. After EU Tax Haven Blacklist pressure (Samoa included 2017, 2018, 2020, 2022) + FATF post-2010-2012 grey list reforms, Samoa has modernized the offshore regime: public beneficial owners registry 2021, OECD CRS, Economic Substance Requirements 2019.
May 19, 2019 SA confirmed
Saudi Arabia: SAMA sanctions 16 financial entities in 2019 over responsible finance principle breaches
The Saudi Arabian Monetary Authority (SAMA, renamed Saudi Central Bank in 2020) confirmed in May 2019 sanctions on 16 financial institutions, including a major Emirati bank operating in the kingdom, for violations of 'responsible finance principles'. SAMA did not specify individual amounts or concrete infractions, in contrast to the transparency of UK FCA, NYDFS or CBUAE. The authority required them to 'correct the violations'. Saudi Arabia joined as the first Arab member country of FATF in 2019. Saudi AML Law provides for penalties of up to 10 years prison and fines up to SAR 5M for natural persons (Article 26 of Cabinet Decision No. 80/1439), rising to SAR 7M in aggravated cases, and up to SAR 50M or double the funds involved for legal persons (Article 27). The supervisor maintains a more opaque approach than its Western peers but has intensified inspections after FATF membership.
December 31, 2024 RW confirmed
Rwanda: BNR + FIU tighten AML — post-1994 genocide + Kagame economic miracle + DRC M23 suspicious
The **National Bank of Rwanda (BNR)** and the Financial Investigation Unit (FIU Rwanda) supervise the Rwandan banking sector under the framework of Law 47/2008 on AML (amended in 2014, 2017 and 2023). Rwanda, after the **1994 genocide against the Tutsi** (~800,000 deaths in 100 days) has experienced under President **Paul Kagame's** regime (FPR-Inkotanyi, president since 2000 after serving as vice president 1994-2000) what is known as 'economic miracle' — sustained GDP growth of 7%+ annually, dramatic improvement in social indicators, emerging regional financial hub position (Kigali International Financial Centre, 2020+). Specific Rwandan AML risks: **accusations of financing M23 (Mouvement du 23 mars)** in eastern DRC — UN Group of Experts on the DRC reports (annual 2012-2024) have consistently documented Rwandan military support for M23 which controls coltan, gold and cobalt mining areas in Nord Kivu and Sud Kivu, **assassinations of Rwandan dissidents** abroad (South Africa, Belgium, UK — Patrick Karegeya 2014 Johannesburg case, Kayumba Nyamwasa assassination attempts), **Hotel Rwanda's Paul Rusesabagina arrest** 2020 + 25 years sentence, **de facto FPR single-party regime** (limited opposition). However, the financial sector is relatively robust. The banking sector is concentrated in: Bank of Kigali (largest Rwandan bank), Equity Bank Rwanda (Kenyan subsidiary), I&M Bank Rwanda, BPR (Bank Populaire du Rwanda, Atlas Mara subsidiary), Cogebanque, GT Bank. Rwanda is an ESAAMLG member.
March 3, 2017 RU confirmed
Russia: Bank of Russia's 'Potemkin Operation' (2013-2019) shut down ~500 banks for laundering and fraud
The Bank of Russia, under Governor Elvira Nabiullina (appointed by Putin in 2013), executed between 2013 and 2019 the largest banking cleanup in Russian history, reducing the country's bank count from approximately 900 to 400 (~500 licenses revoked). Deputy Governor Vasily Pozdyshev described many of the closed entities as 'Potemkin enterprises' —a reference to the fake villages nobleman Grigory Potemkin built in the 18th century to impress Empress Catherine the Great— for their role as fronts for laundering, fraud, and financial report falsification. The paradigmatic case was Tatfondbank PJSC (Russia's 42nd-largest bank) in March 2017, closed after rescue efforts collapsed amid fraud evidence. A previous cleanup attempt from 2006 was slowed after the murder of central banker Andrei Kozlov, who led the anti-money-laundering campaign. The cleanup strengthened large Russian banks (Sberbank, VTB) with clients from closed ones. After Russia's invasion of Ukraine in February 2022, OFAC + UK + EU + Canada imposed SDN sanctions on Sberbank, VTB, Alfa-Bank, Gazprombank, Rosbank, Otkritie, Novikombank, Sovcombank and many others, freezing >$300B in Russian financial sector assets in the West.
December 31, 2024 QA confirmed
Qatar: QCB sanctions banking sector in 2024 under Law 20/2019 — no public amounts
The Qatar Central Bank (QCB) and the Qatar Financial Information Unit (QFIU) intensified administrative sanctions on the banking sector during 2024, under the framework of Law 20/2019 on Anti-Money Laundering and Counter-Terrorism Financing. The authority operates with an approach similar to Saudi SAMA, Moroccan BAM, or Egyptian CBE: it does not publish individual amounts or identities of sanctioned entities, in contrast to the transparency of UK FCA or NYDFS. Qatar was evaluated by FATF in 2023 with acceptable technical compliance but with observations on effectiveness. The UAE's exit from the FATF grey list in 2024 put Gulf jurisdictions under pressure to demonstrate effective enforcement, which has translated into intensified banking inspections in Qatar, Bahrain, and Kuwait in parallel with the UAE.
December 31, 2024 QA confirmed
Qatar: QCB tightens AML — hosting Hamas leadership Doha + 2017-2021 GCC crisis + global LNG hub
The **Qatar Central Bank (QCB)**, the Qatar Financial Centre Regulatory Authority (QFCRA) and the Financial Information Unit (QFIU) supervise the Qatari financial sector under the framework of Law 20/2019 on AML/CFT (amended in 2021 and 2023). Qatar (3M inhabitants, 10% native Qataris, $235 billion GDP 2024) is **one of the world's most important LNG producers** (3rd world producer after Australia and US, massively expanding capacity with North Field Expansion). The Emir **Sheikh Tamim bin Hamad Al Thani** regime (since 2013 after his father Hamad's abdication) has maintained an **independent foreign policy** that has caused regional tensions: **Qatar Crisis from June 5, 2017 to January 5, 2021** — Saudi Arabia, UAE, Bahrain and Egypt closed borders and total embargo against Qatar accusing it of financing terrorism (Muslim Brotherhood, Hamas) and close ties with Iran. The crisis ended with the Al-Ula Declaration January 2021. Specific Qatari AML risks: **hosting Hamas leadership in Doha** (Ismail Haniyeh political chief assassinated July 2024 in Tehran + Yahya Sinwar killed Gaza October 2024 + Khaled Mashal — Qatar has been a key mediator in Israel-Hamas negotiations post-Oct 7, 2023), **Hezbollah linkage** (denied by Qatar but persistent US/Israel accusations), **opaque LNG revenue** (Qatar Investment Authority $475B AUM SWF + Qatar Foundation $13B endowment), **World Cup 2022** corruption legacy ($220B in infrastructure), **forced labor** documented UN for World Cup construction (kafala system reforms 2017+), **luxury real estate** in London (Qatar Holding controls Harrods, Canary Wharf, Olympic Village London). The banking sector is concentrated in: Qatar National Bank (QNB, largest bank Arab world), Qatar Islamic Bank (QIB), Commercial Bank of Qatar, Doha Bank, Masraf Al Rayan. Qatar is a MENAFATF member.
December 31, 2024 PG confirmed
Papua New Guinea: BPNG + FASU tighten AML — massive natural resources + crypto regulation 2024
The Bank of Papua New Guinea (BPNG) and the Financial Analysis and Supervision Unit (FASU) intensified AML/CFT inspections during 2024 under the framework of the Anti-Money Laundering and Counter Terrorist Financing Act 2015 (amended in 2018 and 2022). Papua New Guinea (PNG) exited the FATF grey list in June 2023 after being included in June 2014 — 9 years on the list, one of the longest periods. PNG is the second largest country in the South Pacific (Oceania) after Australia, with 12 million inhabitants and >800 local languages (the world's greatest linguistic diversity). Specific PNG AML risks: massive natural resources (gold — PNG is the world's 7th producer; copper — Porgera and Ok Tedi mines; natural gas — ExxonMobil PNG LNG, $19 billion project), systemic political corruption (PNG ranks 130 on CPI Transparency International 2024), Bougainville conflict (2019 independence referendum — 97.7% in favor, transition to independent state pending), massive illegal logging (PNG has lost 25% of primary tropical forest since 2001 according to Global Forest Watch), drug corridor (methamphetamine to Australia), crypto fraud (in 2024, BPNG issued first crypto regulation guidance). The banking sector is dominated by: Bank South Pacific (BSP, largest bank), Westpac PNG, ANZ PNG, Kina Bank.
March 21, 2018 MT confirmed
Pilatus Bank (Malta): licence withdrawn after US action against its Iranian owner (2018)
Maltese private bank Pilatus, whose beneficial owner was of Iranian origin, was suspended and placed under independent control by the Maltese regulator (MFSA) in 2018, and later lost its licence, after US action against its owner for alleged Iran-sanctions violations. The case, alongside ABLV in Latvia, fueled debate over the effectiveness of European anti-money-laundering controls at small banks with opaque owners.
February 4, 2020 PE confirmed
Peru: SBS applied only 17 AML sanctions on banks in two decades (2002-2020)
Peru's Superintendency of Banks, Insurance, and Pension Fund Administrators (SBS), through the Financial Intelligence Unit (UIF-Peru), applied only 17 sanctions in two decades (between 2002 and February 4, 2020) on 10 Peruvian banks: 15 fines totaling S/1.5 million (~$530,000 USD) and 2 reprimands. An extraordinarily low figure compared to equivalent jurisdictions (Chile UF 4,155 in a single year; Colombia 98 sanctions in 5 years). The Ojo Público outlet uncovered the figure when revealing that SBS had permitted the operation of the Reactiva Peru Plan during the COVID pandemic for persons under investigation in Lava Jato and Panama Papers cases. Superintendent Sergio Espinosa announced in October 2024 plans to raise the maximum fine ceiling from S/1 million to S/25.7 million (5,000 UIT), citing OECD and Basel Committee recommendations describing the current amount as 'a limitation to supervisory powers'. SBS does not publish the names of sanctioned banks on its website (unlike the UK FCA or NYDFS).
December 31, 2024 PY confirmed
Paraguay: BCP + SEPRELAD tighten AML — triple border Brazil/Argentina + Marset case + Ciudad del Este risk
The Central Bank of Paraguay (BCP), the Secretariat for the Prevention of Money or Property Laundering (SEPRELAD) and the National Antidrug Secretariat (SENAD) supervise the Paraguayan banking sector under the framework of Law 1015/97 on AML/CFT (extensively amended in 2009, 2018, 2023). Paraguay (7.4M inhabitants, capital Asunción) operates the guaraní (PYG). Specific Paraguayan AML risks: **'Triple Frontier' Argentina-Brazil-Paraguay** (Ciudad del Este vs Foz do Iguaçu vs Puerto Iguazú) — **one of the world's most active smuggling corridors**, historically identified by DEA + UN Panel of Experts + Israeli intelligence as **Hezbollah financing hub in LATAM** ($500M+ annual documented); **Operación Aldo Patti 2018** + **Operación Manacero 2024** anti-Hezbollah; **Sebastián Marset** (Uruguayan drug trafficker, expelled from Paraguay 2023, Bolivia fugitive 2025 — case connected to 'Operation A Ultranza Py' against the Marset clan + murder of Paraguayan anti-drug prosecutor **Marcelo Pecci** on honeymoon Cartagena May 2022, attributed to Marset's cartel); **'White soy' (cocaine corridor)** Brazil-Paraguay-Argentina-Bolivia-Chile-Europe; **Tabacalera del Este cigarette smuggling** (largest South American cigarette producer), 80% of Paraguayan consumption is smuggled; international cigarette cartel companies involved in ICIJ Pandora Papers investigations; Itaipú (shared with Brazil) + Yacyretá (shared with Argentina) hydroelectric megaprojects. The banking sector is concentrated in: BNF (Banco Nacional de Fomento, state), Itaú Paraguay, Banco Continental, Banco Atlas, Banco Familiar. Paraguay is a GAFILAT member.
June 28, 2024 PA confirmed
Panama: Panama Papers — all 28 defendants acquitted in Jun 2024, but the firm closed in 2018
On June 28, 2024, Judge Baloísa Marquínez of Panama's Second Liquidator Court for Criminal Cases of the First Judicial Circuit acquitted all 28 defendants in the Panama Papers case, including Jürgen Mossack, co-founder of the Mossack Fonseca firm (Ramón Fonseca had died in May). The prosecution had requested 12 years prison —the maximum for money laundering in Panama— for the creation of offshore shell companies linked to the Lava Jato/Odebrecht scandal. The judge determined that the evidence obtained in the firm's raid (2016) 'did not comply with chain of custody', casting doubt on 'its authenticity and integrity'. The Lava Jato case consolidated with Panama Papers (31 additional defendants) also ended in acquittal. The 11.5 million leaked documents to the Süddeutsche Zeitung and the International Consortium of Investigative Journalists (ICIJ) in 2016 triggered the resignation of Iceland's prime minister, scrutiny on Macri (Argentina), Cameron (UK), Messi, Putin, Almodóvar, and many more. Mossack Fonseca closed in 2018. Prosecutors appealed the ruling. In June 2022, Mossack, Fonseca and 37 people had been acquitted in an earlier money laundering case. A paradigmatic case of the offshore jurisdiction problem and the difficulty of criminally prosecuting transnational operators even with massive documentation.
October 21, 2022 PK confirmed
Pakistan: FATF removes Pakistan from grey list Oct 2022 — LeT/JeM terror finance + Khan-Sharif crisis
On **October 21, 2022**, FATF removed Pakistan from the grey list ('Jurisdictions under Increased Monitoring') after **4 years of monitoring** (included in June 2018, one of the longest stays in FATF grey list history). The exit was the result of massive AML/CFT reforms, including cracking down on terrorist financing networks. The **State Bank of Pakistan (SBP)** and the Financial Monitoring Unit (FMU) supervise the Pakistani banking sector under the framework of the Anti-Money Laundering Act 2010. Pakistan (240M inhabitants, 5th most populous country in the world, capital Islamabad) has been historically accused of **harboring terrorist organizations** with financial connections: **Lashkar-e-Taiba (LeT)** — organization responsible for November 2008 Mumbai attacks (166 deaths, leader Hafiz Saeed UN + US SDN sanctioned, sentenced 33 years Pakistan in 2022 finally); **Jaish-e-Mohammed (JeM)** — attacked Indian parliament December 2001 + Pulwama bombing February 2019 (40 Indian paramilitaries killed); **Pakistan Taliban (TTP)** — attacked Army Public School Peshawar December 2014 (132 children killed); **Haqqani Network** — historical ties with ISI (Pakistan intelligence). Pakistan faced **massive political crisis 2022-2024**: PM **Imran Khan** (PTI, former cricket captain, PM 2018-2022) **ousted in vote of no confidence on April 9, 2022** — first time in Pakistani history a PM is removed via VoNC. **Khan arrested May 2023** on multiple charges (Toshakhana case, Pandora Papers, cipher case) — sentenced **3 years Toshakhana May 2023** (Aleema Khan cooperated), **10 years cipher case January 2024**, **14 years corruption case January 2024**. **Shehbaz Sharif** (PML-N, Nawaz Sharif's brother) PM coalition government 2022-2023 → reelected 2024. Pakistan has faced severe economic crisis 2022-2024 (Khan ouster + Sharif governance + IMF $3B program). The banking sector is concentrated in: National Bank of Pakistan (NBP), Habib Bank (HBL), United Bank (UBL), MCB Bank, Bank Alfalah. Pakistan is an APG member.
December 31, 2024 KI confirmed
Pacific: Kiribati + Tuvalu + Nauru — climate emergency + Nauru offshore legacy 1998-2000
The Pacific micro-states Kiribati (133K), Tuvalu (12K, 4th smallest country), Nauru (12.5K, 3rd smallest country). Nauru experienced 'world's richest country per capita' period 1968-1980 ($25K per capita) thanks to phosphate mining, collapsed in 2000s after depletion + massive corruption (famous $70 billion 'Nauru offshore banking' Russian Mafia laundering case investigated by FBI/IRS 1998-2000). Nauru was Tier 1 FATF blacklisting 2001-2005 — first country blacklisted. Today operates 'Australia Regional Processing Centre' for asylum seekers. Tuvalu generates ~$10-15M/year from .tv domain (sold to VeriSign 2002). Kiribati cut Taiwan relations + recognized China 2019. The three are APG members.
December 31, 2024 OM confirmed
Oman: CBO tightens AML — moderate petrostate + Persian Gulf diplomatic hub + Iran/Yemen sanctions
The **Central Bank of Oman (CBO)** and the Capital Market Authority + Financial Intelligence Department (FID) supervise the Omani banking sector under the framework of the Law on Combating Money Laundering and Terrorism Financing 30/2016 (amended in 2020). Oman, with 5.1M inhabitants (including 2M expatriates), is **one of the most stable monarchies in the Persian Gulf**, traditionally more moderate than its GCC neighbors (Gulf Cooperation Council: Saudi Arabia, UAE, Kuwait, Bahrain, Qatar). The current regime is Sultan Haitham bin Tariq (since January 2020 after the death of Sultan Qaboos bin Said who ruled 1970-2020). Specific Omani AML risks: **regional diplomatic hub** (Oman historically mediates between US and Iran, JCPOA negotiations 2013-2015, prisoner exchange brokering), Yemen corridor (288 km border, Houthi refugees), oil (Oman is 21st world producer), Muscat luxury real estate attractive to Arab and British investors, hawala with South Asia (1M+ Indian, Pakistani, Bangladeshi expatriates). The banking sector is concentrated in: Bank Muscat (largest Omani bank), National Bank of Oman, Oman Arab Bank, BankDhofar, HSBC Oman, Standard Chartered Oman. Oman is a MENAFATF member.
December 31, 2024 MK confirmed
North Macedonia: NBRNM + FIO tighten AML — EU candidate 2005 + Balkan corridor
The **National Bank of the Republic of North Macedonia (NBRNM)** and the Financial Intelligence Office (FIO) supervise the Macedonian banking sector under the framework of the Law on Prevention of Money Laundering and Financing of Terrorism 2014, amended in 2017 (Prespa agreement changed the country's name from 'Macedonia' to 'North Macedonia') and 2022 to align with the EU's 5th AMLD. North Macedonia has been an EU candidate since December 2005 (then FYROM) — blocked by Bulgaria over identity/historical dispute since 2020. The country is a NATO member since March 2020 (post-Prespa Agreement with Greece). Specific Macedonian AML risks: **Balkan corridor** (heroin from Turkey/Iran to Western Europe via Macedonia-Serbia-Hungary-Austria, known as the 'Balkan Route' which moves ~80% of heroin consumed in Europe according to UNODC), systemic political corruption (historical VMRO-DPMNE case under Nikola Gruevski 2006-2016, convicted in absentia, fled to Hungary in 2018), arms trafficking (1990s Balkan wars legacy), Skopje real estate boom (megalomaniac 'Skopje 2014' projects with €700M of questioned expenses). The banking sector is concentrated in: Komercijalna Banka (largest), NLB Banka (Slovenian subsidiary), Stopanska Banka (Austrian Steiermärkische Bank), Halkbank (Turkish), Sparkasse Bank Makedonija. North Macedonia is a MONEYVAL member.
November 27, 2018 NI confirmed
Nicaragua: OFAC sanctions Ortega/Murillo regime since 2018 — 80+ designations for human rights violations
On November 27, 2018, OFAC began the systematic designation of the Daniel Ortega/Rosario Murillo regime under Executive Order 13851 (Nicaragua Human Rights and Anticorruption Act), after the brutal repression of student protests in April 2018 (~325 deaths, 2,000+ injured according to IACHR). Designations cover Rosario Murillo (Vice President and Ortega's wife), Laureano Ortega Murillo (son, former presidential advisor), Roberto Rivas Reyes (former CSE responsible for fraudulent elections 2016 and 2021), Néstor Moncada Lau (former CSE), Francisco Díaz Madriz (Director of Police), Néstor Moncada Lau (Chief of Intelligence), among **80+ individuals** designated between 2018-2025. The Biden administration added broader sanctions in 2021-2024 via the Renacer Act (Reinforcing Nicaragua's Adherence to Conditions for Electoral Reform Act). In February 2023, OFAC designated Mining Company DNP (Difícil Negocio Petrolero) for generating revenues for the regime via mining licenses. In September 2023, sanctions against General Directorate of Mines (DGM). Repression continues: closure of 5,000+ NGOs (including the Jesuit Central American University UCA in August 2023), massive denationalization of 222 opposition figures in February 2023 (historic operation) followed by release of political prisoners exiled to the US, mass exiles of journalists, expulsion of Vatican. The Nicaraguan banking sector is dominated by: Banco Lafise Bancentro, Banco de la Producción (Banpro), BAC Credomatic Nicaragua, Banco de América Central (BAC). Nicaragua is a GAFILAT member.
December 31, 2024 ET confirmed
Ethiopia: NBE + FIC tighten AML banking sector supervision in 2024 — high risk from Tigray conflict
Ethiopia's National Bank (NBE) and the Financial Intelligence Center (FIC) intensified AML/CFT inspections on the banking sector during 2024, under the framework of Proclamation 780/2013 on Prevention and Suppression of Money Laundering and Terrorism Financing, amended in 2019 to align with FATF recommendations. Ethiopia is supervised by ESAAMLG (Eastern and Southern Africa Anti-Money Laundering Group) and faces elevated risks from the Tigray conflict (2020-2022) that generated illicit financing and laundering flows through the banking system. The NBE does not publish individual sanction amounts with the transparency of UK FCA or NYDFS. The Ethiopian banking sector is concentrated in: Commercial Bank of Ethiopia (state-owned, dominant), Awash Bank, Dashen Bank, Bank of Abyssinia, Wegagen Bank. In February 2024, Ethiopia opened its banking sector to foreign investment for the first time, increasing AML regulatory requirements. The country does not accept cryptocurrencies in the formal financial system.
February 23, 2024 NA confirmed
Namibia: FATF adds Namibia to grey list in Feb 2024 — uranium + diamonds + Hage Geingob legacy
On **February 23, 2024**, FATF added Namibia to the grey list ('Jurisdictions under Increased Monitoring'), alongside Kenya, after MONEYVAL/ESAAMLG evaluation. Identified deficiencies include: limited effectiveness in risk-based DNFBP supervision, weaknesses in complex AML case investigation, lack of beneficial ownership transparency. The **Bank of Namibia (BoN)** and the Financial Intelligence Centre (FIC) supervise the banking sector under the framework of the Financial Intelligence Act 13/2012 (amended 2018, 2023). Namibia (2.7M inhabitants, capital Windhoek), former German colony until WWI, former Apartheid Southwest Africa until independence 1990, has governed under **SWAPO** (South West Africa People's Organisation) since 1990 — de facto single party. President **Hage Geingob died on February 4, 2024** (succeeded by **Nangolo Mbumba** interim + **Netumbo Nandi-Ndaitwah** elected president Nov 2024, first woman president of Namibia + Southern Africa). Specific Namibian AML risks: **uranium** (Namibia is the world's 2nd uranium producer — Rössing/Husab/Langer Heinrich mines), **diamonds** (Namdeb joint venture with De Beers — marine diamonds via dredging), fishing (Walvis Bay), exposure to Angola-South Africa diamond corridor. The **Fishrot scandal** (2019-present) revealed massive bribes by **Samherji** (Iceland) to Namibian officials for horse mackerel fishing quotas — case with repercussions in Iceland (case aml-fme-iceland-2024). The banking sector is concentrated in: First National Bank Namibia (FNB), Standard Bank Namibia, Bank Windhoek (Capricorn Group), Nedbank Namibia. Namibia is an ESAAMLG member.
October 21, 2022 MM confirmed
Myanmar: FATF adds to blacklist in Oct 2022 — one of only 3 countries on blacklist alongside DPRK and Iran
On October 21, 2022, the Financial Action Task Force (FATF) added Myanmar to its blacklist ('High-Risk Jurisdictions subject to a Call for Action'), after failing to implement its action plan by October 2022 and not making significant progress in addressing the strategic deficiencies identified in the 2018 Mutual Evaluation Report. Myanmar became the third country on the blacklist along with North Korea and Iran, the only countries subject to mandatory 'enhanced customer due diligence' by all FATF jurisdictions. Unlike DPRK and Iran, Myanmar does not face direct countermeasures (sanctions), although member state financial institutions must apply reinforced CDD. Key factors: February 2021 military coup that overthrew Aung San Suu Kyi's civilian government, institutional deterioration, unregulated casino industry (allegedly operated by Chinese nationals in collaboration with local militias — linked to crypto scams, human trafficking in Shwe Kokko and other compounds), cross-border trafficking, massive wildlife trafficking, timber trafficking. The Central Bank of Myanmar (CBM) acknowledged the designation but protested that Myanmar 'is not in the same position' as DPRK and Iran. In February 2025 and October 2025, FATF reiterated that Myanmar remains on blacklist until completing the action plan. Direct connection with Huione Group and Prince Group cases designated as TCOs by OFAC in October 2025.
October 24, 2025 MZ confirmed
Mozambique: FATF removes from grey list in Oct 2025 along with Burkina Faso, Nigeria and South Africa
On October 24, 2025, FATF removed Mozambique from the grey list ('Jurisdictions under Increased Monitoring') after 3 years of enhanced monitoring initiated in October 2022. The exit was part of a package that also included Burkina Faso, Nigeria and South Africa — a record of 4 African countries exiting the grey list on the same date. Mozambique implemented the FATF action plan after the TUNA BONDS scandal (case aml-tuna-bonds-credit-suisse-2021, already in this tracker), which caused the loss of IMF support 2016-2019 and metical devaluation. The financial supervisor is Banco de Moçambique (BdM) with the Gabinete de Informação Financeira (GIFiM) as FIU. The legal framework is Law 14/2013 on prevention and combat of money laundering and terrorism financing, amended in 2018 and 2021. Mozambique is an ESAAMLG member. Persistent specific Mozambican AML risks include: political corruption (FRELIMO in power since 1975), heroin trafficking from Afghanistan-Pakistan to the Mozambique corridor, ISIS insurgency attacks in Cabo Delgado (northern province with Mozambique LNG natural gas), corridors with South Africa (daily labor commute), and remnants of TUNA BONDS legacy (UBS December 2025 + Privinvest processes continue).
October 24, 2025 MZ confirmed
Mozambique: FATF removes Mozambique from grey list Oct 2025 — TUNA bonds legacy + Chang 8.5 years
On **October 24, 2025**, FATF removed Mozambique from the grey list ('Jurisdictions under Increased Monitoring') after 23 months of monitoring initiated in November 2022. Mozambique exited along with South Africa, Burkina Faso and Nigeria. The **Banco de Moçambique (BdM)** and the **Gabinete de Informação Financeira (GIFiM)** supervise the banking sector under the framework of Law 14/2013 on AML (amended in 2017 and 2022). Mozambique faced **one of the largest African financial scandals: 'Hidden TUNA Bonds'** (case aml-tuna-bonds-credit-suisse-2021 in this tracker) — between 2013-2014, the Armando Guebuza government (Frelimo, President 2005-2015) took **$2 billion in secret loans** from Credit Suisse and VTB Bank (Russian) for 3 state companies: ProIndicus, EMATUM (Empresa Moçambicana de Atum, supposedly for a tuna fishing fleet), Mozambique Asset Management (MAM). The loans were hidden from the IMF and Article IV oversight, and were discovered in 2016 when the country couldn't pay — collapsing the economy. **$200 million were diverted in bribes** to Mozambican officials, Credit Suisse bankers and intermediaries. **Former Finance Minister Manuel Chang was extradited from South Africa to the US in July 2023 and sentenced to 8.5 years prison in May 2024** by SDNY. Three former Credit Suisse bankers (Andrew Pearse, Surjan Singh, Detelina Subeva) pleaded guilty in the US 2019. **Privinvest Group (Iskandar Safa, Lebanese-French)** sold inflated military equipment for $700M with kickbacks. The UK FCA fined CS **$475M in October 2021**. Mozambique lost ~$1 billion in forced payments + economy pushed **1.9 million people into poverty**. The banking sector is concentrated in: Standard Bank Moçambique, Banco Comercial e de Investimentos (BCI, Portuguese), Millennium Bim, Banco BIG Moçambique. Mozambique is an ESAAMLG member.
December 31, 2024 MA confirmed
Morocco: BAM tightens AML — FATF grey list exit Feb 2023 + Western Sahara + Sahara cocaine corridor
The Bank Al-Maghrib (BAM) and the **Authority for Combating Money Laundering (Autorité Nationale du Renseignement Financier, ANRF, formerly UTRF Unité de Traitement du Renseignement Financier)** supervise the Moroccan banking sector under the framework of Law 43/05 on AML/CFT (amended in 2016, 2021, 2023). Morocco (37M inhabitants, political capital Rabat + economic Casablanca) **exited the FATF grey list in February 2023** after inclusion in February 2021 (24 months in monitoring). The country is one of the most stable in the Maghreb under the constitutional monarchy of King Mohammed VI (since 1999). Specific Moroccan AML risks: **Western Sahara dispute** (Polisario Front, MINURSO UN mission since 1991 — Morocco controls ~85% of the territory, Polisario the rest + Algeria support), **Latin America-Morocco-Europe cocaine corridor via Sahara desert**, **hashish/cannabis** (Rif region exports ~$10B annually to Europe, traditional sector Morocco #1 world producer pre-Colombia cannabis legalization), **Sub-Saharan Africa-Europe migration corridor via Ceuta + Melilla + Atlantic** (Canarias), **OCP phosphate** (Office Chérifien des Phosphates — Morocco has 70% of world phosphate reserves), PEP real estate (especially Casablanca + Marrakech). The banking sector is concentrated in: Attijariwafa Bank (largest, pan-African presence), Banque Centrale Populaire (BCP), BMCE Bank (BMCE), Société Générale Maroc, Crédit du Maroc. Morocco is a MENAFATF member.
December 31, 2024 ME confirmed
Montenegro: CBCG tightens AML — Đukanović dynasty 1990-2020 + euro adopted + EU candidate 2010
The **Central Bank of Montenegro (CBCG)** and the **Administration for the Prevention of Money Laundering (Uprava za Sprečavanje Pranja Novca, UPSPN)** supervise the Montenegrin banking sector under the framework of Law 058/15 on AML (amended in 2018 and 2023). Montenegro is **the only Western Balkan country (non-EU) using the euro as official currency** — unilateral adoption in January 2002 (without formal EU agreement, recognized but not approved by ECB). The country has been an EU candidate since December 2010 and a NATO member since June 2017. Specific Montenegrin AML risks: **Milo Đukanović regime legacy** (1990-2020, Prime Minister or President in multiple mandates, **accused of relations with Italian 'ndrangheta mafia** in 1996-2001 Bari Italy investigation for massive cigarette trafficking to Italy via maritime smuggling — Đukanović evaded trial by invoking immunity), **Russian oligarch real estate boom** (Budva, Kotor, Sveti Stefan — Montenegro is the #1 Russian real estate destination pre-2022, $1+ billion investments), **Balkan drug corridor** (Balkan Route sub-corridor), **casinos** (Plavi Horizonti), sanctioned Russian oligarchs post-2022 (Oleg Deripaska had assets seized 2022). The banking sector is concentrated in: CKB Bank (Crnogorska Komercijalna Banka, Hungarian OTP Group subsidiary), NLB Banka (Slovenian), Erste Bank Montenegro (Austrian), Hipotekarna Banka, Lovćen Bank. Montenegro is a MONEYVAL member.
July 17, 2023 MN confirmed
Mongolia: FATF recognizes compliance in 9 + largely compliant in 31 recommendations (APG Jul 2023)
In July 2023, during the 26th annual meeting of the Asia/Pacific Group on Money Laundering (APG), Mongolia obtained international recognition that it has created the complete legal framework, reflected requirements in legislation, and improved the regulatory environment per the 40 FATF Recommendations: 9 'Compliant' + 31 'Largely Compliant'. Mongolia was added to FATF grey list between 2011-2013 and again between 2019-2020, definitively exiting in October 2020 after completing the action plan. Mongolia's follow-up team, led by B. Solongoo (Deputy Minister of Justice), includes representatives from Bank of Mongolia, Financial Information Unit (FIU), Financial Regulatory Commission (FRC), Prosecutor General's Office, General Intelligence Agency, State Registration Authority and General Tax Department. The legal framework is the 2013 Anti-Money Laundering Law, amended in 2018 and 2021. In 2022, the 'Law on Virtual Asset Service Providers' was drafted aligned with FATF Recommendation 15. In January 2021 it was removed from the EU list of high-risk third countries. Mongolia is a founding member of APG since 2004.
December 31, 2024 MC confirmed
Monaco: world's most concentrated wealth management sector — AMSF tightens AML post-MONEYVAL 2024
Monaco, the world's second smallest country (2 km², 39,000 inhabitants), has one of the world's most concentrated financial sectors: 23+ private banks with ~€150 billion in AUM, with an average of €30M in assets per capita managed. The AML/CFT regime operates under Loi 1.362 du 03/08/2009 on the fight against money laundering and terrorism financing, amended in 2018, 2020 and 2023 to align with EU AMLD directives (Monaco is not an EU member but has a euro monetary agreement). Supervisors: CCAF (Conseil de la Coordination des Affaires Financières — Monegasque FIU), AMSF (Autorité Monégasque de Sécurité Financière — financial supervisor), Direction de l'Expansion Économique (DEE). In 2022, Monaco was added to the FATF grey list after the MONEYVAL evaluation — an unprecedented event for a country with an apparently sophisticated banking system. Identified deficiencies: limited effectiveness in wealth management supervision, weaknesses in complex laundering investigation, lack of beneficial ownership transparency in Monégasque structures (sociétés anonymes monégasques SAM, sociétés civiles monégasques SCM). Specific Monegasque AML risks: luxury real estate (prices among the world's highest, $50,000+/m²) attractive to global PEPs (pre-2022 Russian oligarchs, Arab magnates, Latin Americans), casino industry (Société des Bains de Mer, historic monopoly), super yachts (Monaco is the largest luxury yacht port in the Mediterranean). Prominent banks: Compagnie Monégasque de Banque (CMB, Mediobanca subsidiary), CFM Indosuez Wealth Management, Banque J. Safra Sarasin, Edmond de Rothschild Monaco, HSBC Private Bank Monaco.
November 26, 2021 JP confirmed
Japan: the FSA issues in Nov 2021 a business improvement order to Mizuho over AML failures and forced resignations
Japan's Financial Services Agency (FSA / 金融庁) issued on November 26, 2021 a second business improvement order (gyōsei shobun / 業務改善命令) against Mizuho Bank and its parent Mizuho Financial Group, in the context of eight system failures since February of that year. One failure, on September 30, had involved international remittances without sufficient verifications to prevent money laundering, breaching the Foreign Exchange Law (外国為替法). The Ministry of Finance ordered the bank to take corrective measures under that law. The FSA required Mizuho to 'clarify management responsibility' and 'drastically reform corporate culture'. Mizuho Financial President Tatsufumi Sakai and Bank CEO Koji Fujiwara resigned in April 2022, with mandatory quarterly improvement plans. In fiscal 2024 (Apr 2024-Mar 2025), the FSA inspected 61 institutions and issued 3 AML business improvement orders.
December 31, 2024 MU confirmed
Mauritius: BoM + FSC tighten AML — former tax haven with FATF grey list exit January 2022
The Bank of Mauritius (BoM), the Financial Services Commission (FSC) and the Financial Intelligence Unit (FIU) intensified AML/CFT inspections during 2024 under the framework of the Financial Intelligence and Anti-Money Laundering Act 2002, amended in 2019, 2021 and 2023. Mauritius was added to the FATF grey list in February 2020 (causing $1+ billion in institutional disinvestment) and exited in January 2022 — 23 months on the list, considered a notable success. Mauritius has historically been one of the most prominent tax havens in the Indian Ocean: GBC (Global Business Company) and IPC (International Permanent Company) structures used massively by Indian funds for investments in India (due to the favorable bilateral tax treaty, renegotiated in 2016 to limit abuses), and by African investors in high-risk jurisdictions (DRC, Madagascar, South Africa). The banking sector is dominated by: MCB Group (Mauritius Commercial Bank), SBM Holdings (State Bank of Mauritius), HSBC Mauritius, Standard Chartered Mauritius, AfrAsia Bank, ABC Banking Corporation. Mauritius is an ESAAMLG member (despite its geographic location closer to South Asia than to Southern Africa). Post-grey list reforms included: beneficial ownership transparency with central registry, risk-based supervision of DNFBPs, active prosecution of laundering cases.
January 21, 2022 MU confirmed
Mauritius: FATF removes Mauritius from grey list in Jan 2022 — Africa offshore hub + Pandora Papers
On January 21, 2022, FATF removed Mauritius (1.3M inhabitants, islands in Indian Ocean, capital Port Louis) from the grey list ('Jurisdictions under Increased Monitoring') after 22 months of monitoring initiated in February 2020. The Bank of Mauritius (BM) and the Financial Services Commission (FSC) supervise the financial sector under the framework of the Financial Intelligence and Anti-Money Laundering Act 2002 (amended in 2018, 2020, 2022). Mauritius is one of the largest offshore hubs in the Indian Ocean and Africa — operates as hub for investments via 'Mauritius route' to India (Double Tax Avoidance Agreement DTAA, renegotiated 2016 to reduce abuse). Specific Mauritian AML risks: Global Business Companies (GBCs) structures attractive to Indian, South African and international investors; historical banking secrecy reduced post-2018 FATF reforms; connections with Pandora Papers ICIJ Oct 2021 (Trident Trust Group, Alcogal, other Mauritian firms implicated); Diego Garcia/Chagos archipelago issue (UK transferring sovereignty to Mauritius October 2024 — pending). The banking sector is concentrated in: MCB Group (Mauritius Commercial Bank, largest), SBM Holdings (State Bank of Mauritius), HSBC Mauritius, Standard Chartered Mauritius, AfrAsia Bank, ABC Banking Corporation. Mauritius is an ESAAMLG founding member and APG observer.
December 31, 2024 MR confirmed
Mauritania: BCM + CANIF tighten AML — Sahel jihadism + slavery legacy + Ould Abdel Aziz convicted
The **Banque Centrale de Mauritanie (BCM)** and the **Cellule d'Analyse Nationale des Informations Financières (CANIF)** intensified AML/CFT inspections during 2024 under the framework of Law 048/2019 on the fight against money laundering and terrorism financing. Mauritania (4.7M inhabitants) is one of the world's poorest countries, with economy dependent on: iron and gold mining (Société Nationale Industrielle et Minière SNIM, largest employer), fishing (Mauritania has attractive exclusive fishing zone — agreements with EU, China, Russia), offshore natural gas (Greater Tortue Ahmeyim GTA with Senegal, first production 2024). Specific Mauritanian AML risks: **slavery legacy** (Mauritania was the last country in the world to officially abolish slavery in 1981, persistent practices documented by UN OHCHR and Anti-Slavery International), **Ould Abdel Aziz case** (former President Mohamed Ould Abdel Aziz, in power 2009-2019 after military coup, **sentenced to 5 years prison on December 4, 2023** for illicit enrichment and money laundering), Sahel jihadism (AQIM, JNIM, ISIS — Mauritania has been relatively successful in avoiding large attacks since 2011 unlike Mali/Burkina Faso/Niger), drug trafficking (Atlantic cocaine corridor), Tasiast gold (Kinross). Mauritania is a GIABA and Sahel G5 member.
December 31, 2024 MA confirmed
Morocco: Bank Al-Maghrib tightens AML enforcement after exiting FATF grey list in 2023
Bank Al-Maghrib (BAM), Morocco's central bank, and the Financial Intelligence Processing Unit (UTRF) intensified inspections and administrative sanctions in the Moroccan banking sector during 2024, after the country exited the FATF grey list in February 2023. Law 12-18 reformed the Moroccan AML/CFT framework in 2020 to align it with FATF recommendations, introducing stricter KYC and suspicious operation reporting obligations. BAM applied administrative sanctions to several banks during 2024, although individual amounts are not routinely published (unlike the UK FCA or NYDFS). Morocco occupies a strategic position as a financial hub between Europe, sub-Saharan Africa and the Middle East, exposing it to significant cross-border laundering flows.
December 31, 2024 ML confirmed
Mali: BCEAO supervises Mali — Goïta military junta since 2020/2021 + French withdrawal + Wagner/Africa Corps
Mali is a UEMOA member (8 African countries sharing CFA franc XOF), supervised by BCEAO (case aml-bceao-senegal-2024 in this tracker) and the Cellule Nationale de Traitement de l'Information Financière (CENTIF) Malian. Mali has lived since August 2020 under the military junta led by Colonel Assimi Goïta after two consecutive coups (August 2020 against IBK Ibrahim Boubacar Keïta, May 2021 against Bah N'Daw). The junta has broken relations with France (Operation Barkhane left in August 2022), exited the G5 Sahel and ECOWAS (January 2024), and allied with Russia via Wagner Group (now Africa Corps post-Prigozhin June 2023). Mali, Burkina Faso and Niger form the Alliance of Sahel States (AES, September 2023, formalized as Confederation July 2024). Specific Malian AML risks: massive jihadist threat (JNIM Al-Qaeda and EIGS Islamic State control 50%+ of northern and central territory), gold (Mali is Africa's fourth gold producer, with artisanal extraction in Kéniéba), military corruption (Sonatrach Mali case, allegations of undocumented uranium extraction), Russian Wagner opaque gold extraction (UN Panel of Experts 2024 report allegation), internal refugees (450,000 IDPs), drug trafficking (cocaine from Atlantic coast), human trafficking. Mali is a founding GIABA member.
December 31, 2024 MV confirmed
Maldives: MMA tightens AML — massive luxury tourism dependence + PEP flows
The Maldives Monetary Authority (MMA) and the Financial Intelligence Unit (FIU Maldives) supervise the Maldivian banking system under the framework of the Anti-Money Laundering and Countering the Financing of Terrorism Act 10/2014, amended in 2018 and 2022 to align with FATF recommendations. The Maldives, an archipelago of ~1,200 islands with 530,000 inhabitants in the Indian Ocean, depend massively on luxury tourism ($4 billion annually, 25% of GDP) which creates specific AML risks: PEPs and oligarch flows (Chinese, Russian, Arab), resort real estate sold to non-residents, casino tourism, informal hawala with India/Pakistan/Sri Lanka, and Maldivian diaspora in the Gulf. The banking sector is concentrated in: Bank of Maldives (state), State Bank of India Maldives, Habib Bank Maldives, HSBC Maldives, Maldives Islamic Bank. The Maldives is an APG member. Recent political risks: President Mohamed Muizzu (2023-) has aligned the country more with China than India (Quad geopolitics), which has increased undocumented Chinese flows and BRI projects. The 'Maldives Papers' (2021, OCCRP) revealed how former president Yameen was convicted of laundering $1M in bribes from MMPRC (Maldives Marketing & Public Relations Corporation).
December 31, 2024 MG confirmed
Madagascar: BFM + SAMIFIN tighten AML — high risks illegal mining vanilla sapphires
Madagascar's Central Bank (Banky Foiben'i Madagasikara, BFM) and the Service de Renseignements Financiers (SAMIFIN) — Malagasy FIU — intensified AML/CFT inspections during 2024 under the framework of Law 2018-043 on the fight against money laundering and terrorism financing, amended in 2021 to align with FATF recommendations. Specific Malagasy AML risks are extraordinarily elevated: massive illegal sapphire mining (Madagascar produces ~40% of world sapphires, with artisanal extraction without effective regulation), vanilla (Madagascar produces ~80% of world bourbon vanilla, with opaque supply chains), illegal gold to UAE and South Africa, rosewood (massive illegal exports to China violating CITES since 2010), conflict timber, massive wildlife trafficking (endemic lemurs, chameleons, geckos), political corruption associated with the Andry Rajoelina regime (President since 2019 after 2009 coup and controversial 2018/2023 election), $7 billion GDP with 75% of population living on <$2/day (World Bank). The banking sector is dominated by European subsidiaries (Société Générale Madagasikara, BNI Banque Nationale d'Industrie subsidiary of Crédit Agricole, BFV Société Générale, BOA Madagascar). Madagascar is an ESAAMLG and MONEYVAL member.
December 31, 2024 MO confirmed
Macau: AMCM + DICJ tighten AML — world's largest gambling hub + post-Banco Delta Asia 2005
The **Autoridade Monetária de Macau (AMCM)** and the **Gaming Inspection and Coordination Bureau (DICJ)** supervise the Macao banking and casino sector under the framework of Law 2/2006 on AML/CFT (amended in 2017, 2021 and 2024). Macau (Special Administrative Region of China since 1999, transferred from Portugal — capital Macao, 680,000 inhabitants), is **the world's largest gambling hub**: $25 billion in gaming revenues 2024 (4x Las Vegas Strip pre-COVID), with 6 main operators (Sociedade de Jogos de Macau SJM Holdings, Galaxy Entertainment, Sands China, Wynn Macau, MGM China, Melco Resorts). The gaming sector contributes ~50% of Macau's GDP. The foundational AML historical case of Macau was **Banco Delta Asia (BDA) Section 311 designation by FinCEN in September 2005** (case aml-dprk-bda-2005 in this tracker, related to DPRK), which also included freezing of $25M in DPRK accounts in Macau. Specific Macanese AML risks: **VIP gambling junkets** (operators that bring Chinese high rollers to Macau via offshore credit, traditional vector for Chinese capital flight — Junket industry collapsed post-2022 with Alvin Chau's 18-year prison sentence for gambling syndicate + 7+ years investigation), corridor with Hong Kong, luxury real estate (Cotai Strip 'Las Vegas of Asia'), corruption legacy of traditional operators (Stanley Ho dynasty), Xi Jinping anti-corruption campaign post-2012 has dramatically affected the junket business. The banking sector is concentrated in: Banco Nacional Ultramarino (BNU, Portuguese), ICBC Macau, Bank of China Macau, OCBC Wing Hang Bank Macau. Macau is an APG observer.
December 31, 2024 LT confirmed
Lithuania: BL tightens AML — EU Russia sanctions leader + Magnitsky law 2017 + Snoras Bank 2011 collapse
The Bank of Lithuania (BL) and the Financial Crime Investigation Service (FCIS, known in Lithuanian as Finansinių Nusikaltimų Tyrimo Tarnyba FNTT) supervise the Lithuanian banking sector under the framework of the Law on Prevention of Money Laundering and Terrorist Financing 1997 (extensively amended in 2007, 2017, 2020, 2023 to align with EU AMLDs). Lithuania (2.9M inhabitants, capital Vilnius), EU + Schengen member since 2004 + Eurozone since 2015 + NATO since 2004. **Lithuania is one of the European leaders in Russia sanctions enforcement** post-2022: was the first EU country to cut diplomatic relations with Belarus (2022), implement Kaliningrad transit ban sanctions (Jun 2022), support Ukraine with $700M+ aid. **Lithuania was one of the first countries to adopt Magnitsky law (Lithuanian Magnitsky List, 2017)** — restricts entry to foreign human rights violators. The most prominent historical case: **Snoras Bank collapse in November 2011** — Lithuania's 5th largest bank with $2.5 billion in assets collapsed after revelation of massive fraud by founder **Vladimir Antonov** (Russian oligarch, owner of Investbank Russia + Latvijas Krājbanka, extradited from UK to Lithuania 2014, sentenced 6 years + 2018 additional convictions in absentia Russia). The case caused massive losses to Lithuanian depositors + Krājbanka Latvian customers (case aml-krajbanka-latvia-2011 separate). Specific Lithuanian AML risks: Belarus-Lithuania corridor + Kaliningrad enclave (Russia), Russian wealth post-sanctions limitations, fintech hub (Vilnius is 'Baltic fintech capital' with 200+ fintech BL licenses including Revolut, ConnectPay), Wizz Air aviation sector. The banking sector is concentrated in: Swedbank Lithuania, SEB Bank Lithuania (both Swedish), Šiaulių Bankas, Luminor Bank Lithuania. Lithuania is a MONEYVAL member.
December 31, 2024 LR confirmed
Liberia: CBL tightens AML — Charles Taylor 50 years prison (ICC 2012) + Sirleaf reform + blood diamonds
The **Central Bank of Liberia (CBL)** and the Financial Intelligence Agency (FIA-LR) supervise the Liberian banking sector under the framework of the Anti-Money Laundering and Terrorist Financing Act 2012 (amended in 2018 and 2023). Liberia (5.3M inhabitants, capital Monrovia), country founded in 1822 by liberated American slaves (American Colonization Society), operates **the Liberian dollar and USD as parallel currencies** (unique situation in Africa). The country lived **2 devastating civil wars** (1989-1997 and 1999-2003) that killed ~250,000 people and destroyed infrastructure completely. Former President **Charles Taylor** (1997-2003, former warlord) was **convicted by the Special Court for Sierra Leone / ICC in The Hague on April 26, 2012 to 50 years prison** for 11 counts of crimes against humanity and war crimes (responsibility for Sierra Leone civil war via support to RUF Revolutionary United Front in exchange for blood diamonds). He is the **first African ex-head of state convicted by an international tribunal since Nuremberg**. **Ellen Johnson Sirleaf** (President 2006-2018, Nobel Peace Prize 2011) led post-civil war reconstruction with visible anti-corruption reforms. **George Weah** (former soccer player, President 2018-2024) succeeded Sirleaf, lost elections Nov 2023 against Joseph Boakai (Unity Party). Specific Liberian AML risks: **blood diamonds legacy** (Kimberley Process certification post-2007 reformed but residuals persist), **timber smuggling** (Liberia has the largest primary tropical forests in West Africa), **rubber** (Firestone Liberia, country's largest private employer), Atlantic drug corridor, Monrovia real estate boom. The banking sector is concentrated in: Liberia Bank for Development and Investment (LBDI), Ecobank Liberia, GT Bank Liberia, Access Bank Liberia, International Bank (Liberia). Liberia is a GIABA member.
December 31, 2024 LS confirmed
Lesotho: CBL tightens AML — South Africa enclave + Lesotho Highlands Water Project + AGOA textile exporter
The **Central Bank of Lesotho (CBL)** and the Financial Intelligence Unit (FIU Lesotho) supervise the Lesotho banking sector under the framework of the Money Laundering and Proceeds of Crime Act 2008 (amended in 2015, 2019 and 2023). Lesotho (2.1M inhabitants, constitutional monarchy under King Letsie III) is **the world's only country completely surrounded by another country (South Africa)** — a mountainous enclave (87% of territory above 1,500m) known as 'Kingdom of the Sky'. Lesotho operates dual currency: **Lesotho loti (LSL) pegged 1:1 to South African rand (ZAR)** via Common Monetary Area (CMA, also including Eswatini and Namibia). Specific Lesotho AML risks: **diamonds** (Letseng mine produces some of the world's largest and most expensive diamonds — Lesotho Brown, Lesotho Promise, others), **Lesotho Highlands Water Project** (mega water project to South Africa initiated 1986 with World Bank, corruption scandals documented over decades — Masupha Sole CEO LHDA convicted of bribery 2002), **textile exporter** under AGOA (US Africa Growth and Opportunity Act — $400M/year exports), **HIV/AIDS** (Lesotho has world's 2nd highest prevalence rate, 23% of adults), refugees from South Africa (xenophobia), systemic political corruption (Tom Thabane case, former PM, accused in 2020 of his ex-wife's murder). The banking sector is concentrated in: Standard Lesotho Bank (Standard Bank Group), First National Bank Lesotho (FNB), Lesotho Postbank, Nedbank Lesotho. Lesotho is an ESAAMLG member.
December 31, 2024 KG confirmed
Kyrgyzstan: NBKR + SFIS — crypto-friendly post-2022 + high Russia sanctions evasion exposure
The **National Bank of the Kyrgyz Republic (NBKR)** and the **State Financial Intelligence Service (SFIS)** supervise the banking sector under the framework of the Law on Counteracting the Financing of Terrorism and Legalisation of Proceeds from Criminal Activity 2018 (amended in 2020 and 2023). Kyrgyzstan, mountainous Central Asian country with 7M inhabitants, has emerged post-2022 as a **Russian sanctions evasion hub via crypto**: the regime of President Sadyr Japarov (since January 2021 after violent protests) approved in 2022 extremely permissive pro-crypto laws, with mining proliferation (access to cheap hydroelectric energy). UK reporting OCCRP 2024 documented that Kyrgyzstan is one of the main corridors for OFAC sanctions evasion for Russia post-Ukraine invasion 2022. Specific Kyrgyz AML risks: crypto mining hub (~5% of global bitcoin hashrate estimated), gold (Kumtor mine, largest gold producer in Central Asia post-Centerra), Afghanistan-Russia/China heroin corridor, Tajik border conflict (2021-2022 clashes — 36+ deaths), political corruption (the last 3 popular revolutions have overthrown 3 presidents: Akayev 2005, Bakiyev 2010, Atambayev 2020), tourist kompromat with Russian figures. The banking sector is concentrated in: Bakai Bank, Optima Bank, Demir Kyrgyz International Bank, RSK Bank, Aiyl Bank. Kyrgyzstan is an EAG member.
December 31, 2024 XK confirmed
Kosovo: CBK tightens AML — 2008 independence (recognized by 100+ countries) + euro adopted
The **Central Bank of the Republic of Kosovo (CBK)** and the Financial Intelligence Unit (FIU-K) supervise the Kosovar banking sector under the framework of Law 05/L-096 on AML (2016, amended in 2019 and 2024). Kosovo declared its independence from Serbia on **February 17, 2008** and has been recognized by more than **100 countries** (including US, UK, Germany, France — but NOT by Serbia, Russia, China, Spain, Greece, Slovakia, Cyprus, Romania). Kosovo uses the euro as official currency (unilaterally adopted with the Deutsche Mark previously, then the euro post-2002, without formal ECB agreement — situation similar to Montenegro). Specific Kosovar AML risks: **Balkan drug and arms corridor** (legacy of the 1998-1999 Kosovo War and the UÇK Kosovo Liberation Army insurgency), **persistent tensions with Serbia** (especially in northern Kosovo with majority Serbian population — Mitrovica), **massive Kosovar diaspora** (1M+ in Germany, Switzerland, Austria, Sweden), Pristina real estate boom, casinos (Casino Royale Pristina, others), Kosovo-Albania alliance (Albania-Kosovo corridor open since 2019). The banking sector is concentrated in: ProCredit Bank Kosovo (German), Raiffeisen Bank Kosovo (Austrian), NLB Banka Kosovo (Slovenian), Banka Ekonomike, Banka Kombëtare Tregtare Kosova (BKT, Albanian). Kosovo is a Council of Europe candidate (not yet EU), not a UN member due to Russia/China vetoes. Kosovo is a MONEYVAL observer.
December 31, 2024 JO confirmed
Jordan: CBJ tightens AML — Syria/Iraq refugees + Hezbollah/Hamas corridor + Hashemite monarchy kingdom
The **Central Bank of Jordan (CBJ)** and the Anti-Money Laundering and Counter Terrorist Financing Unit (AMLU) supervise the Jordanian banking sector under the framework of Law 46/2007 on AML/CFT (amended in 2010, 2015, 2018 and 2023). Jordan (11.3M inhabitants, capital Amman) is **a Hashemite monarchic kingdom under King Abdullah II** (since 1999 after his father King Hussein's death) — the only Sunni Arab country with a traditional hereditary monarchic regime. The country has been **historically a refuge for displaced populations** from the Levant: **2.3 million Palestinian refugees** (largest proportion in the world, 70% Jordan population is of Palestinian origin), **1.3 million Syrian refugees** (post-2011, largest proportion per capita after Lebanon), **750,000 Iraqi refugees** (post-1990 Gulf War + 2003 invasion). Jordan is **a key US ally** in the Middle East (Free Trade Agreement 2001 — the first with an Arab country; US $1.45B annual military aid). Specific Jordanian AML risks: **corridor with Syria** (refugees, Captagon smuggling post-Assad collapse 2024), **corridor with Iraq** (Anbar province), **corridor with Israel/West Bank** (Allenby Bridge — main crossing for Palestinians), **Hezbollah/Hamas financing concerns** (historical case Jordan First Bank vs. Linde Hezbollah 2014 — class action settled), **drone strikes** (3 soldiers killed Tower 22 base Jan 2024 by Iraq-Iran proxies), **Petra real estate** (tourism), **Dead Sea chemical industry**, **Aqaba port logistics**. The banking sector is concentrated in: Arab Bank (largest Jordanian bank, also pan-Arab), Housing Bank for Trade and Finance (HBTF), Jordan Islamic Bank (JIB), Jordan Ahli Bank, Cairo Amman Bank. Jordan is a MENAFATF member.
June 28, 2024 JP confirmed
Japan: the FSA creates a transaction-analysis licensing regime to reinforce AML (2023-2024)
After reforming its Payment Services Act in 2022, Japan's Financial Services Agency (FSA) created the 'foreign-exchange transaction analysis business' (為替取引分析業), a licensing regime for entities analyzing transactions on behalf of multiple banks, authorizing three operators through 2024. The FSA acts amid record internet-banking fraud in 2023 (5,578 cases). It is a case of AML-framework regulatory strengthening, rather than a specific fine.
August 29, 2019 LB confirmed
Lebanon: OFAC designates Jammal Trust Bank for financing Hezbollah in Aug 2019 — bank liquidates
On August 29, 2019, OFAC designated Jammal Trust Bank SAL (JTB), a Beirut-based Lebanese bank, under Executive Order 13224 for providing financial services to Hezbollah, including the Saraya (Hezbollah's military organization) and the Martyrs Foundation (Hezbollah's paramilitary organization). The designation also included JTB's subsidiaries and affiliates. As a consequence, the Banque du Liban (BDL) ordered JTB's voluntary liquidation, and the Special Investigation Commission (SIC) oversaw the process. It is one of the most significant OFAC cases against a Lebanese bank since the 311 designation of Lebanese Canadian Bank (LCB) in 2011 (case aml-lcb-2011). JTB effectively closed operations in September 2019. The case is cited as precedent in the Bartlett v SGBL et al lawsuit (case aml-bartlett-lebanese-banks-2020), where JTB is one of the 12 sued banks. The Hezbollah-Lebanese banks connection remains a central issue of US-Lebanon diplomacy and OFAC secondary sanctions. It marks the second Lebanese bank designated SDN in less than a decade by OFAC.
June 28, 2024 JM confirmed
Jamaica: FATF removes Jamaica from grey list in Jun 2024 after 4 years of enhanced monitoring
On June 28, 2024, FATF removed Jamaica from the grey list (Jurisdictions under Increased Monitoring) after 4 years of enhanced monitoring initiated in February 2020. The recognition was based on 'significant progress' in improving its AML/CFT regime, including: more comprehensive framework, inclusion of all financial institutions and DNFBPs (designated non-financial businesses and professions), and improvements in financial intelligence-based investigations. The supervisor is the Bank of Jamaica with the Financial Investigations Division (FID) as FIU, under the Caribbean Financial Action Task Force (CFATF). Jamaica is one of the main Caribbean financial centers along with Barbados, Trinidad and Tobago, and the Cayman Islands. The grey list exit was particularly significant for remittances sector development (remittances represent ~20% of Jamaican GDP, mainly from US, UK and Canada). After Jamaica's exit, the only remaining Caribbean country on FATF grey list (as of October 2024) is Haiti. Recent prior exits include Trinidad and Tobago (Feb 2020), Barbados (Mar 2022) and Cayman Islands (Oct 2023).
June 28, 2024 JM confirmed
Jamaica: FATF removes Jamaica from grey list Jun 2024 — scam call industry legacy + similar Cayman exit
On June 28, 2024, FATF removed Jamaica from the grey list ('Jurisdictions under Increased Monitoring') after 4 years of monitoring initiated in February 2020. The Bank of Jamaica (BOJ) and the Financial Investigations Division (FID) supervise the Jamaican banking sector under the framework of the Proceeds of Crime Act 2007 (extensively amended 2013, 2017, 2020, 2023). Jamaica (2.8M inhabitants, capital Kingston) has **one of the most persistent AML problems in the Caribbean**: **'Jamaica lottery scam'** — telephone fraud industry operated from Montego Bay that has **scammed ~$300M annually mainly to elderly in United States** (case aml-jamaica-lottery-scam-multiple in this tracker connected). Specific Jamaican AML risks: scam call industry legacy, gangs (Shower Posse historically, now successors Klansman, One Order, Spanish Town), Colombia-Jamaica-US/UK cocaine corridor (Kingston port), diaspora real estate (Jamaica has 2.8M inside but 3M+ Jamaicans abroad — UK, US, Canada), ganja (cannabis legal in Jamaica 2015, exports for medicinal). The banking sector is concentrated in: National Commercial Bank (NCB Financial Group, largest), Bank of Nova Scotia Jamaica (Scotiabank), JN Bank, First Caribbean International Bank (CIBC). Jamaica is a CFATF founding member.
December 31, 2024 CI confirmed
Côte d'Ivoire: BCEAO supervises — largest ECOWAS economy post-Nigeria + West African commodity hub
Côte d'Ivoire is the second largest economy of the Economic Community of West African States (ECOWAS) after Nigeria ($85 billion GDP 2024) and a member of the West African Economic and Monetary Union (UEMOA, 8 countries), supervised by BCEAO (case aml-bceao-senegal-2024 in this tracker) and the Cellule Nationale de Traitement de l'Information Financière (CENTIF) Ivorian. The legal framework is Law 2016-992 on the fight against money laundering and terrorism financing. Specific Ivorian AML risks include: **world's largest cocoa producer (40% of world cocoa)** with opaque supply chains and documented corruption (World Bank report 2022), coffee (world's second producer), gold (Côte d'Ivoire is Africa's 5th producer), offshore oil (2010s discoveries, incipient production), north-south corridor with Mali, Burkina Faso, Niger (Sahel jihadism), political corruption associated with the Alassane Ouattara government (President since 2010), tensions with the Laurent Gbagbo opposition (PPA-CI), luxury real estate in Abidjan attractive to diaspora. The banking sector is dominated by African and European subsidiaries: Société Générale Côte d'Ivoire, BICICI (Banque Internationale pour le Commerce et l'Industrie de la Côte d'Ivoire, BNP Paribas subsidiary), SGBCI, NSIA Banque, Ecobank Côte d'Ivoire, Bridge Bank.
October 7, 2023 PS confirmed
Israel/Palestine: Hamas attack Oct 7 2023 — 1,200 Israelis + 251 hostages + Gaza response 45,000+ deaths
On October 7, 2023, Hamas (Islamic Resistance Movement, FTO designated by US since October 1997) launched the most devastating attack against Israel since Yom Kippur 1973: 1,200 Israelis killed + 251 hostages (including Shani Louk, Hersh Goldberg-Polin, baby Kfir Bibas). Israel responded with Operation Iron Swords/Swords of Iron — Gaza war has caused 45,000+ Palestinian deaths according to Gaza Ministry of Health (UN considers figures consistent), 80% of Gaza destroyed, 1.9M of 2.3M Palestinians displaced. OFAC designations post-Oct 7: 100+ new entities (Hamas leadership Yahya Sinwar killed Oct 2024, Mohammed Deif killed Jul 2024, Ismail Haniyeh killed Tehran Jul 2024; Hezbollah Hassan Nasrallah killed Sep 2024 + Hashem Safieddine Oct 2024; PIJ leadership; Iran IRGC + Quds Force). Hamas financing estimated at $700M-1 billion/year (mostly Iran via IRGC Quds Force, also Qatar via 'humanitarian aid' to Gaza historically — $1.8B from Qatar 2018-2023 that went to Hamas government salaries, suspended post-Oct 7). Multiple Hamas finance designations: aml-hamas-charities-2023, aml-bank-of-palestine-multiple. Bank of Palestine (largest), Cairo Amman Bank Palestine, Bank of Jordan Palestine operate in West Bank + Gaza under PMA (Palestinian Monetary Authority) and CBI Israeli dual supervision. Hostage diplomacy via Qatar mediation has resulted in partial exchanges (Nov 2023: 105 hostages freed x 240 Palestinian prisoners; Mar 2024+ ceasefire deals proposed).
July 24, 2025 HK confirmed
Hong Kong: HK$3.5M from HKMA to Indosuez Hong Kong in Jul 2025 over AML failures
The HKMA sanctioned in July 2025 Indosuez Wealth Management (Hong Kong branch), the private banking division of French Crédit Agricole group, with a HK$3.5 million fine (~$0.45 million USD) for breaches of Hong Kong's Anti-Money Laundering Ordinance. The sanction was part of a broader supervisory action against three banks for a total of $2.1 million USD in fines, announced the same day. A characteristic case of HKMA's growing enforcement on European global bank subsidiaries in the Asian financial center.
March 8, 2024 HN confirmed
Honduras: Juan Orlando Hernández (ex-President 2014-2022) sentenced to 45 years for drug trafficking (Jun 2024)
On **March 8, 2024**, former Honduran President **Juan Orlando Hernández** ('JOH', National Party, President 2014-2022) was **found guilty by a Southern District of New York (SDNY) jury** on three charges: conspiracy to import cocaine to the US, conspiracy to use firearms in drug trafficking crimes, and conspiracy to make and use false statements. **On June 26, 2024, Hernández was sentenced to 45 years federal prison**. It is one of the most significant cases against a former Latin American head of state in the US (alongside Manuel Noriega 1992). Hernández was **extradited from Honduras to the US on April 21, 2022**, weeks after leaving the presidency, after DOJ request. Evidence documented that JOH received **millions of dollars in bribes from the Sinaloa Cartel (Joaquín 'El Chapo' Guzmán testified), Los Cachiros Cartel (testimonies from Devis Leonel Rivera Maradiaga), Los Valles Cartel** between 2004-2022 in exchange for state protection for cocaine trafficking (~1 million kilos documented passing through Honduras to the US). His brother **Tony Hernández** (former Deputy) was previously sentenced to **life in prison in March 2021** for similar crimes. The Honduran financial sector is supervised by the Central Bank of Honduras (BCH) and the National Commission of Banks and Insurance (CNBS), with UIF Honduras. Current President **Xiomara Castro** (LIBRE, wife of former President Manuel Zelaya, President since January 2022) has initiated reforms. The Honduran banking sector is concentrated in: Banco Atlántida, Banco Ficohsa, BAC Credomatic Honduras, Banco Davivienda Honduras. Honduras is a GAFILAT member.
February 29, 2024 HT confirmed
Haiti: Cherizier 'Barbecue' Viv Ansanm coalition Feb 2024 — gangs control 80%+ Port-au-Prince + Henry removal
On February 29, 2024, Jimmy Chérizier 'Barbecue' (former Haitian policeman, leader of G9 Family and Allies gang federation and new Viv Ansanm coalition 'Living Together' uniting 10+ main Port-au-Prince gangs) launched the most violent offensive in recent Haitian history: coordinated attacks on National prison (3,500+ prisoners released, including gang leaders), Toussaint Louverture International Airport, presidential palace, US Embassy compound. Prime Minister Ariel Henry (in office since July 2021 after the assassination of President Jovenel Moïse) was trapped in Kenya in his attempt to return on March 4, 2024, forcing his resignation on March 11, 2024. A Transitional Presidential Council was established in April 2024 + Garry Conille PM (June 2024 - removed Nov 2024) → Alix Didier Fils-Aimé (PM November 2024+). In 2024, 5,000+ deaths from violence, 700,000+ internally displaced (out of 11M population). The gangs (G9, G-Pep, Viv Ansanm coalition) control 80%+ of Port-au-Prince territory + rural areas. UN Security Council Resolution 2699 (October 2023) authorized the Kenya-led Multinational Security Support (MSS) mission — 400+ Kenyan police arrived June 2024 (out of 1,000 promised + 1,500 from other countries). Cherizier is designated SDN by OFAC since 2022. The BRH (Banque de la République d'Haïti) and the UCREF supervise the financial sector under the framework of the Law of November 11, 2013 (amended 2017, 2023). The banking sector is concentrated in: Sogebank, Unibank, Banque Nationale de Crédit (BNC, state), Capital Bank, Banque de l'Union Haïtienne. Haiti is a CFATF member.
December 31, 2024 GW confirmed
Guinea-Bissau: BCEAO supervises — first African narco-state declared by US 2019 + recurrent coups
Guinea-Bissau, member of UEMOA (West African Economic and Monetary Union, 8 countries sharing CFA franc XOF), is supervised by BCEAO (case aml-bceao-senegal-2024 in this tracker) and the Cellule Nationale de Traitement des Informations Financières (CENTIF) Bissau-Guinean. **Guinea-Bissau is the only African country officially declared a 'narco-state' by the US State Department in 2019** (Pompeo administration). The country (2M inhabitants, capital Bissau, former Portuguese colony until 1973) has experienced **at least 4 successful coups since independence** (1980, 1999, 2003, 2012) and multiple failed attempts. Drug trafficking transformed the country into a cocaine hub from Latin America (Colombia, Venezuela, Bolivia) to Western Europe via Sahel-Mediterranean (Mauritania-Morocco-Spain), with **75% of cocaine consumed in Europe transiting through West Africa** according to UNODC, and Guinea-Bissau as a main node. High-level military and political officials have been systematically implicated: case of **Admiral José Américo Bubo Na Tchuto** (Navy Chief, designated SDN by OFAC 2010, arrested by DEA in 2013 via sting operation in international waters — sentenced 4 years US prison 2016). The banking sector is dominated by: Banco da União, Banco BAO (Banco da África Ocidental, Portuguese CGD subsidiary), Banco BIA (Banco Interatlântico, CGD subsidiary). Guinea-Bissau is a GIABA member.
September 3, 2019 GT confirmed
Guatemala: CICIG closed by Jimmy Morales Sep 2019 — Otto Pérez Molina convicted + 700+ investigated
The **International Commission against Impunity in Guatemala (CICIG)**, unique organism in the world created by Agreement between the UN and the Guatemalan government on December 12, 2006 (operational since September 2007), was **closed by President Jimmy Morales on September 3, 2019** after 12 years of operations — one of the most serious cases of dismantling of anti-corruption mechanisms in Latin America. CICIG investigated **>200 high-profile corruption cases** that led to **700+ judicialized officials**, including: **Otto Pérez Molina** (former President 2012-2015) and **Roxana Baldetti** (Vice President), arrested in 2015 in **'La Línea' case** (customs fraud scheme) — Pérez Molina sentenced to 16 years prison in December 2022 + Baldetti multiple sentences, cases against former President **Alfonso Portillo** (2000-2004), **CooperaciónFinancieras Vaco case**, **Rosenberg case** (controversial 2009), **PNC narcotráfico case**. After CICIG closure under Morales, the Guatemalan judicial system lived a 'corrupt pact' documented by OAS and UN: judges and prosecutors who pursued CICIG cases were **forced into exile** (Juan Francisco Sandoval former Special Prosecutor against Impunity FECI exiled Costa Rica 2021, Thelma Aldana former Attorney General exiled US, Iván Velásquez former CICIG commissioner now Colombia Defense Minister). The Guatemalan banking system is supervised by the Bank of Guatemala (BANGUAT) and the Intendency of Special Verification (IVE, FIU). The banking sector includes: Banco Industrial (largest), Banco G&T Continental, Banco de los Trabajadores, BAM, Banrural. **President Bernardo Arévalo** (Semilla Movement, since January 2024 — reactivated CICIG-aligned party) attempts to restore anti-corruption institutionality. Guatemala is a GAFILAT member.
December 31, 2024 GE confirmed
Georgia: NBG + FMS tighten AML — Russia migrant exposure post-2022 + lost EU candidate Dec 2023
The National Bank of Georgia (NBG) and the Financial Monitoring Service of Georgia (FMS) intensified AML/CFT inspections during 2024 under the framework of the Law of Georgia on Facilitating the Prevention of Money Laundering and the Financing of Terrorism 2019, aligned with the EU's 5th AMLD. Georgia obtained EU candidate status in December 2023 but the process was suspended in November 2024 after massive protests over the 'foreign agents law' (Russian-style) approved by the Georgian Dream party. Specific Georgian AML risks: massive Russian migrant influx post-2022 (~110,000 in 2022-2023 with $14 billion in bank transfers according to NBG), Russian sanctions evasion through Georgia (the EU designated Bank Cartu in January 2024 for facilitating sanctions evasion), separatist territories Abkhazia and South Ossetia (not controlled by Tbilisi), Caucasus-Black Sea corridor, casinos in Batumi as regional hub, cryptos without clear regulatory framework. The banking sector is concentrated in: TBC Bank (~40% of market), Bank of Georgia, Liberty Bank, Credo Bank, Cartu Bank (EU sanctioned). Georgia is a MONEYVAL member.
April 8, 2026 US confirmed
US: FinCEN+OFAC propose stablecoin AML rules under GENIUS Act (Apr 2026) — Part 1033 new framework
On **April 8, 2026**, **FinCEN and OFAC** jointly published a **Notice of Proposed Rulemaking (NPRM)** implementing the anti-financial crime provisions of the **Guiding and Establishing National Innovation for U.S. Stablecoins Act (GENIUS Act)**, which **would establish a comprehensive AML/CFT framework for Permitted Payment Stablecoin Issuers (PPSIs) under the Bank Secrecy Act (BSA)**. The proposed rule **would treat stablecoin issuers as financial institutions** for BSA purposes — the **first time in US federal history** that a specific type of crypto-issuer is regulated under the traditional banking framework. Main affected actors: **Circle Internet Financial (USDC, $60B+ marketcap)**, **Tether Limited (USDT, $140B+ marketcap, largest stablecoin)**, **Paxos Trust (USDP, BUSD pre-2023)**, **PayPal (PYUSD)**, **First Digital (FDUSD)**. The NPRM creates a **new Part 1033 of 31 C.F.R. chapter X** specific for PPSIs, separate from the MSB (Money Services Business) framework. PPSIs would be required to: **(1) Risk-based AML/CFT program** with resource dedication to higher-risk customers, **(2) Sanctions compliance program with transaction blocking capabilities** (first required by US statute), **(3) SAR reporting to FinCEN**, **(4) Customer Due Diligence + Beneficial Ownership identification**, **(5) AI-driven analytics, federated learning** and other advanced monitoring tools (favorable treatment). Comments due **June 9, 2026**. The action complements the **FinCEN whistleblower program NPRM March 30, 2026** ($40M FinCEN enforcement 2025 + $265M OFAC enforcement 2025 = $305M total 2025 base). **Treasury Department also issued NPRM April 3, 2026** on the state-level regulatory regime substantially similar to federal framework (state regulation of stablecoins).
December 31, 2024 IS confirmed
Iceland: FME maintains strict AML framework after FATF grey list exit in Oct 2020
Iceland's Financial Supervisory Authority (Fjármálaeftirlitið, FME), part of the Central Bank of Iceland since 2020, supervises the banking sector under the framework of Act on Anti-Money Laundering No. 140/2018, aligned with the EU's 5th AMLD directive (Iceland is EEA member but not EU). Iceland was added to the FATF grey list in October 2019 — an unusual event for a developed Nordic country — and exited in October 2020 after an accelerated action plan following FATF's critical evaluation. Identified deficiencies included: limited effectiveness in risk-based supervision, weaknesses in investigating complex financial crimes, and problems with beneficial ownership transparency post-2008 banking crisis (Kaupthing, Glitnir, Landsbanki). The Icelandic banking sector is concentrated in: Landsbankinn (state), Íslandsbanki, Arion Bank. Since the grey list exit, Iceland has maintained a strict but opaque AML/CFT framework in individual sanction publication (similar to other Nordics). MONEYVAL periodically evaluates Iceland.
June 25, 2025 MX confirmed
Mexico: FinCEN designates CIBanco, Intercam and Vector for fentanyl-linked laundering (2025)
On 25 June 2025, FinCEN issued its first orders under the 2024 FEND Off Fentanyl Act, designating three Mexican institutions —CIBanco, Intercam Banco and Vector Casa de Bolsa— as of 'primary money laundering concern' for their role in opioid trafficking. It is not a fine, but a prohibition on US institutions transferring funds to or from them. FinCEN alleged they facilitated payments to the CJNG, Beltrán-Leyva and Gulf Cartel, including buying precursor chemicals in China. Mexico said it received 'no conclusive information'. The case illustrates the designation↔enforcement gap: a designation can be more lethal than a fine.
May 11, 2026 US confirmed
US: FinCEN issues May 2026 Alert — IRGC global money laundering + sanctions evasion + crypto
On **May 11, 2026**, **FinCEN issued Alert FIN-2026-A002** instructing US financial institutions on **money laundering typologies by the Iranian Revolutionary Guard Corps (IRGC)** and its affiliates, including **IRGC-Quds Force** (case aml-iran-fatf-blacklist-2020 in this tracker). Typologies documented in the Alert include: **(1) Front companies in offshore jurisdictions** (Hong Kong, UAE, Turkey, Malaysia, Iraq, Venezuela), **(2) Trade-based money laundering (TBML)** especially in Iranian oil shipped via ship-to-ship transfers, **(3) Cryptocurrencies** (Tether USDT especially, USDC pre-blacklisting, Bitcoin and altcoins via mixers + DeFi protocols), **(4) Hawala networks** in Iraq, Pakistan, Afghanistan, Lebanon, **(5) Gold smuggling** Turkey-Dubai-Iran-Venezuela, **(6) Real estate** in the US (Trump real estate case 2018 documented), UK (Knightsbridge), Canada (Toronto, Vancouver), Australia (Sydney, Melbourne). The Alert also references **connections with Hezbollah, Hamas, Houthis and Assad/HTS** (case aml-syria-assad-hts-2024 in this tracker). FinCEN instructed financial institutions to file SARs (Suspicious Activity Reports) with keyword 'IRGC-2026-A002' for any transaction potentially connected. The action coincides with the context of **Trump 2.0 sanctions tightening against Iran** (2025+) and **maximum pressure campaign 2.0**. The Alert also details **stablecoin issuers** typologies aligned with the new **GENIUS Act (Guiding and Establishing National Innovation for U.S. Stablecoins Act)** and the FinCEN/OFAC Notice of Proposed Rulemaking published on April 8, 2026 that would treat Permitted Payment Stablecoin Issuers (PPSIs) as financial institutions under the BSA.
December 31, 2024 FJ confirmed
Fiji: RBF + FIU tighten AML — Fiji APG president 2024 + tourism/sugar dependent economy
The Reserve Bank of Fiji (RBF) and the Fiji Financial Intelligence Unit (FIU) supervised the Fijian banking sector under the framework of the Financial Transactions Reporting Act 2004, amended in 2009, 2014 and 2021. Fiji chaired the Asia/Pacific Group on Money Laundering (APG) in 2024 — a recognition of its progress in the AML/CFT regime. The country has 920,000 inhabitants and an economy highly dependent on tourism (~40% of GDP), sugar cane, fishing and remittances. Specific Fijian AML risks include: luxury real estate in Denarau and Mamanuca Islands attractive to Chinese and Russian investors, casinos (Crown Casino Suva), illegally transshipped Pacific fish (tuna), diaspora remittances (US, NZ, Australia with large Fijian communities), political corruption associated with various governments (Frank Bainimarama 2006-2022 post-military coup, Sitiveni Rabuka coalition 2022-present). The banking sector is dominated by Australian and New Zealand subsidiaries: ANZ Banking Group Fiji, Westpac Fiji, BSP Fiji, Bred Bank Fiji (French BRED subsidiary), Fiji National Provident Fund (FNPF) — the country's largest forced savings instrument. The Fijian dollar (FJD) operates under a fixed parity regime. Fiji is a founding member of APG (1997).
December 31, 2024 ER confirmed
Eritrea: Isaias Afwerki regime (1991-) maintains closed economy + mandatory diaspora tax
Eritrea, under the regime of President Isaias Afwerki since its independence in 1991, operates one of the world's most closed economic and banking systems: 100% state-controlled economy, no significant private sector, no stock exchange, no normal interbank operations. The Bank of Eritrea (central bank) and commercial banks (Commercial Bank of Eritrea, Housing & Commerce Bank, Eritrean Investment & Development Bank) are under direct control of the Ministry of Finance. The Eritrean nakfa (ERN) is pegged to USD by the regime without legal parallel market. Specific Eritrean AML risks: diaspora 2% Tax (mandatory for Eritreans abroad, collected via embassies, criticized by UN Eritrea Sanctions Committee), gold smuggling and minerals trafficking (Bisha mine of Nevsun resources, largest employer in Eritrea), military participation in Tigray war (Ethiopia, 2020-2022) with war crime allegations documented by UN OHCHR, support to Sudanese SAF in civil war 2023-present, regional expansion to Yemen and Somalia. UN sanctions against Eritrea (UN Security Council Resolution 1907 of 2009, for supporting Al-Shabaab in Somalia) were lifted in November 2018 after peace with Ethiopia (Nobel Prize Abiy Ahmed 2019), but the human rights situation remains catastrophic (annual UN reports document indefinite forced labor, free press prohibition, arbitrary detentions, 100,000+ political prisoners). Eritrea is not an active ESAAMLG member.
December 31, 2024 EG confirmed
Egypt: Central Bank tightens AML enforcement in 2024 following FATF monitoring
The Central Bank of Egypt (CBE) and the Egyptian Money Laundering and Terrorist Financing Combating Unit (EMLCU) intensified inspections and administrative sanctions on the Egyptian banking sector during 2024. Egypt remains under enhanced FATF monitoring after being removed from the grey list in 2024. The legal framework —Law 80 of 2002, as amended— requires entities to report suspicious operations to EMLCU and apply KYC. The CBE does not publish specific amounts of individual sanctions, in contrast to the transparency of jurisdictions like the UK FCA or NYDFS. Egypt's inclusion in the tracker reflects African and Middle Eastern coverage, alongside South Africa, UAE, Lebanon and Morocco.
January 9, 2024 EC confirmed
Ecuador: Noboa declares 'internal armed conflict' Jan 2024 + 'Fito' escape + post-2020 crime crisis
On January 9, 2024, President Daniel Noboa Azín (ADN, President since November 2023, young entrepreneur son of banana magnate Álvaro Noboa) declared 'State of Internal Armed Conflict' after the escape of narco leader Adolfo Macías Villamar 'Fito' (head of Los Choneros) from La Regional Guayaquil penitentiary on Jan 7, 2024, and the live takeover of TC Television channel by members of Los Tiguerones (another criminal organization) — first South American country to formally declare 'internal armed conflict'. Ecuador has suffered the worst criminal crisis in its history post-2020: homicide rate went from 6 per 100K (2017) to 47 per 100K (2023) — the highest in South America. Ecuadorian cartels (Los Choneros, Los Lobos, Los Tiguerones, Los Lagartos, Los Chone Killers) operate as subcontractors of Mexican (Sinaloa, CJNG) and Colombian cartels for cocaine trafficking via Guayaquil + Manta ports (Ecuador is the main cocaine corridor from Colombia + Peru to Europe + US — ~30% of global cocaine flow). BCE and UAFE supervise the financial sector under the framework of the Organic Law of Prevention of Asset Laundering 2017. Ecuador operates USD as official currency since 2000 (dollarization post-1999 banking crisis, unique situation in South America alongside El Salvador 2001 and Panama historic). The banking sector is concentrated in: Banco Pichincha (largest), Banco del Pacífico, Banco Guayaquil, Banco Internacional. Ecuador is a GAFILAT member.
December 31, 2024 DJ confirmed
Djibouti: BCD tightens AML supervision — strategic military + commercial hub Horn of Africa
Djibouti, strategically located in the Horn of Africa between the Red Sea and the Gulf of Aden, hosts **the world's largest concentration of foreign military bases**: USA (Camp Lemonnier, AFRICOM), France (largest French base outside France), Japan (Japan's only permanent military base outside Japan), Italy, Germany, Spain and, since 2017, **China (China's first overseas military base)**. The Banque Centrale de Djibouti (BCD) and the Service de Renseignements Financiers (SRF) supervise the banking sector under the framework of Law 130/AN/16/7eL on the fight against money laundering and terrorism financing (2016), amended in 2020. Djibouti operates the Djibouti franc (DJF) pegged to USD since 1973 (unique case in Africa). Specific Djiboutian AML risks: regional hub for hawala with Somalia (where there is no functioning banking system), Ethiopia (Ethio-Djibouti railway, pipeline), Eritrea, Sudan, Yemen; gold transit smuggling to UAE; refugees (4% of population are refugees from Yemen, Somalia, Ethiopia); Djibouti port as logistics hub (35% of Ethiopian trade passes through Djibouti), massive Chinese Belt and Road investment (including Djibouti International Free Trade Zone, Africa's largest FTZ). The banking sector is dominated by: Banque pour le Commerce et l'Industrie - Mer Rouge (BCIMR, largest Djiboutian bank, French BRED subsidiary), Salaam African Bank, EastAfrica Bank, BOA-Mer Rouge (Bank of Africa). Djibouti is a MENAFATF and ESAAMLG member.
September 19, 2018 EE confirmed
Estonia: the Danske Bank scandal in Sep 2018, €200B in laundering — Europe's largest in history
On September 19, 2018, Danske Bank revealed by publishing its internal report that its small Estonian branch (the former Sampo Bank, acquired in 2007) had processed between 2007 and 2015 around 200 billion euros (~$234 billion USD) in suspicious flows, mainly from non-resident Russian, Azerbaijani, Ukrainian, and Baltic country clients. The Estonian branch, with barely 0.5% of Danske's total assets, had generated 11% of group net profit in 2013. Estonia's Financial Supervision Authority (Finantsinspektsioon) ordered the closure of the Estonian branch. CEO Thomas Borgen resigned. Parallel criminal investigations in Denmark, US, UK, France, and Estonia produced in December 2022 a $2 billion Danske conviction from FinCEN + DOJ + SEC + Danish prosecutor (case already documented). It is the largest money laundering scandal in European history and triggered the EU's largest AML legislation overhaul (5th and 6th directives).
December 4, 2024 CW confirmed
Curacao: LOK reform Dec 2024 — online gambling 1,000+ licenses + Russian post-sanctions destination
The Centrale Bank van Curaçao en Sint Maarten (CBCS) and the Reporting Center Unusual Transactions (MOT) supervise Curacao's financial sector under the framework of the National Ordinance Identification when Rendering Services (NOIS, 2017) and National Ordinance Reporting Unusual Transactions (NORUT, 2017). In **December 2024**, Curacao implemented **a massive reform of the 'Landsverordening op de Kansspelen' (LOK, Law on Games of Chance)** — the world's most controversial online gambling licensing regime. For decades (1996-2024), Curacao operated a **'master license' system** where 4 companies (Cyberluck Curaçao N.V. / Curaçao eGaming, Antillephone N.V., Gaming Curaçao, Curaçao Interactive Licensing) **issued sub-licenses to 1,000+ online casinos** worldwide (including many targeting Russian, Chinese, Brazilian markets). The new Curacao Gaming Authority (CGA) now issues licenses directly with reinforced due diligence. **Russian operators and casinos targeting sanctioned customers post-2022** have been a persistent problem. Curacao (148,000 inhabitants, former Dutch colony, capital Willemstad) operates the Netherlands Antillean guilder (ANG) pegged to USD 1.79:1 — Curacao + Sint Maarten are the only remaining countries sharing the ANG post-dissolution of the Netherlands Antilles 2010. The banking sector is concentrated in: Maduro & Curiel's Bank (MCB, largest), Banco di Caribe, RBC Royal Bank Curaçao, Orco Bank. Curacao is a CFATF member.
February 7, 1962 CU confirmed
Cuba: world's longest OFAC embargo since 1962 — Helms-Burton 1996 + Trump tightening 2017+
The United States embargo against Cuba, initiated on February 7, 1962 by executive order from President John F. Kennedy (Proclamation 3447), is **the longest continuous embargo in world history** (64+ years as of 2026). The legal framework evolved significantly: Cuban Assets Control Regulations (CACR) 1963, Cuban Democracy Act (CDA) 1992, Cuban Liberty and Democratic Solidarity Act ('Helms-Burton Act') 1996 that prohibited non-US companies from operating with Cuba (extraterritoriality), Trade Sanctions Reform and Export Enhancement Act 2000 (TSREEA, allows agricultural/medical exports with conditions). Under the Obama administration (2014-2017) there was partial thaw (diplomatic opening, direct flights, remittances). Under Trump (2017-2021), sanctions tightened drastically: Cuba returned to the State Sponsors of Terrorism (SST) list in January 2021 (last day of Trump's first term), elimination of remittances via Western Union, SDN designation of MININT (Interior Ministry). Under Biden (2021-2025): minor changes. Under Trump 2.0 (2025-): new round of tightening expected. The Cuban banking sector is 100% state-owned: Banco Central de Cuba (BCC), Banco Nacional de Cuba (BNC), Banco de Crédito y Comercio (Bandec), Banco Popular de Ahorro (BPA), Banco Metropolitano. All are on OFAC's SDN list. The embargo has caused accumulated losses estimated by the UN at $150-1,000 billion (variable estimates) depending on methodology. Cuba is a GAFILAT member.
December 31, 2024 CU confirmed
Cuba: US embargo since Feb 1962 (62+ years) + Trump 2.0 new enforcement + 2020-2024 economy collapse
The **US economic embargo against Cuba** (Helms-Burton Act 1996 + multiple Executive Orders) **has been in effect since February 7, 1962** — **62+ years**, **the longest blockade in modern history** against a country. Cuba (11M inhabitants, capital Havana, communist government since 1959 Castro Revolution) has been designated by OFAC as one of 'State Sponsors of Terrorism' (SST) — added by Reagan 1982, removed by Obama 2015, **re-added by Trump 1.0 on January 11, 2021** (last day of Trump 1 government) + **maintained by Biden 2021-2025** + **Trump 2.0 (January 2025) has increased enforcement again** + **'restricted list' Cuban Restricted List' (includes GAESA Conglomerate** — Grupo de Administración Empresarial Cuban military with Mariel Special Development Zone, Hotel Saratoga, etc.). Cuba is under **massive economic sanctions**: prohibited US business with Cuba with narrow exceptions (humanitarian, food, medical), prohibited US tourism, prohibited Cuban exports to US (rum + Habanos cigars still prohibited today), prohibited US assets in Cuba except embassy, Helms-Burton Title III (suing for confiscated property since 1959 — activated by Trump 1.0 May 2019, has resulted in $1B+ lawsuits filed by US Cubans against companies dealing in confiscated property: Carnival Cruise, Trivago, Booking, MSC Cruises, etc.). Cuba has lived **deep economic crisis 2020-2024**: covid impact + declined remittances + tourism cap + Cuban peso devaluation (CUP 24:1 USD to 380:1 USD parallel 2024); **massive emigration** — ~700,000 Cubans crossed US border 2022-2024 (10x more than historic) — the **largest Cuban migration crisis since 1980 Mariel boatlift** (125,000 to US in 6 months). On **July 11, 2021**, **massive protests across Cuba** (the largest since 1959 Revolution) — government responded with mass arrests (1,000+ detained), internet shutdowns. Cuban economy heavily depends on US Cubans remittances ($3-4B annual), Venezuela oil (now declining), tourism Spain/Canada/Russia/Germany. **Raúl Castro** retired Communist Party leadership April 2021 → **Miguel Díaz-Canel** (President since April 2018, first non-Castro President). The banking sector is concentrated in: BCC (Banco Central de Cuba, central + issuer), Banco Popular de Ahorro (BPA), Banco de Crédito y Comercio (BANDEC), Banco Metropolitano (foreign currency), Banco Financiero Internacional (BFI, foreign banking transactions). Cuba is NOT a FATF member directly (excluded post-1962) — is observer of CFATF + GAFILAT.
January 1, 2023 HR confirmed
Croatia: HNB tightens AML — entered Eurozone Jan 2023 + Schengen 2023 + Agrokor scandal 2017
On **January 1, 2023**, Croatia became the 20th member of the **Eurozone** (adoption of the euro as official currency, replacing the Croatian kuna HRK) + the 27th member of **Schengen** (free movement). It is the first country of the former Yugoslavia to achieve both European integrations. The Hrvatska Narodna Banka (HNB) and the Croatian Financial Services Supervisory Agency (HANFA) supervise the financial sector under the framework of ZPPNFT 2017 (amended in 2019, 2022 to align with EU's 5th and 6th AMLD). Croatia (3.8M inhabitants, capital Zagreb), independent since 1991 (Yugoslav Wars), EU member since July 2013. Specific Croatian AML risks: **Agrokor case 2017** — the largest Croatian conglomerate (retail Konzum, food production, country's largest employer 60,000 employees, ~$7 billion revenue) collapsed due to massive fraud under Ivica Todorić (founder, sentenced in absentia + extradited from UK 2018 + sentenced in Croatia 6 years 2023), restructured under Lex Agrokor + Fortenova ownership changed to Marko Pupić-Bakrač (Russia connection allegations); **Balkan drug corridor** (Balkan Route sub-corridor), Bosnia + Serbia refugees, Dubrovnik + Split real estate boom by absentee European investors and Croatian diaspora (~1M in Germany, US, Australia, Argentina, Chile). The banking sector is concentrated in: Zagrebačka Banka (Italian UniCredit subsidiary, Croatia's largest bank), Privredna Banka Zagreb (PBZ, Italian Intesa Sanpaolo subsidiary), Erste & Steiermärkische Bank Croatia, Raiffeisenbank Austria Croatia. Croatia is a MONEYVAL member.
September 17, 2018 CH confirmed
Switzerland: FINMA reprimands Credit Suisse in 2018 over Petrobras, PDVSA and FIFA
FINMA concluded in September 2018 an enforcement proceeding against Credit Suisse, finding 'serious deficiencies' in anti-money laundering controls between 2006 and 2014 in connection with international corruption cases linked to Brazilian oil company Petrobras, Venezuelan PDVSA and FIFA. FINMA imposed an independent monitor on the bank. The authority did not impose a fine, since the Swiss legal structure allows FINMA to confiscate illicit gains but not apply civil fines to banking entities. It is the first case in which a major Swiss bank is disciplined simultaneously for three major transnational scandals, and a direct precursor to Credit Suisse's collapse in March 2023, when it was absorbed in an emergency by UBS for CHF 3 billion.
December 31, 2024 CR confirmed
Costa Rica: BCCR + SUGEF tighten AML — Costa Rica tourist hub + transit cocaine corridor + compliant 2024
The Central Bank of Costa Rica (BCCR), the General Superintendency of Financial Entities (SUGEF) and the Costa Rican Drug Institute (ICD) supervise the Costa Rican banking sector under the framework of Law 8204 on AML/CFT 2002 (amended in 2009, 2017, 2023). Costa Rica (5.2M inhabitants, capital San José, consolidated democracy without army since 1948) operates the colón (CRC). It is one of the most stable and compliant Central American countries, **OECD Latin American Operations founding member** + **never definitively included in FATF grey list**. Specific Costa Rican AML risks: Central American sub-corridor cocaine (Panama-Costa Rica-Nicaragua-Honduras-Guatemala-Mexico), **massive tourism economy** (~$4B annual receipts, 70K+ direct employment), **Guanacaste + Limón + Tamarindo + Manuel Antonio real estate boom** by absentee retirees mainly US/Canada/UK/Germany, **financial services hub** (Costa Rica has 80+ supervised banks/financial entities, largest relative concentration in Central America). **Hidroelectric Cervecería Coronado case** + **ICE case** investigations. **Operación Jenga + Operación León** anti-corruption. The banking sector is concentrated in: Banco Nacional de Costa Rica (BNCR, largest state-owned), Banco de Costa Rica (BCR, state-owned), BAC Credomatic Costa Rica (Grupo Bac), Banco Popular y de Desarrollo Comunal, Scotiabank Costa Rica, Citibank Costa Rica. Costa Rica is a GAFILAT member.
June 28, 2024 US confirmed
US: ConsenSys vs SEC — Wells Notice Apr 2024 + MetaMask sub-poena (10M+ MetaMask users)
**ConsenSys Software Inc** (Brooklyn, founded by **Joseph Lubin** Co-Founder Ethereum 2014, owner of **MetaMask** — the world's largest crypto wallet with ~10M monthly users, $5B+ assets via MetaMask Swap fee revenue) received a **Wells Notice from SEC in April 2024** indicating intent to file enforcement action — alleging that **MetaMask Swap (broker function) and MetaMask Staking (delegate ETH staking to Lido/Rocket Pool/Coinbase) are 'unregistered securities exchange' and 'unregistered broker-dealer activities'** under US securities laws. ConsenSys **responded with a pre-emptive counter-suit in US District Court Northern District of Texas (Fort Worth) in April 2024**, alleging SEC overreach. The case was seen as **landmark crypto regulation battle** under Gary Gensler-era SEC (chairman 2021-2025). **Post-Trump 2.0** (January 2025), SEC under new chairman **Paul Atkins** (confirmed April 2025, crypto-friendly) **dropped the ConsenSys case along with Coinbase, Robinhood, Kraken** — reflects crypto-friendly enforcement turn. ConsenSys also recently raised Series E **$450M** Aug 2023 ($7B valuation pre-2022 collapse, ~$3B 2024). **MetaMask is the world's most used browser extension wallet** — supports 30+ EVM chains (Ethereum, Polygon, BSC, Avalanche, Optimism, Arbitrum, Base, etc.). The case was a prominent debate of **'regulation by enforcement vs regulation by rulemaking'** in crypto industry. Lubin has been vocal opponent of Gensler enforcement style.
December 31, 2024 KM confirmed
Comoros: BCC tightens AML — citizenship by investment scandal 2008-2018 + Bidoon UAE financing
The **Banque Centrale des Comores (BCC)** and the Service de Renseignements Financiers (Comorian FIU) supervise the Comorian banking sector under the framework of Law 12-031 on AML/CFT (2012, amended in 2018). Comoros (archipelago of 3 islands in the Indian Ocean between Mozambique and Madagascar, 870,000 inhabitants, $1,300 GDP per capita) operates the Comorian franc (KMF) pegged to the euro. Comoros faced one of the world's most grotesque scandals in citizenship sales: **the 'Citizenship by Investment Programme'** operational between 2008-2018 sold passports to **52,000-67,000 people (~6% of the country's current population)**, mainly Bidoon (stateless) from Kuwait and the United Arab Emirates. The scheme generated ~$200M for the Comorian government, **but only $100M went to the national treasury** — the rest was diverted by officials including former President **Ahmed Abdallah Sambi** (2006-2011), sentenced in November 2022 to **life imprisonment for treason against the homeland** and embezzlement of public funds. The case revealed how Comoros became the world's cheapest 'economic passport' (~$45,000 vs Vanuatu $130K, Caribbean CBI $100-150K). UAE stopped the program in 2018. Current President **Azali Assoumani** (since 2016, before 1999-2006 post-military coup) controls an authoritarian regime with questioned elections. The banking sector is dominated by Banque Pour l'Industrie et le Commerce (BIC, French subsidiary). Comoros is a MENAFATF member and ESAAMLG observer.
December 31, 2024 HN confirmed
Honduras: CNBS tightens AML banking sector supervision in 2024 under Decree 144-2014
Honduras' National Banking and Insurance Commission (CNBS) and the Financial Information Unit (UIF) intensified AML/CFT inspections on the banking sector during 2024, under the framework of Decree 144-2014 (Special Law against Money Laundering), modified by Decree 17-2010 (Law against Terrorism Financing). Honduras is supervised by GAFILAT (Latin American Financial Action Group) and faces significant challenges due to its geographic position in the Central American drug corridor (between Colombia/Venezuela and Mexico/USA). The CNBS does not publish individual sanction amounts with the transparency of UK FCA or NYDFS. The Honduran banking sector is concentrated in: Banco Atlántida, BAC Honduras (Central American regional group), Banco de Occidente, Banco Ficohsa, Davivienda Honduras. Honduras has been the target of OFAC designations against individuals and politicians (including former President Juan Orlando Hernández, extradited and convicted in the US for drug trafficking in 2024), which have strained the local banking system.
April 18, 2024 US confirmed
US: Circle (USDC issuer) under continuous NYDFS + CFTC supervision in 2024 over stablecoin standards
Circle Internet Financial Limited, issuer of USDC (the world's second-largest stablecoin with $35 billion in circulation in 2024), operates under continuous NYDFS supervision (BitLicense holder) and faces regulatory requirements from the SEC and CFTC in the US after Tether's reserve problems (2021), USDC's collapse ('depegging' in March 2023 when Silicon Valley Bank held $3.3 billion of Circle's reserves), and pressure from the EU MiCA Regulation (in force since June 2024 for stablecoins). In 2024, Circle reinforced its monthly transparency attestations program with Deloitte, segregated reserves in BlackRock accounts, and enforcement against USDC use in darknet, ransomware (in cooperation with OFAC, it has frozen more than $300M USDC linked to SDN designations between 2020-2024). Circle was a pioneer in OFAC cooperation for stablecoin freezing, marking the paradigm of 'sanctions compliance native to the contract'. The SEC pending pursues establishing whether USDC is a security, an issue under active litigation in 2026.
June 1, 2018 CL confirmed
Chile: 2018 church crisis — Karadima defrocked + abuse + financial opacity + Vatican intervention
Chile (19.5M inhabitants, capital Santiago) experienced in **2018 the largest Catholic Church crisis in its history**, centered on the **Fernando Karadima** case (influential priest of the El Bosque parish in Providencia, trainer of bishops) — convicted by the Vatican in 2011 for sexual abuse of minors, and **expelled from the priesthood (laicized) by Pope Francis in September 2018**. The crisis escalated when Pope Francis, during his visit to Chile in January 2018, initially defended Bishop **Juan Barros** (Karadima's protégé, accused of cover-up) — then retracted after investigator Charles Scicluna's report, and in an unprecedented action, **all 34 Chilean bishops presented their collective resignation in May 2018** (Francis accepted 7+). Although the Karadima case is primarily about sexual abuse, it generated **scrutiny of the financial opacity of the Chilean Church**: investigations into the management of parish funds, compensation to victims (the Chilean State + the Church faced civil lawsuits, the Chilean Supreme Court ordered the Archdiocese of Santiago to compensate victims with ~$300K+ in 2019, the first ruling of this type), opacity of congregation finances (Legionaries of Christ, Marists, etc. also faced cases), and the relationship between Chilean economic elite and the Church. The case is relevant for AML/transparency in the context of **financial opacity of religious institutions** (parallel to the Vatican Becciu case aml-vatican-becciu-2023). The Chilean financial sector is supervised by the Central Bank of Chile (BCCh) + CMF (Financial Market Commission) + UAF (Financial Analysis Unit). Chile is one of Latin America's most compliant countries (#1 CPI LAC tied with Uruguay). Chile is a GAFILAT member.
September 13, 2023 CL confirmed
Chile: UF 1,250 (~$45M CLP) from CMF to 6 entities in Sep 2023 over failure to provide AML case info
Chile's Financial Market Commission (CMF) imposed in September 2023 combined fines of UF 1,250 (~CLP 45 million, ~$50,000) on six financial entities: Banco de Chile (UF 200), BCI (UF 300), BancoEstado (UF 450), Scotiabank (UF 100), Banco Security (UF 100), and COOPEUCH credit union (UF 100). The regulator described as 'serious' the violations of failing to fully and timely provide the Public Prosecutor's Office with customer banking records required for criminal investigations on money laundering, fraud against the State, and bribery. Complementarily, in 2023 Chile's Financial Analysis Unit (UAF) executed 66 sanctioning processes for failure to report suspicious operations, with 53 institutions fined a total of UF 4,155 (~CLP $159M). Santander Chile and Banco de Chile received the legal ceiling of UF 800 each over the Verde Austral/Pacogate case, related to the Carabineros fraud scandal.
December 31, 2024 TD confirmed
Chad: BEAC supervises Chad as CEMAC member — Idriss Déby legacy + Mahamat Déby junta 2021
Chad is a member of the Communauté Économique et Monétaire de l'Afrique Centrale (CEMAC, 6 countries), supervised by BEAC (Banque des États de l'Afrique Centrale, case aml-beac-cemac-2024 in this tracker) and the Agence Nationale d'Investigation Financière (ANIF) Chadian. After President Idriss Déby's death on April 20, 2021 (killed by FACT rebels in the country's north), his son Mahamat Idriss Déby took power via military junta (Conseil Militaire de Transition CMT, not recognized by African Union). The Déby regime (1990-2021 Idriss, 2021-present Mahamat) has been the subject of US OFAC and EU designations on human rights issues (Hissène Habré case 1982-1990, former president convicted in Senegal for crimes against humanity in 2016 — first trial in Africa of a former head of state by another African nation). Specific Chadian AML risks: oil (Chad exports crude via Doba-Kribi pipeline to Cameroon), gold smuggling (Tibesti to Libya/Sudan/Niger), arms trafficking with Sudan (RSF-SAF civil war), Boko Haram in Lake Chad basin, refugees (Chad hosts 1.1M Sudanese refugees post-2023 — largest growth in Africa), political corruption. Chad is a GABAC member.
December 31, 2024 LK confirmed
Sri Lanka: CBSL tightens AML supervision — high risk due to economic crisis + remittances
The Central Bank of Sri Lanka (CBSL) and the Financial Intelligence Unit (FIU Sri Lanka) intensified AML/CFT inspections on the banking sector during 2024 under the framework of the Financial Transactions Reporting Act 2006, amended by the Mutual Assistance in Criminal Matters Act and the Convention on the Suppression of Terrorist Financing Act. Sri Lanka has lived since 2022 through one of the worst economic crises in its history (sovereign default on $51B external debt, IMF restructuring since 2023), which has increased AML pressure due to: undocumented flows from Sri Lankan diaspora (especially Tamil in UK, Canada and Australia), Hawala informal exposure, terrorism financing risks associated with the Easter 2019 attacks, and political corruption associated with the Rajapaksa family (US/EU designations against key figures). The Sri Lankan banking sector is dominated by: Bank of Ceylon (state), People's Bank (state), Commercial Bank of Ceylon, Hatton National Bank, Sampath Bank. Sri Lanka is an APG member. Fiscal crisis and rupee (LKR) devaluation have been accompanied by strict capital controls.
December 31, 2024 OM confirmed
Oman: CBO tightens AML supervision under Royal Decree 30/2016
The Central Bank of Oman (CBO) and the National Center for Financial Information (NCFI) intensified AML/CFT inspections on the banking sector during 2024, under the framework of Royal Decree 30/2016 on Prevention of Money Laundering and Terrorism Financing. Oman is a MENAFATF member and has maintained a positive technical compliance profile in recent evaluations, although, like its Gulf peers (Bahrain, Qatar, pre-2024 UAE), it does not publish individual sanction amounts with the transparency of UK FCA or NYDFS. CBO Circular BM 1140 (2017) on AML details specific obligations for commercial banks, exchange houses and money transfer companies. The country occupies a strategic position as a financial hub between the Gulf, East Africa and the Indian subcontinent.
December 31, 2024 KW confirmed
Kuwait: CBK tightens AML enforcement under Law 106/2013
The Central Bank of Kuwait (CBK) and the Kuwait Financial Intelligence Unit (KuFIU) intensified AML/CFT inspections on the banking sector during 2024, under the framework of Law 106/2013 on Combating Money Laundering and Terrorism Financing, amended by Law 5/2016 to align with FATF recommendations. Kuwait was evaluated by MENAFATF in 2024 with an acceptable technical compliance profile. Like its Gulf peers, the CBK does not publish individual sanction amounts (in contrast to the transparency of UK FCA or NYDFS). The Kuwaiti banking sector is concentrated in major local names: NBK (National Bank of Kuwait), KFH (Kuwait Finance House), Boubyan Bank and Burgan Bank, along with branches of foreign banks like HSBC and Citibank.
September 30, 2024 BH confirmed
Bahrain: CBB tightens AML sanctions in 2024 under Decree-Law 4/2001
The Central Bank of Bahrain (CBB) and the Financial Intelligence Directorate increased inspections and administrative sanctions on the banking sector during 2024, under the framework of Decree-Law 4/2001 on Prevention of Money Laundering (amended by Decree-Law 25/2013 to include terrorism financing). Bahrain has one of the most sophisticated AML frameworks in the Gulf, complemented by the 2014 Cybercrime Law and Tasees Law (joint stock companies). The CBB does not publish individual sanction amounts (pattern similar to Saudi SAMA, Qatari QCB, Moroccan BAM and Egyptian CBE), although its Rulebook Module FC (Financial Crime) details KYC and reporting obligations. Bahrain is a founding member of MENAFATF (Middle East and North Africa Financial Action Task Force) since 2004 and has been positively evaluated in terms of technical compliance, though with observations on enforcement effectiveness.
December 31, 2024 KY confirmed
Cayman: CIMA tightens AML — $4T offshore center + 85% world hedge funds + ex-FATF grey list 2023
The **Cayman Islands Monetary Authority (CIMA)** and the Financial Crimes Investigation Department (FCID) supervise the Cayman Islands banking and hedge fund sector under the framework of the Anti-Money Laundering Regulations 2018 (amended in 2020, 2022 and 2024). Cayman Islands (British Overseas Territory, 70,000 resident inhabitants but 100,000+ registered companies, capital George Town), is **one of the world's largest offshore financial centers**: **$4 TRILLION in offshore assets** (figure that exceeds the GDP of many G7 countries), **~85% of world's hedge funds are domiciled in Cayman** (CIMA data), 200+ licensed banks (including Goldman Sachs Cayman, JPMorgan Cayman, Citibank Cayman). Cayman exited the **FATF grey list in October 2023** after inclusion in February 2021 (29 months in monitoring) — this was considered a successful enhanced monitoring exit. Specific Cayman AML risks: **massive complexity of offshore structures** (Cayman LLCs, Exempted Companies, Segregated Portfolio Companies, Limited Partnerships), **historical beneficial ownership opacity** (limited public register, ECJ 2022 controversy), **global tax avoidance** (Apple's $250B Ireland-Cayman structure post-double Irish), **Russian sanctioned oligarchs** (Cayman has frozen assets multiple post-2022), **Carry/PE/Hedge fund vehicles** opaque, controversial role in **EU Tax Haven Blacklist** (Cayman included 2020, removed 2024). The sector is dominated by: Cayman National Bank, Butterfield Bank Cayman, RBC Royal Bank Cayman, HSBC Bank Cayman, Scotiabank Cayman. Cayman is a CFATF member.
October 27, 2023 KY confirmed
Cayman Islands: FATF grey list exit Oct 2023 — largest Caribbean offshore
On October 27, 2023, FATF removed Cayman Islands from the grey list ('Jurisdictions under Increased Monitoring') along with Albania, Jordan and Panama. Cayman was originally included in February 2021 (24 + 8 months on grey list — relatively short for an offshore jurisdiction). Cayman Islands is the largest Caribbean offshore financial center and one of the largest in the world: registers ~85% of global hedge funds (~10,000 funds), ~25,000 active companies, $4.5 trillion in offshore banking assets. The Cayman Islands Monetary Authority (CIMA) is the financial supervisor, regulating banks, trusts, hedge funds, insurance, mutual funds. The Financial Reporting Authority (FRA) is the Cayman FIU. The legal framework is the Proceeds of Crime Act 2008 + Anti-Money Laundering Regulations 2020 (consolidated, amended in 2024). Post-grey list reforms included: central beneficial ownership registry (operational since 2023, accessible to authorized entities), active prosecution of AML cases (including the historic Cayman National Bank Isle of Man hack 2019 case with 2.2 TB data leak), risk-based supervision of DNFBPs (legal, accountants), enforcement against unlicensed crypto exchanges. Cayman is a CFATF member.
December 31, 2024 CV confirmed
Cape Verde: BCV tightens AML — economy dependent on Sal/Boa Vista tourism + diaspora remittances
The **Banco de Cabo Verde (BCV)** and the Financial Information Unit (UIF) supervise the Cape Verdean banking sector under the framework of Law 38/VIII/2013 on prevention and repression of money laundering (amended in 2017, 2019 and 2023). Cape Verde, Atlantic archipelago of 10 islands with 600,000 inhabitants, operates the Cape Verdean escudo (CVE) pegged to the euro since 1998. Specific AML risks: **intensive tourism in Sal and Boa Vista** ($600M annually, 25% GDP — attractive for Portuguese, Brazilian, Italian PEPs investment), fishing and tuna (Cape Verde is strategically located in the central Atlantic), drug trafficking (Latin America → Europe cocaine corridor), Cape Verdean diaspora remittances (1M in Portugal, US, Netherlands, Italy — more Cape Verdeans live abroad than in the country). The banking sector is concentrated in: Banco Comercial do Atlântico (BCA, Portuguese subsidiary), Caixa Económica de Cabo Verde, Banco Interatlântico (Portuguese Caixa Geral Depósitos subsidiary), BAI Cabo Verde (Angolan subsidiary). Cape Verde is a GIABA member and obtained favorable evaluation post-2018. Real estate boom in Sal and Mindelo (Sao Vicente).
December 31, 2024 BI confirmed
Burundi: BRB + CRF tighten AML — Pierre Nkurunziza dictatorship 2005-2020 + Évariste Ndayishimiye 2020+
The **Banque de la République du Burundi (BRB)** and the Cellule de Renseignement Financier (CRF) supervise the Burundi banking sector under the framework of Law 1/02/2015 on AML/CFT (amended in 2018 and 2023). Burundi (12.5M inhabitants), one of the world's poorest countries (GDP per capita $280, last in global IMF ranking 2024), lived under the authoritarian regime of **Pierre Nkurunziza** (CNDD-FDD, 2005-2020, died in office) followed by **Évariste Ndayishimiye** (same party, since 2020). The Nkurunziza regime attempted an unconstitutional third term in April 2015, unleashing violent protests and the exit of 400,000+ refugees to Tanzania, Rwanda and DRC. The EU and US imposed sanctions on 7 Burundi officials under Magnitsky Acts. Specific Burundi AML risks: **coffee and tea** (90%+ of exports, state-controlled sectors), **gold** from DRC border (Burundi exported $300M+ in gold 2018-2021, although its domestic production is minimal — clear smuggling indicator), **Hutu-Tutsi ethnic tensions** (legacy of the 1993-2005 civil war and the 1972 genocide that killed 200,000 Hutus + tensions from the neighboring 1994 Rwandan genocide), **Imbonerakure** (CNDD-FDD youth organization accused of human rights violations by UN), $107M IMF agreement 2023 structural reforms. The banking sector is concentrated in: Bancobu (Banque Commerciale du Burundi), Interbank Burundi, BGF Bank Burundi (Belgian-Burundi), CRDB Bank Burundi (Tanzanian subsidiary). Burundi is an ESAAMLG member.
October 24, 2025 BF confirmed
Burkina Faso: FATF removes from grey list in Oct 2025 — military junta in power since 2022
On October 24, 2025, FATF removed Burkina Faso from the grey list along with Mozambique, Nigeria and South Africa. Burkina Faso was originally added in February 2021 — 4 years and 8 months on the list. It is one of the 8 countries of the Union Économique et Monétaire Ouest Africaine (UEMOA), supervised by BCEAO (case aml-bceao-senegal-2024 in this tracker) and Burkinabe CENTIF. Burkina Faso has lived since 2022 under a military junta (September 2022 coup that overthrew President Damiba, military government led by Ibrahim Traoré). Burkinabe specific AML risks are extraordinary: growing jihadist threat (JNIM Al-Qaeda and EIGS Islamic State — more than 60% of territory out of government control in 2024), illegal gold mining (Burkina Faso is the fourth African gold producer, with massive artisanal extraction), withdrawal from France (2023 military operation) and new alliances with Russia (Wagner/Africa Corps) and Mali/Niger (Sahel Alliance AES). The banking sector is dominated by African subsidiaries (Ecobank, BOA Banque Atlantique, Coris Bank) and French (Société Générale). Burkina Faso is a GIABA member.
December 31, 2024 BN confirmed
Brunei: BDCB tightens AML — absolute monarchy Sultan Hassanal Bolkiah + Brunei Investment Agency
The **Brunei Darussalam Central Bank (BDCB)** and the Financial Intelligence Unit supervise the Brunei banking sector under the framework of the Anti-Money Laundering Order 2000 (amended in 2008, 2013 and 2023). Brunei (445,000 inhabitants, $34,000 GDP per capita — one of the highest in Asia), **is an absolute Islamic monarchy under Sultan Hassanal Bolkiah** (on the throne since October 1967 — the longest-serving monarch in the world). The country operates an economy dependent on oil (Brunei Shell Petroleum, joint venture with Royal Dutch Shell) and natural gas (Brunei LNG). The **Brunei Investment Agency (BIA)** is one of the world's most opaque SWFs (~$170 billion estimated in AUM, without public disclosure). Specific Brunei AML risks: **absolute monarchic regime** (Sharia formally introduced in 2014, death penalty for adultery/homosexuality — moratorium applied after international pressure 2019), **Sultan's personal ownership** of massive portions of the country's economy, **Jefri Bolkiah case** (prince brother of the Sultan, former Finance Minister 1986-1997, accused of diverting $14.8 billion from BIA — massive civil case settled out of court 2000), luxury real estate in Singapore and UK (Dorchester Hotel London owned by Sultan via Brunei Investment Agency, controversial post-Sharia 2019 boycott). The banking sector is dominated by: Baiduri Bank, Bank Islam Brunei Darussalam (BIBD), Standard Chartered Brunei, HSBC Brunei (closed 2017). Brunei is an APG member.
September 5, 2025 BR confirmed
Brazil: operations against organized-crime laundering via fintech/Pix (R$ 50bn, 2025)
Following the police operations Carbono Oculto, Quasar and Tank —reaching over R$ 50 billion in suspicious organized-crime movements through fintechs—, Brazil's Central Bank imposed precautionary measures in September 2025: an R$ 15,000 limit on Pix and TED transfers by unauthorized payment institutions, and an earlier authorization deadline. It illustrates the instant-payments laundering front and the regulatory response, rather than a fine.
December 31, 2024 UG confirmed
Uganda: BOU + FIA tighten AML supervision after FATF grey list exit in Feb 2024 — gold flows + conflict region
The Bank of Uganda (BOU) and the Financial Intelligence Authority (FIA Uganda) intensified AML/CFT inspections on the banking sector during 2024, after Uganda's exit from the FATF grey list in February 2024 (along with Barbados, Gibraltar, UAE, while Kenya and Namibia were added). Uganda was originally added in February 2020. The legal framework is the Anti-Money Laundering Act 2013, amended in 2017, 2020 and 2023 to align with FATF recommendations. Specific Ugandan AML risks include: illegal gold via Sudan-DRC (Uganda is the fourth African gold importer post-DRC looting, with undocumented values estimated at $2 billion annually), persistent conflict with ADF (Allied Democratic Forces, ISIS-DRC affiliate) on the DRC border, Sudanese and DRC refugees (Uganda hosts 1.7M refugees — the largest number in Africa), political corruption associated with the Museveni government (since 1986), ivory and wildlife trafficking. The Ugandan banking sector is dominated by: Stanbic Bank Uganda (Standard Bank Group), Centenary Bank, Absa Uganda (South African), DFCU Bank, Bank of Baroda Uganda. Uganda is an ESAAMLG member.
December 31, 2024 BW confirmed
Botswana: BoB + FIA tighten AML — world diamond hub + post-FATF grey list 2018-2021 + stable democracy
The **Bank of Botswana (BoB)** and the Financial Intelligence Agency (FIA) supervise the Botswanan banking sector under the framework of the Financial Intelligence Act 2009 (amended in 2018 and 2022 to align with FATF). Botswana **exited the FATF grey list in February 2021** (entered in October 2018) after 28 months, considered a relatively quick exit. Botswana, with 2.7M inhabitants, is **one of the few African countries with continuous democracy (BDP in power 1966-2024 but free elections + peaceful alternation 2024 with Duma Boko's UDC)** and **Upper Middle Income** status according to World Bank ($8,300 GDP per capita). Botswana is **the world's largest diamond producer by value** (Jwaneng, Orapa, Damtshaa mines of Debswana — 50/50 joint venture between government and De Beers). Specific Botswanan AML risks: **diamonds** ($4-5 billion annual exports, vulnerable to blood diamonds from Zimbabwe, DRC, Angola), corridor with South Africa (largest trading partner), **Khama dynasty case** (Ian Khama, former President 2008-2018, sanctioned by Mokgweetsi Masisi administration 2018-2024 — case of political comeback with UDC 2024), Gaborone and Maun real estate boom (Okavango Delta tourism). The banking sector is concentrated in: First National Bank Botswana (FNB, South African FirstRand subsidiary), Standard Chartered Botswana, Absa Botswana (South African subsidiary), Stanbic Bank Botswana (Standard Bank Group). Botswana is an ESAAMLG member.
December 31, 2024 TZ confirmed
Tanzania: BOT + FIU tighten AML supervision — high risk from gold flows and wildlife trafficking
The Bank of Tanzania (BOT) and the Financial Intelligence Unit (FIU) intensified AML/CFT inspections on the banking sector during 2024, under the framework of the Anti-Money Laundering Act 2006 (amended in 2019 to integrate FATF recommendations). Tanzania is supervised by ESAAMLG and faces specific elevated risks from: illicit gold flows (Tanzania is the world's fourth producer), wildlife trafficking (elephant ivory, rhino horn to Asia), illegal fishing, and political corruption associated with the CCM party dominant since 1961. The BOT does not publish individual sanction amounts with the transparency of UK FCA. The Tanzanian banking sector is concentrated in: CRDB Bank, NMB Bank, NBC Bank, Stanbic Bank Tanzania (Standard Bank Group), Exim Bank. Tanzania has been subject to critical evaluations from Global Witness on gold laundering and Transparency International on corruption. Cooperation with SAFI (Southern African Financial Intelligence Network) has enabled cross-border investigations with Kenya, Zambia and Mozambique.
December 31, 2024 BA confirmed
Bosnia and Herzegovina: FBA and FIU SIPA tighten AML — fragmented banking system post-Dayton
Bosnia and Herzegovina's banking system is fragmented by the 1995 Dayton Peace Agreement, which divided the country into two entities: the Federation of Bosnia and Herzegovina (FBiH) supervised by the Federal Banking Agency (FBA), and Republika Srpska (RS) supervised by the Banking Agency of RS (ABRS). The state level maintains the Central Bank of Bosnia and Herzegovina (CBBH), responsible for currency board (KM convertible mark) and the State Investigation and Protection Agency (SIPA) — Bosnian FIU based in Sarajevo. The legal framework is the Law on the Prevention of Money Laundering and Financing of Terrorist Activities 2014 (amended in 2020 and 2023 to align with European AMLD). BiH has been an EU candidate since December 2022. Bosnian specific AML risks include: systemic political corruption (OFAC designations against Milorad Dodik, RS president, and other Serbo-Bosnian officials), conflict with Russian sanctions (RS maintains strong ties with Russia post-2022), legacy arms trafficking from the 1992-1995 war, diaspora returnee real estate, smuggling at the border with Croatia/Serbia/Montenegro. The banking sector is dominated by Austrian subsidiaries (Raiffeisen Bank, Unicredit Bank, Sparkasse), Turkish (Ziraat Bank Bosnia), Slovenian (NLB Banka) and Russian (Sberbank, frozen bank post-2022). BiH is a MONEYVAL member.
December 31, 2024 BO confirmed
Bolivia: BCB + ASFI tighten AML — 2023-2024 dollar crisis + Morales legacy + Arce government
The Central Bank of Bolivia (BCB), the Authority of Supervision of the Financial System (ASFI) and the Financial Investigations Unit (UIF) supervise the Bolivian financial sector under the framework of Law 262/2012 on prevention of legitimization of illicit gains (amended in 2017 and 2023). Bolivia (12.3M inhabitants, constitutional capital Sucre + government seat La Paz) has lived the Evo Morales era (MAS, President 2006-2019, removed after controversial reelection attempt — Bolivia has 'lawfare' allegations vs Morales accused by OAS of fraud, Morales accuses of coup), interim Áñez (2019-2020), and Luis Arce (MAS, President since November 2020). In 2023-2024, Bolivia faced the worst currency crisis since 1985: BCB international reserves fell from $15 billion (2014 peak) to $1.7 billion (2024), causing chronic dollar shortage + parallel market premium (BOB 14:1 USD official vs 16-18:1 informal). The hydrocarbons sector (natural gas to Brazil/Argentina) has dramatically collapsed (from $6 billion revenues 2014 to $2 billion 2023). Specific Bolivian AML risks: cocaine corridor (Bolivia is 3rd world cocaine producer, mainly Chapare and Yungas regions), illegal gold (Bolivia largest regional exporter, $3 billion annual documented including $1+ billion to UAE), political corruption (Quiborax case 2018-present, Spain Audiencia Nacional rulings vs MAS former ministers for $14M bribes); recurrent political blockades. The banking sector is concentrated in: Banco Mercantil Santa Cruz, Banco Nacional de Bolivia (BNB), Banco BISA, Banco Ganadero, Banco Solidario (banking for microenterprises). Bolivia is a GAFILAT member.
December 31, 2024 GH confirmed
Ghana: BoG tightens AML supervision after FATF grey list exit in 2021 — gold + cocoa supply chain
The Bank of Ghana (BoG) and the Financial Intelligence Centre (FIC) Ghana intensified AML/CFT inspections on the banking sector during 2024 under the framework of the Anti-Money Laundering Act 2020 (Act 1044), which replaced the AMLA 2008 (Act 749) to align with FATF recommendations. Ghana was added to the FATF grey list in October 2018 and exited in June 2021 after implementing the action plan. Specific Ghanaian AML risks include: galamsey (illegal gold mining) and undocumented gold exports to Dubai and India (Ghana is the world's sixth gold producer), cocoa supply chain (Ghana is the world's second producer), political corruption around NPP/NDC, and position as ECOWAS regional hub for West African financial flows. The Ghanaian banking sector is dominated by: GCB Bank (state), Ecobank Ghana (Togolese pan-African group subsidiary), Standard Chartered Ghana, Stanbic Bank Ghana (Standard Bank Group), Absa Ghana (South African subsidiary, ex-Barclays). Ghana is a founding member of GIABA (Inter-Governmental Action Group against Money Laundering in West Africa). Ghana's economic crisis 2022-2023 with debt restructuring and sovereign default has intensified AML risks.
December 23, 2024 US confirmed
US: OCC issues cease-and-desist against Bank of America in Dec 2024 over BSA/AML failures
The Office of the Comptroller of the Currency (OCC) issued on December 23, 2024 a cease-and-desist order against Bank of America, the second-largest US bank by assets. The order identified Bank Secrecy Act (BSA) violations, 'unsafe' practices in AML and sanctions programs, failures to timely file Suspicious Activity Reports (SARs) and to correct previously identified Customer Due Diligence (CDD) process deficiencies. The OCC also found defects in internal controls, governance, independent testing and training. Bank of America did not admit or deny the charges and did not receive a monetary penalty, but is required to hire an independent consultant, conduct lookback reviews to ensure adequate reporting of all suspicious activity, appoint a compliance committee and a dedicated BSA officer. It is one of the most serious OCC cases of 2024, paralleling that of TD Bank ($3.09B with monetary fine) and reflects the general OCC tightening during 2024 on major US banks.
December 31, 2024 DZ confirmed
Algeria: Banque d'Algérie tightens AML supervision — high risk hawala + Sahel cross-border
The Banque d'Algérie and the Cellule de Traitement du Renseignement Financier (CTRF) — Algerian FIU — intensified AML/CFT inspections on the banking sector during 2024 under the framework of Law 05-01 of February 6, 2005 on prevention and fight against money laundering, amended by Law 12-02 of February 13, 2012 and subsequent reforms to align with FATF recommendations. Specific Algerian AML risks include: massive informal hawala (Algiers' square du port concentrates unregulated currency exchangers estimated at $4 billion annually according to World Bank), cross-border corridor with Tunisia, Libya, Western Sahara and Sahel (Mali, Niger, Mauritania); explosive cargoes from hydrocarbon extraction linked to military oligarchs, post-Hirak (2019-2021 popular movement) incomplete anti-corruption reforms, and residual terrorist risks from AQMI and affiliates. The Algerian banking sector is concentrated in state banks: BNA (Banque Nationale d'Algérie), BEA (Banque Extérieure d'Algérie), CPA (Crédit Populaire d'Algérie), BDL (Banque de Développement Local), BADR (Banque de l'Agriculture et du Développement Rural). Only ~30% of the banking sector is open to foreign private banking (Société Générale Algérie, BNP Paribas El Djazair). Algeria is a MENAFATF member.
December 31, 2024 BT confirmed
Bhutan: RMA + FID tighten AML — only Himalayan Buddhist monarchy + GNH + hydropower to India
The **Royal Monetary Authority of Bhutan (RMA)** and the Financial Intelligence Department (FID) supervise the Bhutanese banking sector under the framework of the Anti Money Laundering and Combating the Financing of Terrorism Rules 2018 (amended in 2023). Bhutan (780,000 inhabitants, capital Thimphu) is the **world's only Mahayana Buddhist monarchy (Drukpa lineage)**, governed by King Jigme Khesar Namgyel Wangchuck (Druk Gyalpo, on the throne since 2008 after his father Jigme Singye Wangchuck's abdication who introduced the transition to constitutional monarchy). Bhutan is famous for the **Gross National Happiness (GNH)** index (created 1972) as an alternative metric to GDP. The country adopted the **ngultrum (BTN) pegged 1:1 to the Indian rupee (INR)** and still has no diplomatic relations with the US or China (no Beijing embassy in Thimphu, delicate geopolitical situation between India and China — Doklam dispute 2017). Specific Bhutanese AML risks: **hydropower to India** (95% of Bhutanese exports are hydropower — Mangdechhu, Tala, Chukha projects), luxury real estate associated with Druk Air tourism (Bhutan limits tourism via Sustainable Development Fee SDF $100/day), exposure to Tibet/India corridor, Lhotshampa refugees (1990s expelled from Bhutan to Nepal — pending diplomatic issue). The banking sector is concentrated in: Bank of Bhutan, Bhutan National Bank, Druk PNB Bank, T Bank. Bhutan is an APG member.
December 31, 2024 BZ confirmed
Belize: CBB tightens AML — offshore IBC reform 2019 + Maya region + small economy ($2B GDP)
The Central Bank of Belize (CBB) and the Financial Intelligence Unit (FIU Belize) supervise the Belizean banking sector under the framework of the Money Laundering and Terrorism (Prevention) Act 2008 (extensively amended in 2014, 2019, 2023). Belize (400,000 inhabitants, former British Honduras until 1981 independence, capital Belmopan but largest city Belize City), operates the Belize dollar (BZD) pegged 2:1 to USD since 1976. The country is one of the smallest in Latin America with economy dependent on tourism (Mayan ruins Caracol + Lamanai, Great Blue Hole UNESCO + the world's second largest barrier reef after Australia), fishing, and offshore services. **In 2019, Belize implemented the International Business Companies (IBCs) regime reform** — Belizean offshore corporate structures (Belize had 100,000+ registered IBCs) — aligning with FATF + Economic Substance Requirements to avoid tax haven blacklisting. Specific Belizean AML risks: IBC offshore legacy (post-2019 reform reduced), drug corridor (Belize is between Guatemala + Mexico, larger than the Honduras-Mexico border), Ambergris Caye (San Pedro) real estate boom, Caribbean Sea cocaine, historical tax avoidance via Belize trusts. The banking sector is concentrated in: Belize Bank, Atlantic Bank, Heritage Bank Belize, Caye Bank International. Belize is a CFATF member.
March 23, 2022 BY confirmed
Belarus: Belarusian banks sanctioned by OFAC, EU, UK post Russia invasion Feb 2022 — SWIFT severed
After Belarus's active support of Russia's invasion of Ukraine in February 2022 (Belarusian territory used as launching platform by Russian troops), coordinated international sanctions were applied to the Belarusian banking sector from March 23, 2022. OFAC designated Belarusbank, Belagroprombank, Bank Dabrabyt, Development Bank of the Republic of Belarus (BRRB), and others under Executive Order 14038. The EU included those banks in its 6th sanctions package (June 2022) and severed them from the SWIFT system (March and June 2022 resolutions). The UK, Canada, Switzerland, Japan and Australia followed parallel actions. The National Bank of the Republic of Belarus (NBRB), supervisor of the Belarusian banking system under the Lukashenko regime, has maintained strict currency controls and AML/CFT enforcement under the Law on Measures to Prevent the Legalisation of Proceeds from Illegal Activities and the Financing of Terrorist Activity 165-Z (2008, amended 2018). Sanctions against Belarus have caused: progressive financial isolation, BYR devaluation, strict capital controls, exit from the US Treasury Sanctions Mechanism (Pavel Topuzidis and other oligarchs designated), and greater dependence on the Russian banking system (sanctioned in parallel). Belarus operates under the authoritarian regime of Aleksandr Lukashenko (in power since 1994) and has been heavily criticized by OSCE, UN and EU for fraudulent elections (August 2020) and opposition repression.
December 31, 2024 CM confirmed
Cameroon/CEMAC: BEAC supervises 6 Central African countries — high risk oil, gold, ebony
The Banque des États de l'Afrique Centrale (BEAC), central bank of the Communauté Économique et Monétaire de l'Afrique Centrale (CEMAC, 6 countries: Cameroon, Gabon, Equatorial Guinea, Republic of Congo, Chad and Central African Republic), supervises the regional banking sector. The Agence Nationale d'Investigation Financière (ANIF) of Cameroon — Cameroonian FIU — coordinates AML/CFT inspections under the framework of CEMAC Regulation 01/CEMAC/UMAC/CM of 2016, aligned with FATF recommendations. Specific AML risks in the CEMAC region are extraordinarily elevated: economies highly dependent on oil (Cameroon, Gabon, Equatorial Guinea — Obiang case in Riggs Bank 2004, already documented in this tracker), illegal gold and diamonds from CAR and Chad, ebony and tropical hardwood trafficking, systemic political corruption (Bongo family in Gabon, Obiang in Equatorial Guinea), persistent conflict with Boko Haram in northern Cameroon and CAR. The regional banking sector is dominated by subsidiaries of French banks (Société Générale, Crédit Agricole) and African banks (Ecobank, Gabonese BGFI Bank, Nigerian UBA). The supervisor is a GABAC member (Action Group against Money Laundering in Central Africa). Individual sanctions are not published with the transparency of FCA or NYDFS.
December 31, 2024 TN confirmed
Tunisia: BCT + CTAF tighten AML supervision after FATF grey list exit in Oct 2019
Tunisia's Central Bank (BCT) and the Commission Tunisienne des Analyses Financières (CTAF) — Tunisian FIU — intensified AML/CFT inspections during 2024 under the framework of Organic Law 26-2015 on combating terrorism and money laundering (amended in 2017 and 2019 to align with FATF recommendations). Tunisia was added to the FATF grey list in November 2017 and exited in October 2019 after implementing the action plan. The EU maintained Tunisia on its list of high-risk third countries between 2018-2020 before removing it. Specific Tunisian AML risks include: Mediterranean drug corridor (cannabis to Italy, cocaine from West Africa), ISIS/Daesh combat returnees (more than 6,000 Tunisians were foreign fighters in Syria-Iraq according to UN ICCT), post-Ben Ali political corruption, informal hawala to post-2011 Libya (Libya chaos has increased cross-border flows). The Tunisian banking sector is dominated by: STB (Société Tunisienne de Banque, state), BIAT (Banque Internationale Arabe de Tunisie), BNA (Banque Nationale Agricole), Attijari Bank Tunisie (Moroccan Attijariwafa subsidiary), UIB (Société Générale subsidiary). Tunisia is a MENAFATF member.
July 8, 2024 SN confirmed
Senegal: WAMU Banking Commission (BCEAO) sanctions a Senegalese bank + its general manager in Jul 2024
On July 8, 2024, the WAMU Banking Commission (supervisor of the 8 UEMOA countries under the BCEAO based in Dakar) issued a disciplinary reprimand against a Senegal-based bank and a disciplinary sanction against its general manager. The action identified failures in governance, risk management, and specific AML/CFT measures. It is one of the BCEAO's first visible cases against a Senegalese bank with simultaneous sanction on the individual executive, aligning enforcement with Western practices (NYDFS, FCA). The regulatory framework is UEMOA's 2008 Banking Law and the AML/CFT Law (Articles 112+) which provides for administrative, disciplinary and criminal sanctions with penalties of 1 month to 2 years prison for leaking confidential information. Senegal operates under CFA franc (XOF) shared with Côte d'Ivoire, Mali, Burkina Faso, Benin, Niger, Togo and Guinea-Bissau. CENTIF (Cellule Nationale de Traitement de l'Information Financière) — Senegalese FIU — referred 37 money laundering cases to the Financial Prosecutor in 2025, primarily for fraud (60%), forgery, tax evasion and corruption.
December 31, 2024 CD confirmed
DRC: BCC + CENAREF tighten AML supervision — high risk cobalt + illegal mining
The Banque Centrale du Congo (BCC) and the Cellule Nationale des Renseignements Financiers (CENAREF) — FIU of the Democratic Republic of the Congo — intensified AML/CFT inspections during 2024 under the framework of Law 04/016 of 2004 on combating money laundering and terrorism financing, complemented by legal reforms in 2024. The DRC faces extraordinarily complex AML risks: massive illegal mining of cobalt (60% of world reserves needed for lithium batteries), gold, coltan, diamonds and cassiterite; armed groups controlling mining areas (M23, ADF, various maï-maï militias); 'Chinese economic groups' (entities linked to China's BRI) operate unregulated extraction; persistent conflict with Rwanda. CENAREF is a member of GABAC (Action Group against Money Laundering in Central Africa). BCC maintains a relatively recent AML framework. The Congolese banking sector is concentrated in: Rawbank, Equity BCDC (Kenya's Equity Group), Trust Merchant Bank, Standard Bank DRC. EITI (Extractive Industries Transparency Initiative) has published reports documenting the opacity of the mineral supply chain.
February 13, 2023 ES confirmed
Spain: BBVA-Villarejo corporate espionage — BBVA convicted 2025 + Francisco González charged
The **BBVA-Villarejo** case is one of Spain's biggest corporate espionage scandals. Between **2004 and 2017**, **BBVA** (one of Spain's two largest banks) hired former police commissioner **José Manuel Villarejo** (central figure of the Spanish 'state sewer', arrested in 2017 with a massive archive of illegal recordings) and his company Cenyt to conduct **illegal espionage** — including spying on politicians, journalists, businessmen and rivals, particularly during the **attempt by Sacyr (construction company) to take control of BBVA in 2004** with support from government sectors. The scheme involved millions in payments from BBVA to Villarejo (~€10M+) for illegal intelligence services, wiretapping, and surveillance. The **Audiencia Nacional** investigated the case for years (a separate piece of the 'Tándem' macro-case against Villarejo). In **2025, the Audiencia Nacional convicted BBVA as a legal person** (corporate criminal liability) + several former executives for bribery and revelation of secrets. **Francisco González** (BBVA chairman 2000-2018) was **charged** — one of the few cases of a former chairman of a large European bank criminally prosecuted. The case is referenced as **the paradigmatic example of corporate espionage + the criminal liability of legal persons in Spain** (introduced into the Criminal Code in 2010). It generated a massive reputational crisis for BBVA. Spain is a FATF + MONEYVAL founding member. The sector is supervised by the Bank of Spain + CNMV + SEPBLAC (FIU).
November 27, 2020 LB confirmed
Lebanon: Bartlett v SGBL lawsuit in US accuses 12 Lebanese banks of financing Hezbollah (2020+)
On November 27, 2020, the federal lawsuit Bartlett v. Société Générale de Banque au Liban S.A.L. (SGBL) et al was filed in the Eastern District of New York by families of US soldiers killed in Iraq, accusing 12 major Lebanese banks of providing financial services to Hezbollah that facilitated 'the flow of US dollar-denominated funds Hezbollah used to bankroll its operations in Iraq', which killed Americans. The defendant banks: Société Générale de Banque au Liban (SGBL), Fransabank, BLOM Bank, MEAB Bank, Byblos Bank, Bank Audi, Lebanon & Gulf Bank (LGB), Banque Libano-Française (BLF), Bank of Beirut, Bank of Beirut and the Arab Countries (BBAC), Jammal Trust Bank (JTB) — later OFAC designated in 2019 and dissolved — and Fenicia Bank. The specific allegation: the banks 'knowingly assisted Hezbollah in its illicit activities, including money laundering, sanctions evasion, arms export violations, drug trafficking, kidnapping for ransom, and terrorism financing'. The US Supreme Court has confirmed that the banks can be subject to civil liability under the Anti-Terrorism Act. Magistrate Judge Taryn Merkl was awaiting receipt of bank records from the Lebanese government by April 2024. The lawsuit remains pending in 2026. Historical connection: Lebanese Canadian Bank (LCB) was designated FinCEN 311 in 2011 for financing Hezbollah, and SGBL acquired LCB after its dissolution.
October 18, 2019 CO confirmed
Colombia: COP 500M to Grupo Aval's Banco de Occidente in 2019 over AML information delays
The Colombian Financial Superintendency (SFC) sanctioned Banco de Occidente, of Grupo Aval, with 500 million Colombian pesos (~$150,000) in October 2019, confirmed on appeal in October 2020 via Resolution 0899. The sanction was for delays in providing information to the Financial Information and Analysis Unit (UIAF) of the Treasury Ministry and the Attorney General's Office. It is part of SFC's oversight of the Money Laundering and Terrorism Financing Risk Management System (SARLAFT). Between 2017 and 2022, SFC and the Companies Superintendency imposed 98 sanctions for AML failures, totaling around 5.9 billion Colombian pesos (~$1.5M USD). Grupo Aval is one of Colombia's largest financial conglomerates (Banco de Bogotá, Banco de Occidente, Banco Popular, AV Villas).
December 31, 2024 BH confirmed
Bahrain: CBB tightens AML — Islamic banking hub GCC + Saudi Arabia near-border + 2011 Shia protests
The **Central Bank of Bahrain (CBB)** and the Financial Intelligence Directorate (FID) supervise the Bahraini banking sector under the framework of Legislative Decree 4/2001 on AML (amended in 2006, 2014, 2018 and 2022) and Crown Prince Sheikh Salman Decree 2009 on Counter Terrorism Financing. Bahrain (33-island archipelago, 1.8M inhabitants, $40 billion GDP) is **one of the world's largest Islamic banking hubs**: 100+ operational Islamic financial institutions, Bahrain Islamic Bank (BISB) the world's first Islamic bank (founded 1979), Al Salam Bank, ABC Islamic. The financial sector contributes 17% of GDP. Bahrain is connected to Saudi Arabia by the King Fahd Causeway (25 km, opened 1986) — millions of Saudis cross to Bahrain each week. Specific Bahraini AML risks: **2011 Shia protests** (February 15, 2011, part of Arab Spring) repressed with GCC Saudi military intervention (Operation Peninsula Shield Force), persistent sectarian tensions (70% Shia population vs Sunni Al Khalifa regime), Iran proximity (Persian Gulf zone), Qatar corridor (post-2017 GCC crisis with Qatar). The banking sector is concentrated in: Ahli United Bank, Arab Banking Corporation (ABC), National Bank of Bahrain (NBB), Bank ABC Islamic, Citibank Bahrain, HSBC Bahrain (one of the first HSBC branches in the world). Bahrain is a MENAFATF member.
December 31, 2024 BS confirmed
Bahamas: CBB tightens AML supervision post-FTX — historic tax haven exited FATF grey list 2020
The Central Bank of The Bahamas (CBB), the Securities Commission of The Bahamas (SCB) and the Compliance Commission intensified AML/CFT/CPF supervision during 2024, under the framework of the Anti-Money Laundering and Countering the Financing of Terrorism Regime 2018 (amended), with specific guidance on Administrative Monetary Penalties. Bahamas exited the FATF grey list in December 2020 after being included in October 2018 — only 26 months on the list, considered a notable success. The CFATF evaluation of November 2021 found 18 'not fully compliant' and 20 'largely compliant' of the 40 FATF recommendations. However, the November 2022 FTX collapse (headquartered in Nassau) revealed persistent weaknesses in the crypto licensing regime and virtual asset service providers (VASPs) supervision. Bahamas is historically one of the world's prominent tax havens: former Chilean dictator Augusto Pinochet used two Bahamian shell companies to launder ~$12M (case already in this tracker — Riggs Bank 2004), and a Bahamian offshore provider was accused of laundering $1+ billion. The banking sector is dominated by international subsidiaries (RBC, Scotiabank, CIBC FirstCaribbean) and local banks (Commonwealth Bank, Fidelity Bank Bahamas). More than 250 international banks operate in Bahamas with offshore licenses. Most recent PF NRA (National Risk Assessment): March 2026.
December 31, 2024 BO confirmed
Bolivia: ASFI + UIF tighten AML banking sector supervision in 2024 under Law 393/2013
Bolivia's Financial System Supervisory Authority (ASFI) and the Financial Investigations Unit (UIF, under the Ministry of Economy) intensified AML/CFT inspections on the banking sector during 2024, under the framework of Law 393/2013 (Financial Services Law) and Law 170/2011 (Penal Code Modifications on Legitimization of Illicit Earnings and Terrorism Financing). Bolivia is supervised by GAFILAT and faces elevated risks due to the country's position in the cocaine corridor (second world producer of coca leaf after Colombia and Peru). ASFI does not publish individual sanction amounts with the transparency of UK FCA. The Bolivian banking sector is dominated by: Banco Mercantil Santa Cruz, Banco Nacional de Bolivia, Banco Unión, Banco BISA, Banco Ganadero. Bolivia maintains strict currency controls and restrictions on cryptocurrencies (prohibited for financial entities until June 2024, partially lifted afterward). The country's exit from the World Bank SDR in 2023 due to currency crisis has exacerbated pressures on the financial system.
December 31, 2024 AW confirmed
Aruba: CBA tightens AML supervision — former Netherlands Antilles offshore jurisdiction
The Centrale Bank van Aruba (CBA) and the Financial Intelligence Unit (FIU Aruba) intensified AML/CFT inspections during 2024 under the framework of the State Ordinance on Prevention and Combating of Money Laundering and Financing of Terrorism (AB 2011 No. 28), amended in 2018, 2020 and 2024 to align with FATF recommendations and EU AMLD directives. Aruba is a constituent country of the Kingdom of the Netherlands with separate status since 1986 (when it separated from the Netherlands Antilles), and operates under the Aruban florin (AWG) pegged to the US dollar since 1971. Aruban specific AML risks include: historic offshore industry (similar to Bahamas, BVI), intensive tourism (impact on cash flows), proximity to Venezuela (15 miles) creating laundering corridor for Maduro regime funds and Colombian drug trafficking to Dutch Caribbean, connections with Curaçao and Sint Maarten (Kingdom of the Netherlands). The Aruban banking sector is concentrated in: Aruba Bank N.V., Caribbean Mercantile Bank N.V., RBC Royal Bank Aruba, Banco di Caribe. Aruba is a CFATF member and receives technical assistance from the Dutch Temporary Work Organization (TWO). Like Curaçao and Sint Maarten, Aruba is part of the Kingdom of the Netherlands' AML efforts in the Caribbean.
December 31, 2024 DZ confirmed
Algeria: Banque d'Algérie + CTRF tighten AML — post-Hirak 2019 + petrostate Sonatrach + Bouteflika legacy
The **Banque d'Algérie** and **Cellule de Traitement du Renseignement Financier (CTRF)** supervise the Algerian banking sector under the framework of Law 05-01 on AML/CFT (amended in 2015, 2018 and 2023). Algeria (44M inhabitants, largest country in Africa by territory post-Sudan split 2011) has lived a significant political transition since the **Hirak Movement (February 2019)** which caused the resignation of **President Abdelaziz Bouteflika** (President 1999-2019 — 20 years in power, last year in severely deteriorated health after his 2013 stroke). His successor **Abdelmadjid Tebboune** (elected December 2019, reelected Sep 2024) represents continuity of the **Le Pouvoir regime** (military-bureaucratic establishment). Specific Algerian AML risks: **oil and gas via Sonatrach** (largest state company in Africa, 95% of country exports, $40 billion annual revenues), **Sonatrach 1 (2010) + Sonatrach 2 (2013) cases** with corruption documented by Italian Saipem (€198M in bribes to Farid Bedjaoui — nephew of former Minister Salem Bedjaoui), **historic Khalifa Bank collapse 2003 case** ($1.5 billion embezzlement, Rafik Khalifa convicted in absentia + extradited from UK 2013), **gas pipelines to Italy/Spain** (Medgaz, Transmed), **Sahel corridor** (Mali, Niger, Tunisia), **Polisario Front** (Sahrawi refugees in Tindouf, Western Sahara dispute with Morocco). The banking sector is dominated by BEA (Banque Extérieure d'Algérie), BNA (Banque Nationale d'Algérie), CPA (Crédit Populaire d'Algérie), BADR (Banque d'Agriculture et du Développement Rural), all state. Algeria is a MENAFATF member.
February 23, 2024 SZ confirmed
Southern Africa: Eswatini + Lesotho + Botswana + Namibia — CMA + Botswana exit 2021 + Namibia inclusion 2024
The 4 CMA countries of Southern Africa: Eswatini (formerly Swaziland, 1.2M, absolute monarchy under King Mswati III), Lesotho (2.3M, enclave surrounded by South Africa), Botswana (2.5M, consolidated democracy with diamonds), Namibia (2.6M, former German/South African colony until 1990) — share South African ZAR + local currencies pegged 1:1. Botswana exited FATF grey list October 2021 after 3 years. Namibia was included in FATF grey list February 2024 — Namibia has risks from Fishrot Files (fisheries corruption scandal 2019-2024, Iceland's Samherji, 6 officials convicted 2024), uranium mining (Rössing, 4th world producer), diamonds. Eswatini: absolute monarchy + 2021 protests (50+ deaths). Lesotho: textile sector AGOA + Lesotho Highlands Water Project ($4B). All are ESAAMLG members.
December 31, 2024 CF confirmed
Central Africa: CAR + Chad + Burundi + Eritrea — Wagner financing + Habré ICC + Nkurunziza + Isaias 33 years
The 4 Central African states: CAR (5.5M) + Chad (17M) + Burundi (12.5M) + Eritrea (3.5M). CAR + Wagner Group financing: Wagner has maintained massive presence in CAR (~1,500-2,000 mercenaries) since 2018, gold/diamond concessions. Wagner designated OFAC SDN + EU sanctions. Chad: Hissène Habré (President 1982-1990) convicted of crimes against humanity by Extraordinary African Chambers in Senegal May 2016 to life imprisonment — first African former head of state tried in another African country. Ordered 40,000+ political executions. Died Dakar August 2021. Burundi: Pierre Nkurunziza era (2005-2020), controversial third term 2015 catalyzed massacres 1,200+ deaths, 400K+ refugees. Eritrea: Isaias Afwerki (President since 1993, 33 years in power, 'Africa's North Korea'), diaspora 2% tax, Tigray war atrocities 2020-2022. BEAC supervises CEMAC + GABAC + ESAAMLG members.
February 13, 2018 LV confirmed
ABLV (Latvia): FinCEN's North Korea designation triggered the bank's collapse (2018)
In February 2018, FinCEN designated Latvia's ABLV Bank —the country's third largest— as an institution of 'primary money laundering concern' under Section 311 of the USA PATRIOT Act, finding it had 'institutionalized money laundering as a pillar of its business' and facilitated transactions for North Korea's missile program. The proposal to cut it off from the US financial system triggered a deposit run and its collapse within a week, unleashing Latvia's worst financial crisis in a decade. The designation, not a fine, killed the bank.
October 1, 2024 IN confirmed
India: FIU-IND fines Union Bank of India Rs 54 lakh over AML reporting failures
FIU-IND imposed a Rs 54 lakh fine (~$0.065 million) on Union Bank of India in October 2024 for failing to report suspicious transactions and to conduct due diligence under the PMLA on certain accounts at a Mumbai branch. A comprehensive review of its operations found KYC/AML irregularities. It illustrates the granular, frequent enforcement of India's regime against public banking.
April 9, 2024 FR confirmed
France: €1M from ACPR to Treezor (Société Générale) in Apr 2024 over AML failures
The ACPR Sanctions Commission sanctioned in April 2024 Treezor, an e-money institution (EMI) owned by the Société Générale group, with a blâme and a €1 million pecuniary penalty (~$1.1 million) for 'very serious' deficiencies in its anti-money laundering and counter-terrorism financing (LCB-FT) framework. The decision derived from an on-site inspection conducted by the authority in 2021. The case is exemplary for the European fintech sector: Treezor operates as Banking-as-a-Service (BaaS) infrastructure for neobanks and fintechs, and is the largest French EMI following its integration with Société Générale in 2019. The sanction followed the European pattern of targeting technical infrastructures that host multiple fintech actors.
December 31, 2024 SI confirmed
Slovenia: Banka Slovenije maintains strict AML framework under ZPPDFT-2
The Banka Slovenije (Bank of Slovenia) and the Urad za preprečevanje pranja denarja (UPPD, Office for Money Laundering Prevention) intensified AML/CFT inspections during 2024 under the framework of the Prevention of Money Laundering Act ZPPDFT-2 (Zakon o preprečevanju pranja denarja in financiranja terorizma) of 2022, aligned with the EU's 5th and 6th AMLD directives. Slovenia has been an EU member since 2004 and Eurozone member since 2007, subjecting it to European Central Bank (ECB)/SSM supervision. The Slovenian banking sector is concentrated in: NLB (Nova Ljubljanska Banka, largest local bank), SKB Banka (OTP Group subsidiary), Unicredit Banka Slovenia, NKBM (Nova Kreditna Banka Maribor). Specific Slovenian AML risks are relatively moderate, but the country faces exposure to Western Balkan and Russian flows (Riga-Tallinn-Ljubljana case documented by Danske 2018). In 2022, ZPPDFT-2 introduced stricter beneficial ownership transparency enforcement requirements and central crypto registration.
December 31, 2024 PY confirmed
Paraguay: SEPRELAD tightens AML supervision over Tri-Border Area (PY-BR-AR) — crypto and contraband corridor
Paraguay's Central Bank (BCP) and the Secretariat for Prevention of Money Laundering or Assets (SEPRELAD, Financial Intelligence Unit directly under the Presidency) intensified AML/CFT inspections during 2024 under the framework of Law 1015/1997 (amended by Law 6452/2019 on Money Laundering Prevention). Paraguay occupies a critical position in the Tri-Border Area (Paraguay-Brazil-Argentina, particularly Ciudad del Este), historically considered one of the world's main corridors for laundering, contraband, terrorism financing (Hezbollah has been linked to the area in FBI investigations), and unregulated crypto operations. SEPRELAD has issued sanctions on exchange houses (CDA), crypto exchanges and banks for KYC failures, but amounts are not published individually. The Paraguayan banking sector is dominated by: Itaú Paraguay (the largest), Banco Continental, Banco Atlas, Banco GNB Paraguay, Banco Familiar. Paraguay faces continuous FATF pressure to improve enforcement: although not on the grey list, GAFILAT evaluations identify persistent deficiencies in DNFBP and crypto sector supervision.
October 31, 2023 IN confirmed
India: INR 5.4 crore to Paytm Payments Bank from RBI in 2023 — the most restrictive Indian fintech sanction
The Reserve Bank of India (RBI) imposed in October 2023 on Paytm Payments Bank, the banking arm of Indian payments giant Paytm, an INR 5.4 crore fine (~$650,000) for repeated KYC failings. The sanction was complemented by a much more restrictive order: the entity had to stop onboarding new customers and hire a third-party firm to audit its IT system. In January 2024 the RBI went further: as of February 29, 2024, Paytm Payments Bank could not accept new deposits or credit operations in its own accounts or payment instruments, effectively paralyzing the banking business of one of the country's main fintech unicorns. A landmark case of RBI's tightening on hyper-growth fintechs, paralleling FCA UK sanctions on Monzo and Starling.
March 1, 2024 IN confirmed
India: FIU-IND fines Paytm Payments Bank Rs 5.49 crore over gambling-linked laundering
India's Financial Intelligence Unit (FIU-IND) imposed a Rs 5.49 crore penalty (~$0.66 million) on Paytm Payments Bank in March 2024 for breaching its obligations under the Prevention of Money Laundering Act (PMLA). The FIU concluded that certain entities used the bank's accounts to channel illicit gains, including organizing online gambling. The bank argued the business segment involved had been discontinued two years earlier.
September 21, 2025 IL confirmed
Israel: NIS 2.1M to Bank Leumi in Sep 2025 over AML control failings
The Bank of Israel's Sanctions Committee imposed in September 2025 on Bank Leumi a NIS 2.1 million penalty (~$0.6 million) for violations of anti-money laundering obligations. The bank argued that its monitoring system met legal requirements and that its know-your-customer (KYC) process was performed regularly, but the Committee rejected the arguments and determined the violations were 'substantive'. The amount was reduced from the maximum possible (NIS 2.26 million per violation) due to the bank's cooperation with audit teams and the steps taken to correct the systems.
August 26, 2025 HK confirmed
Hong Kong: HK$4.2M from SFC to HSBC in Aug 2025 over research report disclosure failures
The SFC reprimanded and fined in August 2025 the Hongkong and Shanghai Banking Corporation (HSBC) with HK$4.2 million (~$0.54 million USD) for breaching disclosure requirements when publishing research reports. Although the sanction is not strictly AML, it is part of the HKMA-SFC enforcement collaboration on banking conduct and fits into a recent series of Hong Kong supervisor actions against major international banks (HSBC, DBS, Indosuez) showing the Asian enforcement tightening in 2024-2025.
December 31, 2024 HR confirmed
Croatia: HNB tightens AML supervision — first Balkan country in eurozone since 2023
Croatia's National Bank (Hrvatska Narodna Banka, HNB) and the AML Office of Croatia intensified AML/CFT inspections during 2024 under the framework of the Money Laundering Prevention Act 2018, aligned with the EU's 5th AMLD directive. Croatia has been an EU member since 2013 and entered the Eurozone on January 1, 2023 (first Balkan country to do so), subjecting it to European Central Bank (ECB)/SSM supervision for its systemic banks. The HNB does not publish individual sanction amounts with the transparency of UK FCA. The Croatian banking sector is dominated by: Zagrebačka banka (UniCredit subsidiary), Privredna banka Zagreb (Intesa Sanpaolo), Erste & Steiermärkische Bank (Erste Group), OTP banka Hrvatska. Specific Croatian AML risks include: Balkan drug corridor, coastal real estate (Dalmatia, Istria) attractive to foreign investment, and flows to and from the Croatian diaspora. Croatia is a MONEYVAL member.
August 15, 2024 IN confirmed
India: INR 50M from RBI to Federal Bank in 2024 over KYC/AML failings
RBI imposed in 2024 on Federal Bank Limited a monetary penalty of INR 50 million (~$0.6 million) for non-compliance with, inter alia, the supervisor's own guidelines on KYC and AML. Federal Bank is one of India's main private banks and the case is part of a 2024 RBI enforcement series against fintechs and banks for KYC deficiencies, following the supervisor's own report which found a 68% increase in reported fraud cases between April and September 2023.
July 5, 2024 HK confirmed
Hong Kong: HK$10M ($1.3M) from HKMA to DBS Bank in Jul 2024 over seven years of AML failures
The Hong Kong Monetary Authority (HKMA) imposed on July 5, 2024 on DBS Bank (Hong Kong) Limited —local subsidiary of Southeast Asia's largest bank— a pecuniary penalty of HK$10 million (~$1.3 million USD) under the Anti-Money Laundering Ordinance (AMLO, Chapter 615). The HKMA found control deficiencies over a seven-year period (April 2012 - April 2019): failures to continuously monitor business relationships, conduct enhanced due diligence in high-risk situations, and keep records of some customers. The sanction was attenuated by the bank's lack of prior AMLO disciplinary record. A landmark case: parent DBS had been among lenders caught up in Singapore's billion-dollar money-laundering scandal in 2023, and Hong Kong acts to 'send a clear deterrent message' (Raymond Chan, HKMA executive director).
December 14, 2023 CA confirmed
Canada: FINTRAC fines CIBC C$1.3M in 2023 for failing to report a suspicious transaction
FINTRAC imposed in December 2023 a C$1.3 million penalty (~$1 million) on CIBC for failing to file a suspicious transaction report despite knowing the client had been arrested and charged, and for failures reporting large transfers from abroad. In a sample of 20,000, it found over a thousand cases with incomplete information. Alongside RBC, it marked FINTRAC's biggest enforcement week.
September 16, 2024 AE confirmed
UAE: AED 5M from CBUAE to a bank with mandatory reporting to its overseas parent
CBUAE imposed in September 2024 a 5 million dirham fine (~$1.4 million) on a bank operating in the UAE for AML/CFT law violations. Notable detail: the supervisor expressly required the bank to communicate CBUAE's action to its overseas headquarters' board of directors, an unusual mechanism that increases reputational pressure on the foreign parent. The case followed an identical one a month earlier (AED 5.8M on another bank). CBUAE does not publicly name sanctioned banks but classifies violations under Federal Decree-Law No. 20 of 2018 on AML/CFT.
December 31, 2024 AM confirmed
Armenia: CBA tightens AML supervision — Russia sanctions evasion risk + post-2022 migrant influx
The Central Bank of Armenia (CBA) and the Financial Monitoring Center (FMC) — Armenian FIU — intensified AML/CFT inspections during 2024 under the framework of the Law on Combating Money Laundering and Terrorism Financing 2008 (amended in 2014, 2018 and 2023). Armenia, post-Velvet Revolution of Nikol Pashinyan April 2018, has executed significant anti-corruption reforms, but faces new pressures: **massive Russian migrant influx post-invasion of Ukraine Feb 2022** (~110,000 according to CBA, more than in Georgia or Serbia per capita), with **$2.5 billion in bank transfers** processed in 2022-2023, generating concerns of **Russian sanctions evasion**. Armenia has maintained complex relations with Russia (CSTO + EAEU membership but de jure exit Jan 2024 + growing alignment with West post-Pashinyan). The Nagorno-Karabakh conflict with Azerbaijan ended in September 2023 with the Azerbaijani operation (described as Armenian ethnocide by UN — 120,000 ethnic Armenians displaced from Nagorno-Karabakh). Specific Armenian AML risks: Karabakh displaced refugees, real estate boom in Yerevan post-Russian migrants, IT industry growth (Armenia is regional tech hub), traditional hawala via global Armenian diaspora (10M in Russia, US, France, Lebanon, Syria). The banking sector is concentrated in: Ameriabank (largest), AraratBank, ACBA Bank, Inecobank, VTB Armenia (sanctioned subsidiary). Armenia is a MONEYVAL member.
October 23, 2024 AL confirmed
Albania: Bank of Albania tightens AML supervision after FATF grey list exit in Oct 2023
The Banka e Shqipërisë (Bank of Albania) and the General Directorate for the Prevention of Money Laundering (Drejtoria e Përgjithshme për Parandalimin e Pastrimit të Parave, DPPPP) — Albanian FIU — intensified AML/CFT inspections on the banking sector during 2024, after Albania's exit from the FATF grey list in October 2023 (along with Cayman Islands, Jordan and Panama). Albania was originally included in February 2020. The legal framework is Law 9917/2008 amended in 2018 and 2023 to align with EU AMLD directives (Albania is an EU candidate). Specific Albanian AML risks include: activities of Albanian organized crime groups in Western Europe (especially UK, Belgium, Netherlands in drug trafficking), suspicious real estate in coastal areas (Vlore, Sarande), and undocumented flows from Albanian diaspora. The banking sector is dominated by: Banca Intesa Sanpaolo Albania, Raiffeisen Bank Albania, Credins Bank, OTP Bank Albania. Albania is a MONEYVAL member.
December 31, 2024 UZ confirmed
Uzbekistan: Gulnara Karimova case $850M frozen — post-2016 economic opening under Mirziyoyev
The **Central Bank of Uzbekistan (CBU)** and Department of Financial Monitoring supervise the banking sector under the framework of the Law on Countering the Legalisation of Proceeds from Criminal Activity 2004 (amended in 2016, 2019 and 2023). Uzbekistan, Central Asia's most populous country (36M inhabitants), lived the era of **Islam Karimov** (1991-2016, autocratic regime) followed by the economic opening of **Shavkat Mirziyoyev** (President since 2016 after Karimov's death in September 2016). The emblematic case **Gulnara Karimova** (daughter of Islam Karimov, former UN/UNESCO ambassador, model, singer): sentenced in Uzbekistan to 13 years prison in 2017 + 18 years in 2020 for massive fraud, money laundering and extortion. **$850M+ in assets frozen** internationally: $315M Switzerland (returned to Uzbekistan in 2020), $300M France, $48M Belgium, $36M Sweden. Frozen assets come from bribes paid by **TeliaSonera (Sweden), VimpelCom (Netherlands) and MTS (Russia)** in exchange for Uzbek telecom licenses. **TeliaSonera paid $965M settlement with DOJ/SEC/Dutch Public Prosecutor in September 2017** (one of the largest FCPA cases in history). VimpelCom $795M settlement in February 2016. MTS ongoing investigation. Specific Uzbek AML risks: gold (Uzbekistan is the 4th world producer via Navoi Mining and Metallurgical Combinat NMMC, ex-Soviet), cotton (forced labor denounced by UN until 2022, post-Mirziyoyev reform), heroin corridor from Afghanistan, ISIS Khorasan cells, oligarch real estate. Uzbekistan is an EAG (Eurasian Group) member.
December 20, 2021 NZ confirmed
New Zealand: NZ$3.5M from RBNZ to TSB Bank in 2021, first NZ bank taken to court over AML
Justice Jillian Mellon imposed in December 2021 a NZ$3.5 million fine (~$2.1 million US) on TSB Bank, following an agreement between the RBNZ and the bank that the judge reduced by NZ$355,000 (9%). It was the first time in history that the RBNZ took a New Zealand bank to court for AML/CFT Act breaches, combining individual penalties for four infractions. The AML/CFT Act sets civil penalties of up to NZ$200,000 for individuals and NZ$2 million for corporate bodies per breach. The RBNZ did not allege TSB had been involved in actual money laundering or terrorism financing.
December 25, 2024 SR confirmed
Suriname: CBVS tightens AML — Desi Bouterse sentenced 20 years (1999) + Santokhi reform + IMF 2021
The Centrale Bank van Suriname (CBVS) and the Financial Intelligence Unit (FIU-S) supervise the Surinamese banking sector under the framework of the Wet Doorlopende Identificatie Cliëntonderzoek 2017 (amended in 2020 and 2023). Suriname (618,000 inhabitants, former Dutch colony until 1975, capital Paramaribo), operates the Surinamese dollar (SRD). The country lived the era of **Desi Bouterse** (military leader after 1980 coup, President 1988-2010 and 2010-2020). Bouterse was sentenced in absentia in Netherlands to **20 years prison in July 1999** for cocaine trafficking ('November Drugs' case — $2.4M cocaine in Netherlands). In November 2019, **Bouterse was sentenced by Suriname Court of First Instance to 20 years for his responsibility in the December Murders of 1982** — 15 extrajudicial executions of opponents of the military regime. Sentence confirmed by Court of Appeal in December 2023, just before Bouterse's death on December 24, 2024 (84 years, fugitive in Paramaribo). **Chan Santokhi** (VHP, President since July 2020 after victory over Bouterse in 2020) has implemented reforms with the IMF ($688M agreement December 2021 — Suriname faced sovereign default 2020) — Suriname has massive offshore oil reserves discovered 2020 (Block 58 ExxonMobil/Chevron, Block 52 PETRONAS/ExxonMobil, expected production 2027-2028 — small 'Guyana 2'). Specific Surinamese AML risks: cocaine corridor (Suriname has the largest border with Brazil among Guyana + Suriname), gold smuggling (Goldmine Merian Newmont + illegal Brazilian garimpos), gold to UAE, illegal gold. The banking sector is concentrated in: De Surinaamsche Bank (DSB, largest), Hakrinbank, Surinaamse Volkscredietbank (SVCB), Republic Bank Suriname. Suriname is a CFATF member.
September 30, 2024 EC confirmed
Ecuador: SB sanctions banking sector in 2024 — added to FATF grey list in February 2025
Ecuador's Superintendency of Banks (SB) and the Financial and Economic Analysis Unit (UAFE) intensified AML/CFT inspections on the banking sector during 2024, under the framework of the Organic Law on Prevention, Detection and Eradication of Money Laundering and Financing of Crimes (published in 2016). Ecuador was added to the FATF grey list in February 2025 after the GAFILAT evaluation, which identified significant deficiencies in DNFBP (designated non-financial businesses and professions) supervision, UAFE effectiveness, and enforcement against virtual assets. The country faces an unprecedented security crisis since 2022 with Mexican cartels (Jalisco Nueva Generación, Sinaloa) operating locally, which has dramatically elevated banking sector AML risks. The sector is dominated by: Banco Pichincha (the largest), Banco Pacífico (state), Produbanco (regional Promerica), Banco Guayaquil, Banco Bolivariano. Official dollarization since 2000 facilitates physical dollar flows in the drug corridor.
April 15, 2022 NL confirmed
Netherlands: €2M from AFM to Robeco in 2022 over insufficient AML controls
The Dutch Financial Markets Authority (AFM / Autoriteit Financiële Markten) imposed in April 2022 on Robeco, one of the largest European fund managers, a €2 million fine (~$2.2 million) for failing to adequately control its clients on money laundering matters. A characteristic case of supervisory pressure on European fund managers, paralleling the AFM's tightening on the traditional banking sector with ING (€775M, 2018) and ABN Amro (€480M, 2021).
June 28, 2024 AT confirmed
Austria: FMA hands record €2.07M penalty to Raiffeisen Bank International in 2024
Austria's Financial Market Authority (FMA) imposed in June 2024 a €2.07 million penalty (~$2.2 million) on Raiffeisen Bank International (RBI), the largest AML fine in Austrian history. The FMA found that the bank had not satisfied itself of the adequacy of anti-money-laundering controls at two correspondent banks —in Cuba and Bahrain, per Reuters— in transactions with third countries. RBI considers the allegations unfounded and appealed the decision before the Federal Administrative Court. Context matters: RBI is the largest Western bank with significant exposure to Russia and processes, according to the Financial Times, between 40% and 50% of SWIFT flows between Russia and the rest of the world.
March 21, 2018 MT confirmed
Malta: Pilatus Bank closure Nov 2018 + Daphne Caruana Galizia assassinated Oct 16 2017 + Muscat crisis
On **March 21, 2018**, **Ali Sadr Hashemi Nejad** (Iranian citizen, owner Pilatus Bank Malta, former financier of Iranian Revolutionary Guard) was arrested in US after landing at Dulles International Airport — SDNY investigation that led to his subsequent conviction. **Pilatus Bank Limited** (Malta, founded 2014, ~$240M in assets), regulated by ECB+MFSA+FIAU, was **the center of modern Malta's biggest scandal**. The timeline: **October 16, 2017** — **Daphne Caruana Galizia**, Maltese investigative journalist of Running Commentary blog (1+ million readers in country of 500K inhabitants), **assassinated by car bomb near Bidnija**, Malta — pre-detained by international cartels for crimes against journalists. She was investigating: 1) **Panama Papers connections** of Joseph Muscat's (PM Malta 2013-2020) Chief of Staff, **Keith Schembri**, and **Energy Minister Konrad Mizzi** (New Zealand offshore accounts + Panama Mossack Fonseca); 2) **Pilatus Bank account** of Joseph Muscat's wife, **Michelle Muscat**, allegedly receiving $1M from family of Azerbaijani President Ilham Aliyev (suspended judicial probe 2017+ — never confirmed); 3) **Pilatus laundering for IRGC Iran** + Venezuela sanctioned officials + Azerbaijani oligarchs. After Caruana's murder, **3 men convicted: Vince Muscat (no relation to PM, 15 years Jul 2021), George Degiorgio + Alfred Degiorgio (40 years each Oct 2022)** + Caruana mastermind **Yorgen Fenech** (Maltese businessman, arrested Nov 2019 fleeing on yacht, pending trial 2026). Daphne's case has been **The Daphne Project** continued by OCCRP + ICIJ + Reuters + Guardian + 18 media organizations. **Joseph Muscat resigned as PM January 2020** post-Fenech arrest + Schembri indictment. Pilatus license **revoked by ECB in November 2018**. **Ali Sadr Hashemi Nejad** convicted **March 17, 2020 by SDNY on 5 charges** (Iran sanctions evasion + bank fraud + money laundering) — sentence annulled in August 2020 due to technical issue (Brady violation), new trial pending. Malta entered **FATF grey list in June 2021** post-Daphne crisis, exited June 2022.
December 15, 2022 PK confirmed
Pakistan: SBP imposes ~PKR 600M ($2.1M) in sanctions after FATF grey list exit in Oct 2022
The State Bank of Pakistan (SBP) intensified administrative sanctions on the banking sector in 2022, following Pakistan's exit from the FATF grey list in October 2022 after four years of enhanced monitoring. The combined H2 2022 package amounted to approximately 600 million Pakistani rupees (~$2.1 million) on multiple entities for compliance failures under the 2010 Anti-Money Laundering Act (amended in 2020), key legal reforms for Pakistan's FATF list exit alongside 27 action plan points. Major Pakistani banks include UBL, HBL, MCB, ABL, Bank Alfalah and Meezan Bank. SBP does not publish individual amounts with the transparency of FCA or NYDFS, in line with the practice of SAMA, Moroccan BAM or Egyptian CBE. The supervisor also uses administrative improvement agreements without monetary sanction, similar to Japanese gyōsei shobun.
October 24, 2025 NG confirmed
Nigeria: FATF removes Nigeria from grey list in Oct 2025 — Africa's largest economy alongside Mozambique/Burkina Faso/South Africa
On October 24, 2025, FATF removed Nigeria from the grey list ('Jurisdictions under Increased Monitoring') after 2 years of enhanced monitoring initiated in February 2023. Nigeria exited along with Mozambique, Burkina Faso and South Africa — a historic record of 4 African countries exiting on the same date. The financial supervisor is the Central Bank of Nigeria (CBN) with the Nigerian Financial Intelligence Unit (NFIU). The legal framework is the Money Laundering (Prevention and Prohibition) Act 2022 that replaced the MLPA 2011, and the Terrorism (Prevention and Prohibition) Act 2022. In 2024, the CBN imposed a historic package of sanctions on 29 Nigerian banks for AML/CFT non-compliance (case aml-nigeria-cbn-2024 in this tracker). Nigeria is Africa's largest economy ($550 billion GDP in 2024), but faces the continent's biggest AML challenges: 419 scams (historic Nigerian origin, now with pig-butchering variants), systemic political corruption (Sani Abacha case — $4+ billion recovered internationally), oil bunkering in the Niger Delta (estimated $5-10 billion/year lost), Boko Haram and ISWAP in the northeast, online fraud (Yahoo Boys), cryptocurrencies without clear regulatory framework (Nigeria is Africa's largest crypto adoption country, 70%+ of population uses or knows crypto according to Chainalysis 2024). The banking sector is concentrated in: Zenith Bank, GTBank, FirstBank, UBA (United Bank for Africa, pan-African), Access Bank, Ecobank Nigeria. Nigeria is a founding GIABA member.
December 31, 2024 NP confirmed
Nepal: NRB + FIU tighten AML — post-FATF grey list 2014 + China-India geopolitics + Tibet refugees
The **Nepal Rastra Bank (NRB)** and the Financial Information Unit (FIU) supervise the Nepali banking sector under the framework of the Asset (Money) Laundering Prevention Act 2008 (amended in 2014 and 2020 to align with FATF). Nepal exited FATF grey list in 2014 (after 6 years) after completing the action plan. Nepal (30M inhabitants) occupies a unique geostrategic position between **India and China**, with economy dependent on remittances (28% of GDP, $9 billion annually — world's second most remittance-dependent country in %), tourism (Everest + Annapurna + Lumbini Buddhist birthplace cultural heritage), hydropower (potential sold mainly to India). Specific Nepali AML risks: India-China-Tibet corridor (Tibetan refugees since 1959, Chinese political infiltration), Madhesh corridor with India (traditionally open border), gold trafficking (Hong Kong-Dubai-Nepal-India route), human trafficking (women and girls sold to India and Persian Gulf), Kathmandu real estate boom post-2015 earthquake, systemic political corruption ('Lalita Niwas' corruption case against former PM Madhav Kumar Nepal). The banking sector is concentrated in: Nepal Investment Mega Bank, Nabil Bank, Standard Chartered Bank Nepal, Himalayan Bank, Everest Bank, Global IME Bank, NIC Asia Bank. Nepal is an APG member.
December 31, 2024 UA confirmed
Ukraine: NBU sanctions banking sector in 2024 under reinforced sanctions regime against Russia
The National Bank of Ukraine (NBU) imposed during 2024 combined administrative sanctions of approximately 80 million hryvnias (~$2 million) on the Ukrainian banking sector. The context is exceptional: after Russia's invasion in February 2022, Ukraine dramatically reinforced its financial sanctions regime against entities, oligarchs and companies linked to Russia, requiring Ukrainian banks to implement expanded sanctions lists exceeding in complexity those of OFAC/UK/EU themselves. NBU coordinates with the State Financial Monitoring Service (SFMS) of Ukraine, a member of MONEYVAL of the Council of Europe. The 2019 Law on Prevention and Combating Money Laundering harmonized the framework with the EU's 5th AMLD directive, a key requirement for the path to EU membership. Specific bank sanctions during the war include proceedings for non-compliance with the prohibition on operating with Russian clients, KYC failures, and late reporting of suspicious operations linked to local corruption.
June 15, 2023 HU confirmed
Hungary: MNB sanctions K&H Bank and other entities in 2023 over AML failures
The National Bank of Hungary (Magyar Nemzeti Bank, MNB) imposed in 2023 combined administrative sanctions of approximately 580 million Hungarian forints (~$2 million) on several Hungarian banking sector entities, including K&H Bank (Belgian KBC group subsidiary, one of Hungary's top three banks). The violations fall under non-compliance with Law 53/2017 on prevention of money laundering and terrorism financing, which transposed European directives (5th and 6th AMLD) into Hungarian law. The MNB has had a dedicated AML/CFT enforcement department since 2020, part of Hungary's process of adapting to European and FATF standards.
December 30, 2010 IL confirmed
Israel: NIS 7.5M to Bank Hapoalim in Dec 2010 over the historic Yarkon branch scandal
The Bank of Israel imposed in December 2010 on Bank Hapoalim a NIS 7.5 million penalty (~$2 million) for violations of the Prohibition on Money Laundering Law (חוק איסור הלבנת הון) detected at the Yarkon branch in Tel Aviv. The investigation revealed that the branch had facilitated laundering of hundreds of millions of dollars between 2004 and 2008. The so-called 'Yarkon branch case' was uncovered in March 2005 by Israeli police, with dozens of bank employees and clients investigated, shocking the country's banking system. The sanction combines NIS 6 million for the 2004 events (failing to report to the Anti-Money Laundering Authority) and NIS 1.5 million for the 2007-2008 audit report findings. A founding case of modern AML enforcement in Israel.
December 31, 2024 GN confirmed
Guinea: BCRG tightens AML — Doumbouya military junta 2021 + Alpha Condé trial + 40% world bauxite
The **Banque Centrale de la République de Guinée (BCRG)** and the **Cellule Nationale de Traitement des Informations Financières (CENTIF)** supervise the Guinean banking sector under the framework of Law L/2016/008 on AML/CFT (amended in 2020 and 2023). Guinea (14M inhabitants, capital Conakry) — not to be confused with Guinea-Bissau or Equatorial Guinea — lived under **Alpha Condé** (President 2010-2021) after decades of military regimes (Sékou Touré 1958-1984, Lansana Conté 1984-2008). On **September 5, 2021**, **Mamady Doumbouya** (Special Forces Colonel trained in US/Israel) led a military coup removing Condé after his controversial third-term attempt. **CNRD junta** (Comité National du Rassemblement et du Développement) has governed since then — Doumbouya promised transition that has been postponed to Dec 2024/2025. Former President Alpha Condé faces multiple trials for corruption and human rights violations (case of the **September 28, 2009 stadium massacre** — Moussa Dadis Camara former junta sentenced to 20 years in 2024). Guinea produces **~40% of world bauxite** (Compagnie des Bauxites de Guinée CBG joint venture with Alcoa/Rio Tinto, Société Minière de Boké SMB, Guinea Alumina Corporation GAC) and exports mainly to China (60%). Specific Guinean AML risks: **opaque bauxite supply chain**, **BSGR-Beny Steinmetz case** (Israeli, diamond magnate, convicted in Switzerland Jan 2021 for $10M bribes to former President Lansana Conté's wife for Simandou concession — one of the world's largest iron deposits, $25 billion concession cancelled by Condé 2014), Siguiri gold (Anglo Gold Ashanti), Ebola legacy (2014-2016 epidemic), West Africa cocaine corridor. The banking sector is concentrated in: BICIGUI (BNP Paribas), Ecobank Guinea, SGBG (Société Générale de Banques en Guinée). Guinea is a GIABA member.
December 19, 2024 CW confirmed
Curaçao: LOK Law + new AML/CFT/PF law approved Dec 2024 — paradigm reform of 'gambling paradise'
On December 19, 2024, Curaçao approved the Landsverordening op de Kansspelen (LOK, Gaming Law) and the Landsverordening bestrijding witwassen, financieren van terrorisme en het financieren van proliferatie (PB 2024 nr. 41) replacing the previous AML/CFT/PF regime. The reform transformed Curaçao's historic online gambling industry: traditionally one of the world's most permissive regimes (host to US-facing offshore operators) under the Master Licenses system with permissive sublicenses, LOK forced all operators to apply for individual licenses under the new Curaçao Gaming Authority (CGA, transformation of the Gaming Control Board GCB). The Temporary Work Organization (TWO) led by the Netherlands assists Curaçao, Aruba and Sint Maarten in implementing the Landspakketten. Critique from the Faneyte report (400 pages, late 2024): tacit acceptance of crypto payments without adequate regulatory framework, CGA underfunded, risk of continuation as 'money laundering paradise'. Former Centrale Bank Curaçao en Sint Maarten (CBCS) president Emsley Tromp faced corruption controversy. The banking sector is dominated by Maduro & Curiel's Bank ($5.9 billion in assets), RBC, Scotiabank. On March 31, 2025, the new Caribbean guilder (XCG) currency replaced the Netherlands Antillean guilder (ANG, withdrawn June 30, 2025).
July 25, 2016 IN confirmed
India: the RBI fines Bank of Baroda, HDFC and PNB over KYC/AML failures in the forex scandal (2016)
The Reserve Bank of India (RBI) fined Bank of Baroda (Rs 5 crore), HDFC Bank (Rs 2 crore) and Punjab National Bank (Rs 3 crore) in 2016 for KYC/AML control failures, in connection with a ~Rs 6,000 crore forex remittance scandal uncovered in 2015: funds transferred to Hong Kong accounts for imports that never took place. The RBI flagged weaknesses in transaction monitoring and timely FIU reporting.
December 31, 2023 BG confirmed
Bulgaria: BNB sanctions banking sector with BGN 4M ($2.1M) in 2022-2023 after Moneyval observations
Bulgaria's Bulgarian National Bank (BNB) intensified AML/CFT inspections during 2022-2023, applying combined administrative sanctions of approximately 4 million Bulgarian leva (~$2.1 million) on multiple banks. The legal framework is the 2018 Act on Measures Against Money Laundering (AMML), aligned with the EU's 5th AMLD directive, complemented by the Bulgarian Personal Data Protection Act and AML Regulation 5/2021. The supervisor coordinates with the State Agency for National Security (DANS), responsible for the Financial Intelligence Unit. Bulgaria was evaluated by MONEYVAL in 2022 and received significant observations on enforcement effectiveness, particularly in the real estate and gambling sectors, which triggered this tightening. Bulgaria is an EU member since 2007 but not in the eurozone, maintaining its lev but subject to binding EU AMLD directives. The Bulgarian banking sector is dominated by subsidiaries of European banks (UniCredit Bulbank, DSK Bank of Hungarian OTP Group, Eurobank Bulgaria).
December 31, 2024 UY confirmed
Uruguay: BCU + SENACLAFT maintain one of Latin America's strictest AML regimes in 2024
Uruguay's Central Bank (BCU) and the National Secretariat for the Fight against Money Laundering and Terrorism Financing (SENACLAFT, directly under the Presidency) operate one of Latin America's strictest AML regimes, positively evaluated by GAFILAT in 2020. The legal framework is Law 19,574/2017 (Comprehensive Anti-Money Laundering Law), considered a regional model. Administrative sanctions during 2024 amounted to approximately $1.5M on multiple entities for KYC/CDD failures, late SAR reporting, and risk assessment deficiencies. The Uruguayan banking sector is concentrated in: Banco República (state, the largest), BBVA Uruguay, Itaú Uruguay, Santander Uruguay, Scotiabank Uruguay and HSBC Uruguay (HSBC withdrew in 2025, selling to Itaú). Uruguay has a strengthened banking secrecy but permeable to judicial requirements under the law, which has allowed effective international cooperation with Argentina (Cuadernos Lava Jato case), Brazil and the USA. It is a frequent real estate investment destination for Argentinians due to peso currency instability.
December 31, 2022 BR confirmed
Brazil: R$9M+ from the Central Bank to Banco Paulista, the largest documented Brazilian AML penalty
The Brazilian Central Bank (BCB) sanctioned Banco Paulista with more than R$9 million (~$1.8 million) for 'deficient internal controls' and 'failure to provide, within the established deadline, documents or information' required by the supervisory authority. It is the largest individual Brazilian AML fine documented in the set of 31 sanctions applied by BCB between 2020 and July 2025 (~R$28.4 million in total). The fine, already paid by the entity, contrasts with most of the package: only 5 of the 31 sanctions had been settled by July 2025. Parallel cases: Banco Master (~R$1M, 2020, in 2 actions) and Banrisul (R$2.3M, 2023). The BCB applies a 'risk-based supervision' approach aligned with FATF recommendations. Most sanctioned institutions are exchange brokers, several already bankrupt.
September 30, 2024 ZA confirmed
South Africa: ZAR 30M from SARB to Absa Bank in Sep 2024 over specific AML failings
The South African Reserve Bank (SARB) through its Prudential Authority imposed in September 2024 on Absa Group, one of South Africa's four largest banks, a sanction of approximately ZAR 30 million (~$1.7 million) for specific failings in its anti-money laundering system. The sanction followed the collective December 2024 package against Capitec (ZAR 56.25M) and other South African banks (Nedbank ZAR 35M in 2023). South Africa has been under FATF enhanced monitoring since February 2023 after being added to the grey list, dramatically intensifying SARB and FIC (Financial Intelligence Centre) enforcement. Absa announced in May 2025 it was implementing an 18-month remediation plan under direct Prudential Authority supervision.
October 29, 2024 IL confirmed
Israel: NIS 10M from the Bank of Israel to 5 banks (Leumi, Discount and others) in Oct 2024 over AML failures
The Banking Corporations Sanctions Committee of the Bank of Israel (chaired by Bank Supervisor Dani Hachiasvili) imposed in October 2024 combined penalties of around NIS 10 million (~$3 million) on five banking entities: Bank Leumi, Discount Bank, Bank of Jerusalem, Citibank Israel and HSBC Israel, for violations of the 2001 Order on Prohibition of Money Laundering and Terrorism Financing (identification, reporting and recordkeeping obligations), as well as the prudent banking management handbook No. 411 on 'Management of money laundering and terrorism financing risks'. The cap on the penalty per violation is NIS 2.26 million. A week earlier, Bank Hapoalim had received a separate NIS 1.83 million sanction.
September 30, 2024 ID confirmed
Indonesia: 173 OJK sanctions on financial entities in 2024 over APU-PPT failures
Indonesia's Otoritas Jasa Keuangan (OJK), supervisor of the financial system, applied in 2024 173 sanctions on financial sector entities including insurers, pension funds, guarantee companies and banks. The new POJK 8/2023 regulatory framework (replacing POJK 12/2017) on the APU-PPT program (Anti Pencucian Uang dan Pencegahan Pendanaan Terorisme - Anti-Money Laundering and Counter-Terrorism Financing) tightened administrative sanctions with a legal ceiling per infraction of IDR 50 billion (~$3.1 million USD), rising to IDR 50 billion for banks and controlling shareholders. The framework is complemented by Bank of Indonesia's PBI 10/2024 for non-bank entities (payment service providers, KUPVA, etc.), effective from December 31, 2024. Indonesia exited the FATF grey list in 2024 after two years under enhanced monitoring.
October 11, 2016 CH confirmed
Switzerland: FINMA ordered Falcon Bank to surrender CHF 2.5M in illegal profits over the 1MDB case
In parallel with Singapore's action, in October 2016 the Swiss authority FINMA ordered Falcon Private Bank (Zurich-based, owned by Abu Dhabi's sovereign fund IPIC) to surrender CHF 2.5 million (~$2.6 million) in what it called illegal profits obtained in connection with the 1MDB scandal, and opened enforcement proceedings against two former executives. It shows the cross-border coordination of AML enforcement.
December 9, 2025 US confirmed
US: $3.5M from FinCEN to P2P crypto platform in Dec 2025 over $500M+ in suspicious activity
On December 9, 2025, FinCEN announced a consent order imposing $3.5 million civil penalty on a peer-to-peer (P2P) virtual asset trading platform (not named in the public version), alleging willful violations of the Bank Secrecy Act. The platform operated a hosted virtual asset wallet and a P2P marketplace connecting buyers and sellers using hundreds of payment methods. FinCEN alleged that over several years the platform processed transactions involving more than $500 million in suspicious activity, including activity linked to sanctioned jurisdictions, ransomware attacks, darknet marketplaces, terrorism financing and other illicit conduct. Mitigating factors considered by FinCEN included leadership changes, engagement of outside consultants, and retrospective review to identify and report previously unreported suspicious activity. The action adds to SUEX (2021), Chatex (2021), Garantex (2025) and Hydra (2022) as iconic OFAC/FinCEN crypto sector cases.
October 11, 2016 SG confirmed
Singapore: MAS shuts down Falcon Bank and fines SGD 4.3M in Oct 2016 over 1MDB
The Monetary Authority of Singapore (MAS) ordered on October 11, 2016 the closure of Falcon Private Bank's Singapore branch for 'persistent and severe lack of understanding' of AML rules, fining it SGD 4.3M (~$3.1M) for 14 violations. Inspections in 2013 and 2015 had found problems Falcon did not correct. Second forced bank closure in Singapore in 32 years, after BSI in May 2016. Branch manager Jens Sturzenegger arrested October 6. Same day, FINMA in Zurich ordered surrender of CHF 2.5M in illicit profits. Falcon is owned by Abu Dhabi sovereign wealth fund IPIC. Part of Singapore's largest-ever AML operation over 1MDB.
December 20, 2024 ZA confirmed
South Africa: 56.25M ZAR (~$3M) from SARB to Capitec Bank in 2024 over FICA failures
The Prudential Authority of the South African Reserve Bank (SARB) imposed in December 2024 a 56.25 million rand (~$3 million) administrative penalty on Capitec Bank for non-compliance with the Financial Intelligence Centre Act (FICA). The sanction stemmed from two inspections (retail banking in 2021, business banking in 2022) on customer due diligence, transaction monitoring and reporting obligations between 2017 and 2022. South Africa has been on the FATF grey list since February 2023, intensifying its regulators' AML supervision ahead of the 2025-2026 FATF evaluation.
June 30, 2024 RO confirmed
Romania: BNR + ONPCSB sanction banking sector with ~RON 15M ($3.2M) in H1 2024
Romania's National Bank (Banca Națională a României, BNR) and the National Office for the Prevention and Combat of Money Laundering (Oficiul Național de Prevenire și Combatere a Spălării Banilor, ONPCSB — Financial Intelligence Unit) applied during H1 2024 combined administrative sanctions of approximately 15 million Romanian leu (~$3.2 million) on the banking sector. The legal framework is Law 129/2019 on Money Laundering Prevention and Combat, aligned with the EU's 5th and 6th AMLD directives. Notable individual cases include sanctions on Banca Românească (part of Eximbank), CEC Bank and private commercial banks for KYC/CDD failures and late SAR reporting. The Romanian banking sector is dominated by European subsidiaries (Banca Transilvania the largest local, BCR of Erste Group, BRD of Société Générale, ING Bank, Raiffeisen, UniCredit) and operates under European Central Bank/SSM supervision for systemic banks. Romania has been an EU member since 2007 and entered the SRM (Single Resolution Mechanism) in 2014.
March 4, 2015 GB confirmed
UK: £2.1M from FCA to Bank of Beirut UK in Mar 2015 — individual sanctions on compliance + auditor
On March 4, 2015, the UK FCA fined Bank of Beirut (UK) Ltd £2.1 million (~$3.1M USD) and banned the entity from acquiring new customers from high-risk jurisdictions for 126 days. Additionally, the FCA imposed individual fines on two approved persons of the bank: Anthony Wills, former compliance officer (£19,600), and Michael Allin, internal auditor (£9,900), for repeatedly providing misleading information to the regulator and breaching their responsibilities as approved persons. Concerns about the internal culture of the bank emerged after supervisory visits in 2010 and 2011. It is one of the classic FCA cases where individual executives are directly sanctioned, not just the entity — setting precedent for Standard Chartered, Lloyds, Barclays and all subsequent cases. Georgina Philippou (acting director of enforcement) emphasized: 'Wills and Allin provided a number of misleading communications, which is a serious breach of their responsibilities as approved persons'. The case is part of the post-Lebanese Canadian Bank (LCB, FinCEN 311 designation in 2011) context, which led to SGBL acquiring LCB. The FCA used this case to drive supervisory visits to small banks.
April 8, 2025 LT confirmed
Lithuania: €3.5M from the Bank of Lithuania to Revolut in Apr 2025 over AML failures
The Bank of Lithuania imposed in April 2025 on fintech bank Revolut a €3.5 million fine (~$4 million) for failures in its anti-money laundering processes. Revolut operates under a Lithuanian banking license, its main European jurisdiction, and the sanction reflected deficiencies in transaction monitoring and due diligence during the neobank's hyper-growth period. A key case for its jurisdiction: Lithuania serves as the European hub for several British fintechs after Brexit (Revolut, Mistertango), making it the front-line supervisor of a group with over 40 million global customers. In 2019 Revolut had already been investigated by the UK's FCA for allegedly disabling AML controls during a 2018 period, an episode its CEO denied.
February 20, 2020 CH confirmed
Switzerland: CHF 4.3M from FINMA to Julius Bär in 2020 over PDVSA and FIFA; former CEO Collardi reprimanded
The Swiss Financial Market Supervisory Authority (FINMA) sanctioned private bank Julius Bär in February 2020 with confiscation of CHF 4.3 million (~$4.8 million) in illicit profits over 'serious deficiencies in anti-money laundering controls' in connection with corruption transactions linked to Venezuelan state oil company PDVSA and corrupt FIFA officials. FINMA installed a special commissioner at Julius Bär in 2017 and expanded the investigation in 2018 following the US arrest of a bank advisor. The following year, then-Julius Bär CEO Boris Collardi —who left the bank in 2017 to join Pictet— was formally reprimanded in writing, an unusual case of individual executive accountability in Switzerland.
June 1, 2020 ES confirmed
Spain: over €4M to a bank for client-identification failures
In Spain, SEPBLAC fined a major bank over €4 million in 2020 for failing to properly implement client-identification controls and for not reporting suspicious transactions, after an investigation revealed serious compliance deficiencies. The Spanish regime (Law 10/2010) classifies violations as very serious, serious and minor.
May 7, 2021 US confirmed
US: Colonial Pipeline ransomware May 2021 — $4.4M DarkSide ransom + East Coast fuel crisis
On **May 7, 2021**, **Colonial Pipeline** (the largest refined products pipeline in the US, transporting **~45% of East Coast fuel** — 2.5M barrels/day from Houston to New Jersey) was forced into **complete shutdown** after a **ransomware attack by the DarkSide group** (Russian/Eastern European cybercriminals, ransomware-as-a-service RaaS). The attack caused the **largest energy infrastructure disruption by cyberattack in US history**: gasoline panic buying, shortages in 5 southeastern states (regional emergency declared), price spikes, gas station lines. Colonial Pipeline **paid a ransom of ~75 BTC (~$4.4 million USD)** to DarkSide on May 8 to obtain the decryption key (although the decryptor was so slow they used their own backups). The case was an inflection point: **(1) The FBI recovered ~63.7 BTC (~$2.3 million) of the ransom in June 2021** — first major crypto ransomware recovery via blockchain tracing (FBI obtained the private key of DarkSide's wallet); **(2) OFAC + Treasury intensified sanctions against ransomware actors + crypto mixers** (Garantex, Suex, Chatex, Bitzlato cases already covered); **(3) Biden Executive Order 14028 (May 2021) on cybersecurity**; **(4) DarkSide 'disappeared' (rebrand) after the pressure** — the group was affiliated with the Russian ransomware ecosystem (REvil, Conti, LockBit, BlackCat). The case is referenced as **the ransomware wake-up call against critical infrastructure + the precedent of crypto ransom recovery via blockchain forensics**. Colonial Pipeline also paid **$1M settlement to DOJ 2024** for failures + faced congressional hearings (CEO Joseph Blount testified). The case catalyzed **CISA + TSA pipeline cybersecurity directives**.
September 19, 2019 KE confirmed
Kenya: CBK sanctions 5 major banks with KES 385M ($3.92M) in Sep 2019 over NYS scandal
On September 19, 2019, the Central Bank of Kenya (CBK) announced the result of the first phase of investigations into the National Youth Service (NYS) scandal, where approximately Sh8 billion ($75M) in public funds was stolen. Five major Kenyan banks were sanctioned for specific AML/CFT failures: Standard Chartered Bank Kenya (Sh1.628B processed, Sh77.5M fine / $775K), Equity Bank Kenya (Sh886M processed, Sh89.5M fine / $895K), KCB Bank Kenya (Sh639M processed, Sh149.5M fine / $1.5M — the highest), Co-operative Bank of Kenya (Sh263M processed, Sh20M fine / $200K), and Diamond Trust Bank Kenya (Sh162M processed, Sh56M fine / $560K). Specific violations: failures to report large cash transactions, inadequate customer due diligence, lack of supporting documentation and late SAR filing to the Financial Reporting Centre (FRC). The second phase derived criminal investigations against executives and politicians. Kenya operates under the Proceeds of Crime and Anti-Money Laundering Act 2009 (POCAMLA), supervised by CBK + FRC + ESAAMLG (Eastern and Southern Africa Anti-Money Laundering Group). The case is a continental reference.
December 14, 2025 NZ confirmed
New Zealand: NZ$6.73M (~$4M) from RBNZ to ASB Bank in Dec 2025 — second bank taken to court
The Reserve Bank of New Zealand (RBNZ) agreed in December 2025 with ASB Bank a penalty of NZ$6.73 million (~$4 million US) for breaches of the AML/CFT Act 2009 between 2019 and 2025. It is the second time the RBNZ has taken a bank to court over these violations (the first was TSB in 2021). ASB admitted seven breaches: failure to maintain an adequate AML/CFT programme, failure to conduct ongoing customer due diligence, failure to report suspicious activities within the statutory timeframe and failure to end business relationships when required. Around NZ$9.37 billion in transactions were not properly vetted. The fine equals 0.26% of ASB's net profit for fiscal year 2025. From July 2026, the Department of Internal Affairs (DIA) will replace the RBNZ as New Zealand's sole AML/CFT supervisor.
March 25, 2025 AE confirmed
UAE: AED 18.1M on two foreign-bank branches for AML failures (2025)
The UAE Central Bank fined two foreign-bank branches AED 18.1 million combined (~$4.9 million) in 2025 —AED 10.6 million on one and AED 7.5 million on the other— for insufficient risk-based monitoring, poor governance and gaps in suspicious-activity reporting, under Federal Decree-Law 20 of 2018. Part of the Emirati 2025 enforcement wave.
December 31, 2024 MY confirmed
Malaysia: BNM imposes RM18.9M in fines + 326 enforcement actions in 2024 — AML the most frequent type
Bank Negara Malaysia (BNM) reported in its 2024 Annual Report (published in March 2025) that it took **326 supervisory and enforcement actions** during 2024 against financial institutions, individuals, and entities for regulatory breaches. **AML/CFT was the most frequent type**, with total fines of RM18.9 million (~$4M USD). BNM also: conducted onsite surveillance at 123 entities across 166 premises to detect unauthorized financial activities; issued 37 cease-and-desist orders against unlicensed Money Services Business (MSB) operators; forfeited RM28.4M in assets from illegal activities; secured 11 criminal convictions against illegal MSB operators under the MSB Act 2011 and AMLA 2001 with RM891,000 in total fines; secured RM125.5M in restitutions for 1.5M customers from financial institutions that failed to meet regulatory standards. In July 2025, BNM expanded the package with combined sanctions of RM36.7M (~$7.8M USD) on 3 major Malaysian banks (including CIMB Bank Berhad — the largest) for AML/CFT failures detected during regulatory examinations. In particular, CIMB was cited for: customer due diligence failures on high-risk accounts, especially PEPs (politically exposed persons) and non-resident clients, weaknesses in identifying beneficial ownership, and systemic gaps in detecting suspicious activities. In July 2025, BNM also fined Bank Islam Malaysia Bhd RM3.445M for sanction screening failures and prolonged service disruptions.
July 31, 2025 BR confirmed
Brazil: the Central Bank applied R$ 28.4M in 31 AML fines since 2020 (only 5 paid)
Brazil's Central Bank applied R$ 28.4 million (~$5 million) in 31 money-laundering-related fines since 2020, for failures in prevention controls and suspicious-transaction reporting. As of July 2025 only five had been paid —a clear gap between fine imposed and collected—. Among the institutions are Banco Master (two charges in 2020) and Banrisul (>R$ 2.3M in 2023). Data obtained via the Freedom of Information Act.
January 19, 2023 GB confirmed
UK: £4M to Al Rayan Bank from the FCA in Jan 2023 over enhanced due diligence failures
The FCA fined Al Rayan Bank, a UK Islamic bank, £4 million (~$5 million) in January 2023 for failures in its AML controls and enhanced due diligence (EDD). The supervisor found the bank had not properly vetted customer transactions for signs of money laundering, nor had it trained its staff to conduct EDD checks correctly. Mark Steward, FCA Executive Director of Enforcement, stated that such failings 'create the conditions in which financial crime is facilitated'. A characteristic case of FCA sanctions on mid-sized UK retail banking.
December 13, 2017 FR confirmed
France: €5M from ACPR to Société Générale in 2017 — first AML penalty
The ACPR Sanctions Commission imposed in December 2017 on Société Générale a €5 million fine (~$6 million) for failings in its anti-money laundering system. It was ACPR's first sanction against the French banking group. The case paved the way for subsequent sanctions against the parent (€20M in May 2026) and subsidiaries (Treezor €1M in April 2024). Société Générale is the third-largest bank in the eurozone by assets and part of the SIFI (Systemically Important Financial Institutions) list, which adds supervisory pressure.
March 16, 2026 PL confirmed
Poland: PLN 21M from KNF to Santander Bank Polska in Mar 2026 over eight combined violations
The Polish Financial Supervision Authority (KNF — Komisja Nadzoru Finansowego) imposed in March 2026 on Santander Bank Polska, the main Polish subsidiary of Spain's Santander group, combined sanctions of more than 21 million zlotys (~$5.5 million). The decision covers eight separate cases. The largest fine, 7 million zlotys, relates to client-account operations under the 'Oprocentowanie Nie Wyższe Niż' (interest rate no higher than) mechanism offered between January 2021 and April 2023. There are also 4 million for cooperation with unauthorized third parties (Oct 2018-Feb 2021), 1 million for FX hedging transactions (Oct 2018-Nov 2019) and other violations. The decision is not final and the bank will comply while analyzing the rationale. Although not all sanctions are strictly AML, the case illustrates KNF's tightening supervision of banking practices under the 2018 Anti-Money Laundering Act.
December 12, 2023 CA confirmed
Canada: FINTRAC fines RBC C$7.5M in 2023 for AML non-compliance
FINTRAC imposed in December 2023 a C$7.5 million penalty (~$6 million) on the Royal Bank of Canada (RBC), the country's largest bank, for money-laundering and terrorist-financing non-compliance. It was one of the fines that marked the toughening of FINTRAC enforcement, announced by its CEO in 2023.
July 30, 2025 MY confirmed
Malaysia: BNM sanctions CIMB in Jul 2025 over specific AML failures — country's largest bank
In July 2025, Bank Negara Malaysia (BNM) imposed on CIMB Bank Berhad — Malaysia's second-largest bank and the country's largest universal bank by assets — a significant administrative sanction, part of the combined package of RM36.7 million (~$7.8M USD) against 3 major Malaysian banks. The specific failures identified in CIMB during regulatory examinations included: (1) inadequate customer due diligence (CDD) and ongoing monitoring on high-risk accounts, especially PEPs (politically exposed persons) and non-resident clients; (2) shortcomings in identifying beneficial ownership; (3) weaknesses in reviewing source of funds and source of wealth of clients; (4) systemic gaps in detection of suspicious activities in general. CIMB Group operates in 16 Asian countries (Malaysia, Indonesia, Singapore, Thailand, Cambodia, Philippines, Vietnam, etc.) and is one of the largest banking groups in Southeast Asia. The sanction followed BNM's continuous cycle on the sector after the 1MDB scandal (AmBank RM2.83B in 2021). Bank Islam Malaysia Bhd also received RM3.445M of AMP on July 30, 2025 for sanction screening breaches and prolonged service disruptions.
April 9, 2024 CA confirmed
Canada: FINTRAC fines TD Bank C$9.2M in 2024 for failing to report suspicious transactions
FINTRAC, Canada's financial intelligence agency, imposed in April 2024 a C$9.2 million penalty (~$7 million) on TD Bank for five violations found in a 2022-2023 review: failing to file suspicious transaction reports despite grounds, not assessing money-laundering risks and not applying special measures to high-risk clients. The review identified 96 clients not in its high-risk program, including a politically exposed person. It was then FINTRAC's largest fine —a fraction of the $3 billion in the US that year—.
July 15, 2013 IN confirmed
India: RBI sanctions 22 banks in Jul 2013 over KYC/AML failings after Cobrapost sting
The Reserve Bank of India (RBI) imposed in July 2013 sanctions on 22 banks for KYC and AML rule violations, with individual fines ranging from INR 50 lakh to 3 crore. The action followed inspections triggered by the Cobrapost online journalism sting, which in March 2013 published videos showing ICICI, HDFC and Axis employees offering customers ways to convert black money into white through the banking system. In June, RBI had already fined those three private banks a combined INR 10.5 crore (~$1.6M; Axis 5cr, HDFC 4.5cr, ICICI 1cr). The July action added 12 public-sector banks (SBI, Canara, Bank of Baroda, Bank of India, Central Bank of India) and 9 private ones (Federal Bank, YES Bank, Kotak Mahindra, DCB, Dhanlaxmi), plus cautionary letters to Standard Chartered and Citibank India. The RBI specified there was 'no prima facie evidence of money laundering'. A founding case of modern Indian AML enforcement and a precursor to the sanctions against Paytm (2023, 5.4 crore) and Federal Bank (2024, INR 50 million).
March 9, 2022 BY confirmed
Belarus: OFAC sanctions 9 Belarusian banks post-Feb 2022 — massive support to Russia in Ukraine invasion
Following the **Russian invasion of Ukraine on February 24, 2022**, OFAC, the EU, UK, Switzerland, Norway and 30+ other countries imposed **extensive sanctions against Belarus** for its active support of the Putin regime (Belarusian territory used to invade Kiev, Belarusian soldiers not sent but extensive logistical support, Belarusian hospitals for Russian wounded). The **Aleksandr Lukashenko regime** (in power since July 1994 — 30 years in office, the longest-serving European dictator) was already under sanctions for the **brutal repression of the Sviatlana Tsikhanouskaya (Tikhanovskaya) protests in August 2020** (fraudulent presidential election — Lukashenko 'won' 80.10%; ~33,000 detained, thousands of tortures documented by UN OHCHR, several deaths). OFAC-sanctioned Belarusian banks include: **Belarusbank (state, largest), Belagroprombank (state, second), Belinvestbank, Belarusian Bank for Development and Reconstruction (BBDR), Bank Dabrabyt, Sber Bank (Russian subsidiary), VTB Bank (Belarus), Belvnesheconombank, Belgazprombank**. The **National Bank of the Republic of Belarus (NBRB)** is sanctioned under OFAC. **Belarus was cut from SWIFT in March 2022** (same package as selected Russian banks — Sberbank, VTB Bank). The **Bank for International Settlements (BIS) and ECB** suspended cooperation with NBRB. **Belarus is an EAG (Eurasian Group) member**. The crypto system has expanded massively as evasion route (Belarus has one of the world's most permissive crypto regulations post-Decree 8 of 2017). The Lukashenko regime has generated >300,000 political refugees since 2020 (~150,000 in Poland + Lithuania, Latvia, Ukraine pre-2022, Georgia, Sweden). Sviatlana Tikhanouskaya leads the **Belarusian Democratic Movement** from exile in Vilnius, Lithuania.
December 3, 2019 HK confirmed
Hong Kong: HK$66.4M ($8.5M) to Hang Seng Bank from HKMA+SFC in 2019 — largest Hong Kong fine
Hong Kong's HKMA and Securities and Futures Commission (SFC) imposed on Hang Seng Bank —HSBC group subsidiary— a record HK$66.4 million fine (~$8.5 million USD) for misconduct in investment product selling practices. The SFC reprimanded and fined the bank, in one of the largest disciplinary sanctions in Hong Kong financial center history. Although not strictly AML, the case illustrates the HKMA-SFC coordination on dishonest banking conduct and preceded the specific AML actions of 2024-2025.
December 4, 2024 GB confirmed
UK: £7.67M to Guaranty Trust Bank (UK arm) from the FCA in Dec 2024 — AML repeat offender
The FCA fined in December 2024 Guaranty Trust Bank (UK), the London subsidiary of the Nigerian bank of the same name, £7.67 million (~$9 million) for 'serious weaknesses' in its AML systems and controls between October 2014 and July 2019. The supervisor found the bank had allowed money to pass through and be used within the UK without appropriate checks. The FCA noted the conduct was 'particularly egregious' because it was not the first time: it had already received a £525,000 fine in August 2013 for the same violations — a textbook case of AML recidivism. Part of the FCA's pattern on UK subsidiaries of African banks (previously Habib AG Zurich, etc.).
June 1, 2024 DE confirmed
N26, Solaris, Commerzbank and C24: million-euro BaFin fines for AML failures
On BaFin's 2024 sanctions list, money-laundering-prevention (Geldwäsche) breaches lead: N26, Solaris, Commerzbank and C24 had to pay million-euro fines, all for deficiencies in their AML controls. BaFin warns that, although the fines were imposed in 2024, the violations usually date back several years.
May 9, 2024 DE confirmed
Germany: €9.2M to N26 from BaFin in May 2024 over systemic delays in suspicious activity reports
Germany's Federal Financial Supervisory Authority (BaFin) fined neobank N26 Bank AG in May 2024 €9.2 million (~$10 million) for systemic delays in filing suspicious activity reports (SARs). A textbook case of the AML challenges of fast-growth neobanks: N26, founded in 2013, had scaled to over 8 million European customers, and financial crime controls had not kept pace. In 2021 BaFin had already imposed a 50,000 monthly new-customer cap on N26 for the same reasons. The 2024 fine marked the close of several years of intensive supervision. Part of a broader BaFin pattern of pressuring neobanks: similar to the FCA's UK sanctions on Monzo, Starling and Revolut.
July 15, 2025 MX confirmed
Mexico: CNBV fines Intercam, CIBanco and Vector MXN 185M after 2022-2023 audits
The CNBV fined Intercam Banco, CIBanco and Vector Casa de Bolsa over MXN 185 million (~$10 million) for significant failures in their money-laundering-prevention systems, found in 2022-2023 audits: omissions in client and beneficial-owner identification, unusual-transaction detection and internal controls. Intercam was the most sanctioned (>MXN 92M). The CNBV clarified the sanctions do not imply a direct laundering accusation. The entities can appeal before the Federal Administrative Justice Court.
December 31, 2023 TR confirmed
Turkey: TRY 350M (~$11M) from MASAK on 415 reporting entities in 2023 over AML failures
MASAK (Mali Suçları Araştırma Kurulu), Turkey's Financial Intelligence Unit under the Treasury and Finance Ministry, imposed in 2023 combined administrative fines of over 350 million Turkish liras (~$11 million) after inspections of 415 reporting entities (yükümlü) under Law 5549 on the Prevention of Laundering Proceeds of Crime. The law sets per-infraction caps of TRY 1 million (TRY 10 million for entities with dual obligation). Turkey was on the FATF grey list between October 2021 and June 2024, intensifying supervisory pressure. In May 2026 a judicial operation in 21 cities revealed ~TRY 100 billion and ~$2 billion USD in suspicious movements, with 198 suspects detained (3 bank executives, 8 police, 4 lawyers), evidencing the recent enforcement reach.
November 29, 2024 NG confirmed
Nigeria: CBN sanctions 29 banks with N15B ($10.5M) in 2024 over AML/CTF failures
The Central Bank of Nigeria (CBN), led by Governor Olayemi Cardoso, announced in November 2024 during the Bankers' Night of the Chartered Institute of Bankers of Nigeria (CIBN) in Lagos combined sanctions of 15 billion nairas (~$10.5 million) on 29 banks for violations of AML (Anti-Money Laundering) and CTF (Counter-Terrorism Financing) regulations. In the first six months of 2024, the CBN and Securities Exchange Commission (SEC) had already imposed N1.502 billion in fines on 10 banking entities including Zenith Bank, Access Bank, Stanbic IBTC, UBA, GTB, Sterling, Fidelity, First Bank, FCMB and VFD Group. Notable individual cases: GTCO N692M for forex transactions with betting houses (2021), UBA N279M for late Cyber Security Report. The regulatory framework is BOFIA 2020 (Banks and Other Financial Institutions Act). In H1 2024, the top 7 banks collectively paid $10.7M USD in fines, according to Finance in Africa. Cardoso called on banks to 'address the root causes' of deficiencies.
April 12, 2017 CO confirmed
Colombia: Odebrecht-Ruta del Sol II case — $11M in bribes via Andorra/Mossack Fonseca + 30+ politicians
After Odebrecht's confession to the US DOJ in December 2016 (the largest FCPA case in history with $3.5 billion in bribes in 12 countries), the Colombian case focused on the **Ruta del Sol II** contract (vital country highway, $1.5 billion USD). Odebrecht admitted paying $11 million in bribes to obtain and maintain the contract, laundered through Banco Andorra Bank (BPA, already in this tracker) and Mossack Fonseca (Panama Papers, already in this tracker). Those implicated include: **Gabriel García Morales** (former Vice Minister of Transport 2009-2010, sentenced to 5 years prison), **Otto Bula Bula** (former Senator of the Liberal Party, convicted), **José Elías Melo Acosta** (former President of Corficolombiana, convicted), **Luis Bueno Aguirre** (Odebrecht Colombia). The case impacted **Roberto Prieto Uribe** (former campaign chief of Juan Manuel Santos 2010 and 2014), **Federico Gaviria Velásquez** (consultant), and opened investigations against former President Juan Manuel Santos. The Attorney General's Office (FGN), the Superintendency of Finance of Colombia (SFC) and the Information and Financial Analysis Unit (UIAF) coordinated enforcement. The Colombian banking sector (Bancolombia, BBVA Colombia, Davivienda, Banco de Bogotá, Banco de Occidente, Banco Popular, Scotiabank Colpatria) is concentrated and highly regulated. Colombia is a GAFILAT member.
May 30, 2017 FR confirmed
France: BNP Paribas fined €10M by the ACPR in 2017 over anti-money-laundering system failures
The ACPR Sanctions Commission fined BNP Paribas €10 million (~$11 million) in May 2017 for deficiencies in its anti-money-laundering and terrorism-financing system (LCB-FT). The contrast is telling: the same BNP Paribas had paid around $8.9 billion to US authorities in 2014 for embargo violations; the French penalty was under 0.2% of its net income, fueling debate over the proportionality of European enforcement.
December 31, 2024 MX confirmed
Mexico: CNBV imposed ~800 fines totaling MXN 216M in 2024 (+162% over 2023)
Mexico's National Banking and Securities Commission (CNBV) imposed around 800 fines in 2024 for money-laundering-prevention deficiencies, totaling MXN 216.2 million (~$12 million), 162% more than in 2023. Sofomes and currency-exchange centers were the most sanctioned. The surge comes amid the US designation of cartels as terrorist organizations, raising regulatory pressure on the Mexican financial system.
April 15, 2026 AR confirmed
Argentina: $18B ARS from BCRA to Sur Finanzas/AFA in Apr 2026, linked to AFA's president
The Central Bank of Argentina (BCRA) approved in April 2026 a combined fine of 18 billion Argentine pesos (~$13 million) against ARS Cambios, an exchange house operating under the Sur Finanzas brand, along with operational disqualification and a ban from working in the financial system imposed on owners Ariel Vallejo (5.4B ARS) and his mother Graciela Vallejo (7.2B ARS). The entity was reportedly linked to the president of the Argentine Football Association (AFA), Claudio 'Chiqui' Tapia. The BCRA investigated suspicious movements throughout 2023, when capital controls were in effect and the Central Bank's reserves were under extreme pressure. The scheme identified by the supervisor acquired dollars at official rate to supply the parallel market and profit from the exchange gap (averaging 102% that year), with an estimated profit of $25.8 million USD. Justice is simultaneously investigating laundering of around 819 billion pesos. Sur Finanzas is one of the first Argentine exchange houses sanctioned at this magnitude under the new economic regime.
September 21, 2021 RU confirmed
Russia: SUEX, the first crypto exchange sanctioned by OFAC in 2021 for ransomware laundering
On September 21, 2021, the US Treasury's Office of Foreign Assets Control (OFAC) designated SUEX OTC ('Successful Exchange'), a crypto service registered in Czechia but operating in Russia, in what was the FIRST sanctions action against a cryptocurrency exchange. Treasury established that over 40% of SUEX's known transaction history was associated with illicit actors: nearly $13 million in ransomware operations (including Ryuk, Conti, Maze), over $24 million from scams like Finiko (which raised >$1 billion), and over $20 million from darknet markets like Hydra. A historic landmark that opened the era of sanctions against crypto infrastructure, followed by Chatex (Nov 2021), Garantex (Apr 2022) and Bitzlato (Jan 2023).
December 16, 2024 AU confirmed
Australia: AUSTRAC opens proceedings against Entain Group (Ladbrokes/Neds) in Dec 2024 — first online betting case
On December 16, 2024, AUSTRAC filed in the Federal Court of Australia a civil claim against Entain Group Pty Ltd, the local subsidiary of British giant Entain plc (FTSE 100), operator of Ladbrokes and Neds. The complaint alleges 'serious and systemic non-compliance' with Australia's AML/CTF laws: lack of adequate board and senior management AML oversight, vulnerabilities in customer identity verification, absent due diligence on 17 specific high-risk customers, and 24/7 operations accepting cash deposits via third parties (channels that could obscure possible criminal proceeds). It is AUSTRAC's first civil action against an online betting sector entity. The maximum fine per infraction under the AML/CTF Act 2006 is A$22.2 million (~$14.1M USD). In January 2025, reforms came into force giving AUSTRAC new examination powers and the ability to compel individuals (s.172A). Follows Crown Resorts ($450M, 2023), SkyCity Adelaide ($67M, June 2024) and the pending case against The Star Entities. Mediation ordered before August 4, 2025; defense filing by September 12, 2025.
March 26, 2020 VE confirmed
Venezuela: DOJ Maduro + 14 officials narco-terrorism indictment Mar 2020 — $15M→$25M Maduro reward
On **March 26, 2020**, DOJ + SDNY + DEA + FBI + Treasury OFAC simultaneously announced **'narco-terrorism' charges against Nicolás Maduro Moros** (Venezuelan President since 2013) and **14 other Venezuelan officials** — the first massive criminal indictment of a sitting President for narco-trafficking in US history. Charges include: **narco-terrorism conspiracy, cocaine importation, weapons offenses, NDPS violations**. Those indicted with specific designations: **Maduro** ($15M DEA reward — increased to **$25 million in January 2025**); **Diosdado Cabello** (#2 of regime, former Vice-President, $10M reward); **Tareck El Aissami** (former Vice-President, former Minister of Industry, Syrian-Venezuelan businessman, **$10M reward**); **Vladimir Padrino López** (Minister of Defense, $10M reward); **Maikel Moreno** (former Chief Justice, $5M reward); **Luis Motta Domínguez** (former Minister Electric Energy, $5M reward); **Iván Rincón Urdaneta** (former FANB Vice President); **Hugo 'el Pollo' Carvajal** (former DGCIM director, captured Spain 2014, extradited US 2023, **pleaded guilty narco-terrorism Jun 2023** + cooperator, sentencing pending). DOJ documented **'Cartel de los Soles'** — Venezuelan **state narcotrafficking operation** led by high-ranking military officers since Hugo Chávez era (2000s), coca from Colombia + Venezuelan cocaine production transit + airdrops to Honduras + maritime + Caribbean flights. Venezuela has been **'State Sponsor of Terrorism'** equivalent designated treatment by US, massive sanctions (~$5T Venezuelan economy collapse — hyperinflation 1,000,000%+ 2018-2019, 7M+ refugees, economic crisis worse than Weimar 1923). **Hugo Chávez** (President 1999-2013) died cancer March 2013. **Juan Guaidó** was designated interim President by 60+ countries 2019-2023. **María Corina Machado** won July 28, 2024 elections (75% according to parallel counts) but Maduro declared winner by CNE controlled — refugee Caracas. The elections forced refugee flow to US + Spain + Colombia + Chile + Peru — Venezuelan diaspora **8 million** = 25% population (largest refugee crisis hemisphere). Central Bank Venezuela under political Maduro control. Venezuela is GAFILAT member.
September 29, 2023 US confirmed
US: $15M from FinCEN to Shinhan Bank America in 2023 over BSA violations
FinCEN imposed in September 2023 a $15M sanction via consent order against Shinhan Bank America (SHBA), the New York subsidiary of South Korean Shinhan Bank, for BSA violations. The entity admitted the facts. A characteristic case of FinCEN's sustained enforcement against Asian-bank US subsidiaries, paralleling Mega Bank of Taiwan ($185M, 2016), Agricultural Bank of China ($215M, 2016) and Banamex USA ($140M FDIC + $97M DOJ).
January 14, 2019 NZ confirmed
New Zealand: Cryptopia $16M hack Jan 2019 — collapse + legal precedent on crypto custody
In **January 2019**, **Cryptopia** (New Zealand's largest cryptocurrency exchange, based in Christchurch) suffered a **~$16 million USD hack** that drained multiple wallets over several days. Although the amount was modest compared to other hacks, the case is significant for its **legal dimension**: Cryptopia entered liquidation (managed by Grant Thornton) in May 2019, leaving ~960,000 users with trapped funds. The central legal question was: **are cryptoassets held in custody by an exchange the legal 'property' of users, or are they unsecured creditors of the bankrupt company?** In **April 2020, the High Court of New Zealand issued a historic ruling**: it determined that **cryptocurrencies ARE 'property' in the legal sense** and that they were held **in trust for users** — meaning account holders had preferential rights over the assets above general creditors. It was **one of the first judicial precedents in the world to formally classify cryptocurrencies as legal property** + to protect exchange users in a liquidation. The case is cited internationally in the development of cryptoasset law. New Zealand is supervised by the FMA (Financial Markets Authority) + RBNZ + DIA. New Zealand is a FATF + APG member.
December 31, 2024 KZ confirmed
Kazakhstan: AFM shuts 130 crypto platforms + seized $16.7M in assets in 2024 — Central Asia
Kazakhstan's Financial Monitoring Agency (AFM) executed in 2024 one of Central Asia's broadest AML operations: shut down 130 unlicensed crypto platforms (not registered by the Astana Financial Services Authority, AFSA), seized $16.7 million in digital assets, uncovered 81 underground networks converting crypto to cash processing $43 million (24 billion tenge), and deregistered 3,600 shell companies linked to 30,000 fraudulent transactions worth 280 billion tenge ($511 million) over three years. Additionally, AFM reported $24.1 billion in suspicious cash withdrawals during 2024, often via bank cards under fictitious names. New rules require biometric verification (facial/fingerprint) for cash withdrawals, sender verification for card top-ups over $925, and ATM footage retention for 180 days. Kazakhstan is a member of the Eurasian Group on Combating Money Laundering (EAG) and is co-supervised by Mukhtar Bubeyev (AFM Chairman). Resolution 934 of 2025-2027 introduced Central Asia's most ambitious AML/CFT framework, with FATF, IMF and World Bank advisory.
February 23, 2021 VG confirmed
Tether/Bitfinex: $18.5M in 2021 over false claims about the stablecoin's backing
The New York Attorney General reached an $18.5 million settlement with Tether and Bitfinex in February 2021, barring them from operating in the state, after concluding they had made false statements about the dollar backing of the Tether stablecoin and hidden losses. Although not strictly an AML case, it is a milestone in enforcement over the crypto ecosystem and stablecoin transparency.
April 4, 2023 ZA confirmed
South Africa: 35M ZAR (~$21M) from SARB to Nedbank in 2023 over AML shortcomings
The South African Reserve Bank (SARB) imposed in April 2023 a 35 million rand (~$21 million) penalty on Nedbank for AML non-compliance. The investigation, begun in 2019, found the bank failed to keep accurate records or adopt an appropriate risk-based approach: cash transactions above 24,999.99 rand went unrecorded and enhanced due diligence was not carried out when risk-assessing new clients. SARB noted that Nedbank had not been involved in criminal activity and had cooperated with the investigation, but the control failures could have exposed the bank to money laundering. Figure consistent with SARB's intensification in the 2019 cycle that sanctioned five banks (Absa, Capitec, Standard Bank, Nedbank, HBZ).
May 29, 2017 SG confirmed
Singapore: MAS imposed S$29.1M on eight banks and shut BSI and Falcon over the 1MDB scandal
After its largest investigation of illicit flows, the Monetary Authority of Singapore (MAS) imposed fines of S$29.1 million (~$21 million) on eight banks (BSI, Falcon, DBS, UBS, Standard Chartered, Coutts, Credit Suisse and UOB) for AML failures linked to the Malaysian sovereign fund 1MDB. The most severe was not the fine: MAS shut BSI Bank (first closure in 32 years) and Falcon Bank for 'egregious' control failures, and imposed prohibition orders on employees from 10 years to lifetime. It shows closures and bans weigh more than fines.
May 13, 2026 FR confirmed
France: €20M from ACPR to Société Générale in May 2026 — recent French retail banking record
The Sanctions Commission of the Autorité de contrôle prudentiel et de résolution (ACPR), the French regulator linked to the Banque de France, imposed on May 13, 2026 on Société Générale —as an insurance intermediary— a blâme and a €20 million pecuniary sanction (~$22 million). The supervisor found 'serious and repeated breaches' of information and advisory obligations in commercializing for 8 years an insurance automatically included in the Sobrio offering without properly informing or advising clients, plus 'Certicompte', 'Certi Epargne' and 'Mon Assurance Mobile' contracts. The decision was published in the ACPR's registry under nominal identification for 5 years. A recent case complementing the €5 million penalty on Société Générale in 2017 for money laundering and the €1 million on its subsidiary Treezor in 2024. The ACPR record remains La Banque Postale (€50 million, 2018, for counter-terrorism financing).
November 12, 2024 GB confirmed
UK: £16.7M to Metro Bank from the FCA in 2024 over four-and-a-half-year transaction monitoring failures
The FCA fined Metro Bank in November 2024 £16.7 million (~$22 million) for failings in its automated transaction monitoring system. Although Metro Bank had automated transaction monitoring, the FCA found its systems did not work as intended and that certain transaction data was not monitored for four-and-a-half years. Junior bank staff had raised internal concerns that were not addressed. A paradigmatic case of the risk of poorly calibrated automation: having the system is not the same as having effective coverage.
December 2, 2016 SG confirmed
Singapore: SGD 30M from MAS to 8 banks over 1MDB — the largest-ever Singaporean AML operation
MAS imposed between 2016-2017 combined fines of SGD 30M (~$22M) on 8 institutions for 1MDB roles. Individual amounts: Standard Chartered SGD 5.2M; Coutts SGD 2.4M; UBS SGD 1.3M; DBS SGD 1M; United Overseas Bank; Credit Suisse; extreme cases BSI (closed May 2016, SGD 13.3M) and Falcon (closed October 2016, SGD 4.3M). MAS issued 8 Prohibition Orders (3 years to lifetime). Tim Leissner (Goldman Sachs Singapore) got Prohibition Order notification for false statements. Singapore's largest-ever AML operation.
February 4, 1976 US confirmed
US: Lockheed bribery scandal 1976 — $22M bribes Japan/Netherlands/Italy → originated the FCPA Act 1977
On **February 4, 1976**, during the **US Senate Church Committee hearings** (Frank Church, investigation of US intelligence + corporate misconduct), **Lockheed Corporation** (largest US aerospace defense contractor) revealed it had paid **~$22 million USD in bribes to foreign government officials** between 1950s-1970s to sell aircraft (TriStar L-1011, F-104 Starfighter, P-3 Orion, C-130 Hercules) — **one of the most impactful corporate corruption scandals in history, which directly originated the Foreign Corrupt Practices Act (FCPA) of 1977**, the world's first national law criminalizing transnational bribery. The most prominent cases: **(1) Japan** — Lockheed paid **$3M to Prime Minister Kakuei Tanaka** (via Marubeni trading company + ultra-nationalist Yoshio Kodama, former yakuza affiliate) so All Nippon Airways would buy TriStar aircraft — Tanaka **arrested July 1976, convicted in 1983 to 4 years** (appeal pending at his death 1993) — Japan's biggest post-WWII political scandal, brought down the LDP government; **(2) Netherlands** — **Prince Bernhard** (Queen Juliana's consort) received **$1.1M** in bribes — forced to resign from all his military/business positions 1976 (royal scandal); **(3) Italy** — payments to Christian Democrat + Social Democrat politicians (Italian Lockheed scandal, President Giovanni Leone forced to resign 1978); **(4) West Germany, Turkey, Saudi Arabia** (Adnan Khashoggi $106M commissions as middleman). **Carl Kotchian** (Lockheed Vice-Chairman/President) testified before the Senate + wrote memoirs. **A. Carl Kotchian + Daniel Haughton** (Chairman) forced to resign. The **FCPA Act was signed by Jimmy Carter on December 19, 1977** — prohibited US companies + nationals from paying bribes to foreign officials, required accurate books & records, established SEC + DOJ joint enforcement. FCPA was **the global model** for OECD Anti-Bribery Convention (1997), UK Bribery Act (2010), etc. The Lockheed case is **referenced as the origin of the modern transnational anti-corruption global regime**.
November 15, 2025 KR confirmed
South Korea: KRW 35.2B ($24M) from FIU to Upbit/Dunamu in Nov 2025 — first of Korean crypto sweep
The Korean FIU completed in November 2025 a KRW 35.2B fine (~$24M) against Dunamu, operator of Upbit, South Korea's largest crypto exchange. First major sanction of a sequential 'first-in, first-out' enforcement wave following inspections begun August 2024. Sanctions followed against Korbit (KRW 27.3B ~$1.89M, ~22,000 customer due diligence violations + 655 violations for NFT services without risk assessment), GOPAX, Bithumb (KRW 36.8B / $24.6M in March 2026) and Coinone. Registered exchanges fell 26% amid general Korean AML tightening.
September 1, 2023 KR confirmed
Shinhan (South Korea): $25M to its New York unit for AML deficiencies
The New York unit of South Korean giant Shinhan Financial Group agreed in September 2023 to pay $25 million to US federal and New York state regulators, over claims of 'substantial compliance deficiencies' in its transaction monitoring and its Bank Secrecy Act obligations, despite earlier enforcement measures to fix the problems.
April 5, 2022 RU confirmed
Russia/Germany: April 2022 international takedown of Hydra, the world's largest darknet market ($5bn)
On April 5, 2022, in a coordinated operation between Germany's Central Office for Combating Cybercrime (ZIT) and the Federal Criminal Police Office (BKA), Hydra Market's servers were dismantled. Germany seized 543.3 bitcoin worth around $25 million. The same day, OFAC designated Hydra and added more than 100 associated crypto addresses to the SDN list, identifying approximately $8 million in ransomware proceeds (Ryuk, Sodinokibi, Conti) that had transited Hydra. Hydra had facilitated over $5 billion in bitcoin transactions since its launch in December 2015, according to Elliptic, offering drugs, cybercrime tools and laundering services in Russian. Garantex was sanctioned the same day (Estonia/Russia, already in the tracker), evidencing a multi-front offensive against Russian crypto infrastructure.
March 1, 2025 DE confirmed
Deutsche Bank: €23.05M from BaFin in 2025, more than all German banking in 2024
The German financial authority BaFin imposed three fines on Deutsche Bank in 2025 totaling €23.05 million —more than all German banks paid together in 2024— for breaching organizational obligations of the Securities Trading Act (WpHG) in derivatives distribution, and for violations by its Postbank unit in recording advice and account-switching assistance.
March 16, 2026 KR confirmed
South Korea: KRW 36.8B ($24.6M) from FIU to Bithumb in Mar 2026 — second of the crypto sweep
Korea's FIU imposed in March 2026 on Bithumb, South Korea's second-largest crypto exchange, a KRW 36.8B fine (~$24.6M). Continuation of the sequential enforcement wave begun with Upbit/Dunamu (KRW 35.2B November 2025) and Korbit (KRW 27.3B). Decision based on failure to adequately comply with anti-money-laundering regulations. Bithumb had been inspected between March and April 2025. Easily meets the tracker's freshness criterion (very recent case, ~2 months ago).
March 7, 2025 RU confirmed
Garantex: the Russian exchange dismantled in 2025 after processing $96bn and evading years of sanctions
The Russian crypto exchange Garantex was dismantled on 7 March 2025 in a coordinated operation between the US (DOJ, OFAC, Secret Service), Germany and Finland. OFAC had already sanctioned it in April 2022 for facilitating ransomware payments (groups like Conti) and dark-web markets (Hydra), but the exchange kept operating: per the DOJ it processed around $96 billion since 2019. Its domains and servers were seized and over $26 million frozen; its administrators were criminally charged. The EU sanctioned it in 2024-2025, marking Europe's first designation of specific crypto addresses. A landmark crypto sanctions-evasion case.
May 29, 2025 AE confirmed
UAE: AED 100M from CBUAE to a repeat-offender exchange house in May 2025
CBUAE imposed in late May 2025 a 100 million dirham fine (~$27.2 million) on a second exchange house within just two weeks. A paradigmatic recidivism case: the business had been previously warned and had failed to implement the necessary improvements. This time the supervisor added an operational restriction to the financial sanction. The penalty was imposed under Article 137 of Federal Decree-Law No. 14 of 2018, governing the country's central banking and financial regulatory framework. The figure confirmed the 'reduced tolerance for repeat offenders' that CBUAE communicated in 2025.
July 7, 2025 GB confirmed
UK: £21.1M to Monzo from the FCA in Jul 2025 over AML failings during its tenfold growth
The FCA imposed on Monzo Bank in July 2025 a fine of £21,091,300 (~$28 million, reduced from £30.1 million by a 30% early-settlement discount) for AML failings during the neobank's tenfold growth period. Between 2018 and 2022 its customer base went from around 600,000 to 5.8 million (and to more than 12-13 million by 2025), but financial crime controls did not keep pace. The FCA found cases of customers with foreign addresses using UK postcodes, or 'obviously implausible' addresses like those of famous British landmarks. Monzo also violated a voluntary requirement imposed by the FCA in August 2020 prohibiting it from onboarding high-risk customers: it opened more than 34,000 such accounts between August 2020 and June 2022. The FCA's tenth bank AML fine in four years.
October 11, 2022 US confirmed
Bittrex: $29M in 2022, one of the first major AML penalties against a crypto exchange
FinCEN announced a $29 million settlement with crypto exchange Bittrex in October 2022 for failing to maintain an adequate Bank Secrecy Act compliance program. It was one of the first major AML enforcement actions against a crypto platform, anticipating the front later marked by Binance, OKX and BitMEX.
August 2, 2022 US confirmed
US: NYDFS fines Robinhood Crypto $30M in Aug 2022 — first NYDFS crypto enforcement
On August 2, 2022, the New York State Department of Financial Services (NYDFS) announced its first crypto company enforcement action: a $30 million fine against Robinhood Crypto, LLC (RHC), subsidiary of Robinhood Markets Inc. NYDFS found 'significant failures' in RHC's BSA/AML and cybersecurity program, in violation of the Cybersecurity Regulation (23 NYCRR Part 500), Virtual Currency Regulation (NYCRR Part 200), Money Transmitter Regulation (3 NYCRR Part 417) and Transaction Monitoring Regulation (23 NYCRR Part 504). RHC has operated under a Virtual Currency license (BitLicense) in New York since January 2019. Specific deficiencies included: inadequately staffed BSA/AML program, inappropriate reliance on affiliates Robinhood Markets (RHM) and Robinhood Financial (RHF) for 'substantial aspects' of the compliance program, failure to transition from a manual transaction monitoring system to an automated one adequate for 106,000 daily transactions ($5.3M daily as of September 2019), and certification to the Department of compliance despite issues. Robinhood had already set aside $15M a year earlier for 'probable losses'. Superintendent Adrienne A. Harris emphasized: 'when a licensee breaks the law or the Department's rules, DFS will keep looking into it'. RHC had to engage an independent consultant. It set precedent for Paxos, Coinbase, BitMEX and all subsequent BitLicense holders.
August 2, 2022 US confirmed
US: Robinhood Crypto $30M NYDFS settlement for AML/BSA failures — first major NYDFS crypto enforcement (Aug 2022)
On August 2, 2022, Robinhood Crypto LLC agreed to pay $30M to NYDFS in first major NYDFS enforcement against a crypto company (precedent for Block, Tornado Cash, etc.). Failures: deficient BSA program; inadequate transaction monitoring; deficient CIP/EDD for high-risk customers; deficient cybersecurity under NYDFS 23 NYCRR 500. Required independent monitor for 18 months + expanded reporting. Robinhood Crypto processes ~$10 billion in crypto trades annually with 18M+ active users. Vlad Tenev (Co-Founder/CEO) faced continuous criticism for prioritizing growth and gamification over compliance — including GameStop short squeeze case Jan 2021 that led to restricting GME trading causing outcry and lawsuits. NYDFS BitLicense was created in 2015 — Robinhood obtained BitLicense in 2019 after 1+ years of application.
February 9, 2023 US confirmed
US: Kraken $30M SEC settlement — staking program shutdown US Feb 2023 + Iran OFAC violations
On **February 9, 2023**, **Kraken (Payward Inc, Co-founded by Jesse Powell 2011, ~7M users)** agreed to pay **$30 million USD to SEC in settlement** + **shutdown of 'Kraken Staking' program for US clients** (the program paid 4-20% APY on staking ETH, ADA, SOL, DOT, ATOM, MATIC, etc. to 1M+ US users). SEC alleged the staking program was an 'unregistered securities offering' under Howey Test — the first major SEC enforcement against a crypto staking program. Additionally, in **November 2022, Kraken agreed $362,158 settlement with OFAC** for processing **826 transactions worth $1.7M for Iran users (geographic IP detection failed)** between 2015-2019. **Jesse Powell** (Co-Founder/CEO 2011-2023) resigned CEO September 2022, **David Ripley** (COO) assumed CEO. Kraken **has NOT obtained NYDFS BitLicense** and operates with state-by-state licenses + Federal MSB registration. Kraken has been vocal opponent of SEC enforcement style ('regulation by enforcement' criticism Gary Gensler-era 2021-2024). Post-Trump 2.0 (January 2025), SEC has **dropped Kraken case June 2025** (along with Coinbase, Binance, Robinhood cases) — reflects crypto-friendly enforcement turn. Kraken announced **IPO planned 2025-2026** and registered with **Australian Securities and Investments Commission (ASIC)** + **Cyprus Securities and Exchange Commission (CySEC)** + **Bermuda Monetary Authority** + **Malta Financial Services Authority** + **UK FCA registration**.
December 31, 2023 AE confirmed
UAE: the Central Bank imposed AED 113M in AML fines in 2023 (181 on-site exams)
The UAE Central Bank conducted 181 on-site examinations in 2023 and imposed over AED 113 million (~$31 million) in fines on banks, exchange houses, insurers and hawaladars for AML/CFT breaches. The Emirati FIU processed over 8,300 intelligence requests and signed 68 MOUs with foreign FIUs. It reflects the country's effort to strengthen supervision after FATF pressure.
October 2, 2024 GB confirmed
UK: £28.96M to Starling from the FCA in 2024 over 'shockingly lax' controls and 54,000 high-risk accounts
The FCA fined Starling Bank in October 2024 £28.96 million (~$39 million, originally £41 million before settlement discount) for AML failings described as 'shockingly lax'. Despite a regulatory restriction barring the bank from opening accounts for high-risk customers, Starling opened more than 54,000 such accounts between 2021 and 2023. The bank's sanctions screening system had also been misconfigured for years, leaving it 'wide open to criminals' until a 2023 internal review. The FCA noted it had resolved the case in just 14 months, compared with the 42-month average for cases closed in 2023-2024, in what it described as an acceleration of its enforcement pace.
June 10, 2018 KR confirmed
South Korea: Coinrail $40M hack Jun 2018 — minor exchange with global market impact
On **June 10, 2018**, **Coinrail** (a medium-sized South Korean cryptocurrency exchange) suffered a **~$40 million USD hack** in various tokens (mainly Pundi X/NPXS, Aston, NPER and other lower-cap ERC-20 tokens). Although Coinrail was a relatively minor exchange, the hack had a **notable impact on the global crypto market**: it coincided with (and was partially blamed for) a ~10% drop in Bitcoin's price that weekend, illustrating how even hacks to secondary exchanges could affect market sentiment in 2018. Coinrail managed to **freeze and recover part of the stolen tokens** with the cooperation of issuing projects (which froze or reissued tokens) — a precedent for the recovery model that KuCoin would later use. The case occurred amid South Korea's regulatory boom on crypto (one of the world's largest markets) and reinforced concerns about the security of small Korean exchanges. South Korea is supervised by the FSC + FSS + KoFIU + KISA. South Korea is a FATF + APG member.
May 13, 2004 US confirmed
Riggs Bank: $41M in 2004 over the Pinochet and Equatorial Guinea accounts, ended up sold
Washington's historic Riggs Bank was fined $25 million by the OCC in 2004 —then the largest AML penalty of its kind— for serious failures controlling accounts linked to former Chilean dictator Augusto Pinochet and the Equatorial Guinea regime, hiding movements of tens of millions. With other penalties the total was around $41 million. The reputational scandal ultimately forced the sale of the bank, one of the oldest in the US. A foundational case of modern AML enforcement.
June 7, 2024 AU confirmed
Australia: A$67M ($45M) to SkyCity Adelaide from AUSTRAC in Jun 2024 over AML/CTF failures
On June 7, 2024, the Federal Court of Australia ordered SkyCity Adelaide Pty Ltd to pay A$67 million (~$45M USD) in fines for breaches of the AML/CTF Act 2006. AUSTRAC had initiated the proceedings on December 7, 2022. The investigation revealed weaknesses in SkyCity's high-risk channels and insufficient due diligence on a large number of high-risk customers (including junket operators and international high-rollers), inadequate money-laundering risk management, lack of appropriate board and senior management oversight, and failures to respond to signs of suspicious behavior. SkyCity operates casinos in Adelaide (Australia) and Auckland/Hamilton/Queenstown (New Zealand). It is the fourth major AUSTRAC sanction in the casino sector after Tabcorp (A$45M, 2017), CBA (A$700M, 2018), Westpac (A$1.3B, 2020) and Crown Resorts (A$450M, 2023).
March 15, 2023 DE confirmed
ChipMixer: 2023 international takedown of the mixer that laundered ~$3bn in crypto
In March 2023, in a coordinated operation between the FBI, Europol and German police, the dark-web crypto mixing service ChipMixer was dismantled, accused of laundering around $3 billion. German authorities seized $46 million in crypto and the service's servers, and the US seized domains and a GitHub account. An example of cross-border enforcement against crypto-laundering infrastructure.
November 8, 2021 LV confirmed
Latvia/Russia: OFAC sanctions in Nov 2021 Chatex, the Telegram bot founded by the same founder as SUEX
On November 8, 2021, OFAC designated Chatex, a P2P cryptocurrency service based on a Telegram bot with presence in Latvia and Russia and over 366,000 users. Per Treasury, more than half of Chatex transactions could be traced to illicit or high-risk activities (darknet markets, ransomware). OFAC also designated IZIBITS OU, Chatextech SIA and Hightrade Finance Ltd, the three companies that built Chatex's infrastructure. Key detail: Chatex was founded by Egor Petukhovsky, the same creator of SUEX (sanctioned two months earlier), evidencing that the network of Russian ransomware-enabling services operated under common individuals. Second OFAC action against a crypto exchange.
February 12, 2013 IT confirmed
Italy/India: AgustaWestland case (2013) — €52M in bribes to Tyagi family + European intermediaries
On February 12, 2013, Italian authorities arrested Giuseppe Orsi (CEO of Finmeccanica, Italian state-controlled defense conglomerate) and Bruno Spagnolini (CEO of AgustaWestland) over the case of **VVIP AW101 helicopters sold to India**. The €556 million contract (8 helicopters for VVIP transport of the Indian Air Force) signed in 2010 with the Singh administration (UPA-2) had involved **€52 million ($60M USD) in bribes** distributed via European intermediaries: Christian Michel (British, extradited from UAE to India in December 2018), Carlo Gerosa (Swiss), Guido Haschke (Italian). The main recipients in India were members of the Tyagi family: Air Marshal Shashindra Pal Tyagi (head of the Indian Air Force during the contract, subsequently arrested by CBI India), his three cousins (Julie Tyagi, Sandeep Tyagi and Docsa Tyagi). Funds flowed via accounts in Switzerland and Tunisia, with use of shell companies in Mauritius and Singapore. The Swiss OAG froze assets. India's Central Bureau of Investigation (CBI) pursued the domestic case, while the British Serious Fraud Office (SFO) and Italian Prosecutors worked in parallel. Final convictions were mixed: Orsi was acquitted in Italy in 2018, but partially convicted in 2019 appeal trial. The case caused the fall of the Finmeccanica CEO and rebrand to Leonardo S.p.A. in 2017.
August 5, 2016 PH confirmed
Philippines: $53M from BSP to RCBC in Aug 2016 over Bangladesh Bank cyber heist — Philippines' largest fine
On February 4, 2016, hackers linked to North Korea's Lazarus Group sent 35 fraudulent transfer instructions through the SWIFT system from Bangladesh Bank's account at the Federal Reserve Bank of New York, attempting to steal nearly $1 billion. They managed to transfer $101 million, of which $81 million reached four accounts at the Jupiter Street branch of Rizal Commercial Banking Corporation (RCBC), a mid-sized Philippine bank. The money was converted into pesos and disappeared into Manila casinos, exploiting weak Philippine AML laws on gambling transactions. In August 2016, the BSP imposed on RCBC a fine of 1 billion Philippine pesos (~$52.92 million), the largest sanction ever issued by the Philippine supervisor. Bangladesh Bank governor Atiur Rahman resigned. Branch manager Maia Santos-Deguito was convicted in 2019 on 8 money-laundering counts (4-7 years prison each). In September 2025, a Dhaka court ordered the confiscation of the $81M from RCBC after a 9-year legal battle. A founding case of cybersecurity risk in cross-border payments.
May 1, 2025 AE confirmed
UAE: AED 200M (~$54.4M), the Central Bank's largest AML penalty against an exchange house (2025)
The UAE Central Bank (CBUAE) imposed in May 2025 a AED 200 million (~$54.4 million) sanction on an unnamed exchange house for systemic AML/CFT control failures —inadequate due diligence, weak monitoring and late FIU reporting—, plus a AED 500,000 fine on its branch manager with a ban from practicing. It was the Emirati regulator's largest AML penalty, amid a crackdown following the country's exit from the FATF grey list in 2024.
November 5, 2021 US confirmed
US: bZx $55M hack Nov 2021 — DeFi pioneer + first CFTC precedent against a DAO
**bZx** (a pioneer DeFi lending protocol, later renamed Fulcrum/Ooki) has dual relevance. **(1) Hacks:** bZx was one of the first DeFi protocols to suffer **flash loan attacks** (two in February 2020, ~$1M, considered the first documented DeFi flash loan attacks) and then a major hack of **~$55 million USD in November 2021** (a developer fell for a phishing attack that compromised the protocol's private keys). **(2) Historic regulatory precedent:** in **September 2022, the CFTC took unprecedented action against the 'Ooki DAO'** (the decentralized autonomous organization governing the bZx/Ooki protocol) — arguing that the DAO was an 'unincorporated association' legally responsible for operating an illegal derivatives trading platform. The CFTC **won the case in 2023** (a federal court ruled that the Ooki DAO was liable + imposed a $643,542 fine + ordered its shutdown), establishing the **historic precedent that a DAO can be considered a liable legal entity** and sanctioned by regulators — a blow to the notion that decentralization exempts from legal liability. The case is referenced as **the foundational precedent on the legal liability of DAOs + the first DeFi flash loan attacks**. It has enormous implications for decentralized governance.
July 16, 2025 GB confirmed
United Kingdom: £42M to Barclays from the FCA in Jul 2025, the largest UK AML fine since 2022
The Financial Conduct Authority (FCA) imposed in July 2025 a total of £42 million (~$56 million) on Barclays Bank PLC and Barclays Bank UK PLC in two separate cases. The largest, £39.3 million on Barclays Bank PLC (reduced from £56.2 million for early settlement), is for failings in managing money laundering risk at Stunt & Co, which received £46.8 million in just over a year from Fowler Oldfield, a multimillion-pound laundering operation; Fowler Oldfield's directors were sentenced to more than 11 and 10 years in prison in March 2025. The second case, £3.1 million on Barclays Bank UK PLC, for opening a client money account for WealthTek without checking the Financial Services Register, which showed the firm was not authorized to hold client funds. It is Barclays' third FCA AML fine, after those of 2015 and 2022.
December 21, 2018 FR confirmed
France: La Banque Postale fined €50M by the ACPR in 2018, France's largest AML penalty at the time
The ACPR Sanctions Commission (Bank of France) fined La Banque Postale in December 2018 a reprimand plus €50 million (~$57 million) for failures detecting transactions by asset-frozen persons in its 'mandats cash' service (fast transfers without an account). The ACPR found 75 transfers between 2009 and 2017 by 10 asset-frozen persons, nine from anti-terrorism investigations. It was the French supervisor's largest monetary penalty against a bank at the time; the Council of State upheld it.
September 14, 2018 JP confirmed
Japan: Zaif $60M hack Sep 2018 — Japanese exchange sold to Fisco after the theft
On **September 14, 2018**, **Zaif** (a Japanese cryptocurrency exchange operated by Tech Bureau Corp, based in Osaka) suffered the theft of **~$60 million USD** in Bitcoin, Bitcoin Cash and MonaCoin (of which ~$37M were customer funds and the rest the company's own). The hack was made possible by a security flaw in the hot wallets. It was one of several hacks that hit Japanese exchanges in 2018 (after Coincheck in January). The **Japan FSA**, which had already intensified supervision post-Coincheck, had issued **improvement orders to Zaif/Tech Bureau** even before the hack (the company had known compliance deficiencies). After the theft, Tech Bureau, unable to cover the losses on its own, **agreed to sell Zaif to Fisco Cryptocurrency Exchange** (in exchange for a capital injection of ~¥5 billion to reimburse users). The case reinforces the pattern of **Japanese exchanges as recurring targets** (Mt. Gox 2014, Coincheck 2018, Zaif 2018, DMM 2024) and the progressively stricter regulatory response of the Japanese FSA, a global pioneer in crypto regulation. Japan is a FATF + APG member.
October 19, 2020 US confirmed
Helix: $60M from FinCEN in 2020, the first bitcoin mixer penalized for money laundering
FinCEN imposed a $60 million civil penalty in October 2020 on Larry Dean Harmon, operator of the crypto mixers Helix and Coin Ninja —FinCEN's first action against a bitcoin 'mixer'—. Helix processed around 354,468 bitcoin (~$300 million at the time) advertised on the dark web to anonymously pay for drugs and guns. Harmon pleaded guilty to laundering conspiracy in 2021, was sentenced to three years in prison and over $400 million in assets were forfeited.
December 19, 2017 KR confirmed
South Korea: Youbit bankruptcy Dec 2017 — exchange went bankrupt after hack (DPRK suspected)
On **December 19, 2017**, **Youbit** (a South Korean cryptocurrency exchange, formerly called Yapizon) declared bankruptcy after suffering its **second hack of the year** — losing approximately **17% of its total assets**. The first hack (April 2017) had already cost it ~$5M; the second (December 2017) was the final blow that led to immediate insolvency. Combined losses were estimated in the range of **$70 million USD**. The South Korean intelligence service (**NIS**) and KISA **attributed the attacks to North Korea (DPRK)** — one of the first publicly documented cases of North Korean attacks on South Korean exchanges as part of its **proliferation finance** campaign. Youbit was notable for being **one of the first exchanges to go bankrupt directly as a consequence of a hack** (unlike Mt. Gox which took years, Youbit collapsed immediately). The case accelerated South Korea's regulatory tightening on crypto exchanges. It established the precedent of the pattern of **DPRK attacking its southern neighbor** — which would continue with attacks on Bithumb, Upbit, and others. South Korea is supervised by the FSC + FSS + KoFIU. South Korea is a FATF + APG member.
March 6, 2026 US confirmed
US: $80M from FinCEN to global broker-dealer in Mar 2026 — broker-dealer record in BSA history
On March 6, 2026, FinCEN entered into a consent order imposing $80 million civil penalty on a global broker-dealer (not named in the public version of the consent order). It is the largest enforcement action under the Bank Secrecy Act (BSA) ever applied against a broker-dealer. FinCEN identified: years of inadequate AML controls, unreviewed surveillance reports, arbitrary filters in monitoring systems, design flaws in surveillance systems that FinCEN treated as willful (deliberate, not merely negligent), and chronic customer due diligence deficiencies. The action is executed under the framework of the 10 factors established in FinCEN's August 2020 Statement on Enforcement of the BSA. The Treasury's 2026 National Money Laundering Risk Assessment identifies broker-dealers (~3,300 firms with total assets of $6.4 trillion) as carriers of significant exposure to customers seeking to disguise illicit proceeds within legitimate operations or engage in fraudulent trading. The action adds to recent OFAC actions against broker-dealers, now fully integrating sanctions compliance within the AML examination framework.
March 6, 2026 US confirmed
US: FinCEN imposes $80M historic BSA record broker-dealer (Mar 2026) — AML non-compliance Mar 2018-Jun 2024
On **March 6, 2026**, **FinCEN (Financial Crimes Enforcement Network of the US Treasury Department)** entered into a **consent order with a global broker-dealer imposing $80 million USD in civil money penalty** — **the largest BSA enforcement action** (Bank Secrecy Act) **ever imposed against a broker-dealer in FinCEN's history**. The action was based on the broker-dealer's alleged willful failure to implement an effective AML program **from approximately March 2018 through June 2024**. FinCEN considered as aggravating factor that the broker-dealer **'acknowledged deficiencies from 2013 onward without remediating'** — pattern of chronic non-compliance documented over more than a decade. The coordinated multi-agency action involved: **FinCEN, SEC, FINRA, NY state regulators, NJ state regulators and Canadian regulators**, with additional scrutiny anticipated from OFAC on sanctions compliance. The **SEC FY2026 Examination Priorities** confirmed continued focus on whether broker-dealers are tailoring their AML programs to their business model and associated risks, conducting independent testing and remediating findings (SEC Risk Alert July 2023). The case is particularly significant because it **sets new precedent for multi-agency enforcement against broker-dealers**, historically less regulated from an AML perspective than commercial banks. The **FinCEN proposed whistleblower program (NPRM March 30, 2026)** would create financial incentives for individuals to report BSA, US sanctions and related national security laws violations, with comments due June 1, 2026 — an expected sea change in AML enforcement.
January 31, 2025 US confirmed
US: $80M to Block Inc/Cash App from 48 state regulators in Jan 2025 over BSA/AML failures
On January 31, 2025, Block Inc., parent company of Cash App (the popular mobile payments app founded by Jack Dorsey, ex-Twitter), agreed to pay $80 million as a result of a coordinated action by 48 US state financial regulators. The investigation, led by NMLS (Nationwide Multistate Licensing System) and the Conference of State Bank Supervisors (CSBS), found that Cash App: violated the Bank Secrecy Act (BSA), had a deficient AML program, failed to implement adequate Know Your Customer (KYC) for high-risk users, did not monitor suspicious transactions in a timely manner, and filed SARs (Suspicious Activity Reports) late. It is the first major coordinated multistate sanction against a large-scale peer-to-peer mobile payment provider, setting precedent for Venmo (PayPal), Zelle, Apple Cash and others. Block Inc. also faces parallel investigations from FinCEN and the SEC. Cash App has approximately 56 million active US users and processes more than $200 billion annually.
January 15, 2025 US confirmed
US: Block/Cash App paid $80M settlement with 48 states for AML/BSA failures (Jan 2025)
On January 15, 2025, Block Inc (formerly Square) agreed to pay $80M in coordinated settlement with 48 US states led by CSBS. Covers massive Cash App failures (~50M active users) under BSA, AML and CFT regulations: deficient CIP, inadequate transaction monitoring that failed to detect suspicious patterns associated with human trafficking, online fraud, drug trafficking; late or incomplete SARs; deficient product risk assessment. Settlement required major reforms + independent monitor for 36 months + expanded reporting. One of largest enforcement actions by US state regulators against fintech (only surpassed by TD Bank $3B 2024). Block was previously investigated by NYDFS (Cash App Investing 2023, first NYDFS crypto enforcement against Block — $30M case aml-block-cash-app-investing-nydfs-2022). Jack Dorsey (also former Twitter CEO) has been criticized for prioritizing growth over compliance.
February 4, 2016 BD confirmed
Bangladesh/US: DPRK Lazarus stole $81M from Bangladesh Bank via Fed NYC — Feb 2016 (cyber heist record)
Between **February 4 and 5, 2016**, **DPRK's Lazarus Group hackers** executed one of the most sophisticated cyber thefts in history: they sent **35 fraudulent SWIFT orders to the Federal Reserve Bank of New York totaling $951 million USD**, attempting to transfer funds from Bangladesh Bank (Bangladesh's central bank) to accounts in Philippines, Sri Lanka, US, China. **5 orders for $101M were paid** before a typo (the word 'fandation' instead of 'foundation' in a transfer instruction) alerted Deutsche Bank acting as intermediary. **$81 million arrived at 4 RCBC (Rizal Commercial Banking Corporation) accounts** in Philippines, **$20M at Pan Asia Banking in Sri Lanka** (recovered). Of the $81M in Philippines: **$58M were laundered via Manila casinos** (Solaire, City of Dreams, Midas Hotel) — the only legally protected way in pre-2016 AMLA amendments Philippines for large cash transactions — **$15M were recovered, $66M permanently lost**. The cyber heist was officially attributed to **DPRK's Lazarus Group** (also responsible for Sony Pictures hack 2014, WannaCry ransomware 2017, Bybit $1.5B hack 2025 case aml-huione-group-fincen-2025). **Park Jin Hyok** (DPRK national, Chosun Expo Joint Venture programmer) was **indicted by DOJ + FBI in September 2018** — remains fugitive in DPRK + FBI Cyber Most Wanted. **RCBC Philippines** was fined **$20M Philippine peso maximum by BSP** + **$60M Bangladesh-RCBC settlement 2019** — former branch manager Maia Santos-Deguito sentenced in Philippines. The case forced **massive SWIFT reforms (Customer Security Programme CSP 2017+)** + **Bangladesh Bank reforms** (Atiur Rahman governor resigned). The case is referenced as **'the first cyber-heist of a sovereign central bank'** and catalyzed the **focused attention of FATF + UN Panel of Experts DPRK on cybercrime as proliferation finance vector**.
August 25, 2011 US confirmed
JPMorgan: $88.3M from OFAC in 2011 for violating sanctions against Iran and others
JPMorgan paid $88.3 million in 2011 to settle OFAC claims that it had violated economic sanctions against Iran and other US-embargoed countries. In 2013, the Treasury also issued a cease-and-desist order describing 'systemic deficiencies' in its anti-money-laundering efforts, noting the bank had 'failed to identify significant volumes of suspicious activity'.
May 22, 2017 US confirmed
US: Citigroup pays $97.4M to DOJ over Banamex USA's criminal AML violations
Citigroup agreed in May 2017 to pay $97.4 million to the Department of Justice (DOJ) following a long criminal investigation of Banamex USA. In a non-prosecution agreement, Banamex USA admitted to having 'willfully' violated anti-money-laundering rules and the Bank Secrecy Act over five years through 2012: with more than 18,000 alerts on potentially suspicious transactions between 2010 and 2012, the unit investigated fewer than 10 cases. The unit had only two people assigned to manually review thousands of suspicious transactions, and one account in Mexico received 1,400 remittances from 950 senders in 40 states without a report. It was the DOJ's first such agreement with a major bank under the Sessions administration.
December 31, 2024 AE confirmed
UAE: CBUAE tightens enforcement post-FATF exit Feb 2024 — Emirati banks + UAE Gold + dual-use technology
The **Central Bank of the United Arab Emirates (CBUAE)** intensified enforcement actions during 2023-2024 post-UAE exit from FATF grey list in February 2024 (entry in March 2022). **More than $100M in accumulated administrative fines** were imposed on multiple Emirati banks: Mashreq Bank, Emirates NBD, Abu Dhabi Islamic Bank (ADIB), Commercial Bank of Dubai (CBD), Emirates Islamic Bank, First Abu Dhabi Bank (FAB, largest in UAE). Specific Emirati AML risks that generated FATF sanctions and subsequent CBUAE actions: **(1) UAE Gold Rush** — Dubai is the world's largest gold importer-exporter ($30-50 billion annually), receiving gold from Sudan RSF ($2.5B/year), Mali Wagner ($800M/year), Venezuela ($300M/year), massive illegal Sub-Saharan Africa. **(2) Russian oligarch real estate post-2022** — properties worth $14+ billion documented in Palm Jumeirah, Downtown Dubai, Business Bay (Capricorn Foundation), including Roman Abramovich, Andrey Melnichenko, Andrei Skoch. **(3) Dual-use technology exports** to Russia post-2022 and Iran (microchips, GPS jammers, drones — UK NCA 'Operation Cabaletta' 2024 documented networks). **(4) Iran sanctions evasion** historic hub (case aml-iran-fatf-blacklist-2020). **(5) Trump real estate ties** (Donald Trump has 7 Trump-branded properties in UAE controlled by Hussain Sajwani of Damac Properties). **(6) Massive hawala networks** with South Asia, Africa, Levant. The **Free Zone System** (50+ free zones in UAE — DIFC Dubai International Financial Centre, ADGM Abu Dhabi Global Market — independent financial regulators) creates regulatory complexity. CBUAE implemented **AML Act revision 2022** and **Beneficial Ownership Resolution 2020** post-FATF requirements. UAE is a MENAFATF member.
October 24, 2025 MM confirmed
Myanmar: OFAC sanctions military-linked banks since 2022 — finance military junta post-2021 coup
Since the military coup of February 1, 2021 (which overthrew the civilian government of Aung San Suu Kyi and installed the military junta SAC State Administration Council under Min Aung Hlaing), OFAC has systematically designated military-connected banks and companies of Myanmar under Executive Order 14014 (February 2021). Designated banks: Myanmar Economic Bank (MEB), Myanmar Foreign Trade Bank (MFTB), Myanmar Investment and Commercial Bank (MICB), Innwa Bank (designated in Oct 2023). In October 2023, OFAC also designated Myanmar Oil and Gas Enterprise (MOGE) — the largest revenue generator for the junta ($1.7 billion annually in oil/gas revenues). Actions are executed in coordination with the UK, EU, Canada, Australia and statements from the UN Special Rapporteur on Myanmar (Tom Andrews). Specific Myanmar AML risks post-2021: military junta (Tatmadaw) financing via banking control, pig-butchering scam compounds in border zone with China/Thailand (Shwe Kokko, Karen State, Yatai New City — operated by militias and Chinese companies with CCP links), jade smuggling (Myanmar produces 90% of world jade, estimated value $31 billion/year, controlled by Tatmadaw and rebels), opium and meth ('Golden Triangle' produces 30% of world opium and synthetic meth), wildlife trafficking, timber smuggling. Myanmar is the only country on the FATF blacklist (case aml-myanmar-fatf-blacklist-2022 in this tracker) along with DPRK and Iran.
June 23, 2022 US confirmed
US: Harmony Horizon Bridge hack $100M Jun 2022 — DPRK Lazarus (Tornado Cash laundering)
On **June 23, 2022**, the **Harmony Horizon Bridge** (cross-chain bridge between Harmony, Ethereum and BSC) suffered a **$100 million USD hack**. The attackers compromised the private keys of the bridge's multisig validators (Harmony used a relatively weak 2-of-5 scheme). The **FBI attributed the hack to DPRK's Lazarus Group in January 2023** — confirming another case in the pattern of North Korean crypto thefts as **proliferation finance** (weapons program funding). The hackers laundered the funds via **Tornado Cash** (mixer sanctioned by OFAC in August 2022, case aml-tornado-cash-2022) and subsequently via **Railgun** (another privacy mixer). It is part of the series of hacks attributed to Lazarus: Bangladesh Bank ($81M, 2016), Ronin Bridge ($625M, 2022), Harmony ($100M, 2022), Atomic Wallet ($100M, 2023), and eventually Bybit ($1.5B, 2025). The UN Panel of Experts estimates that **DPRK stole $3 billion+ in crypto between 2017-2023**, a significant portion of its military/nuclear funding under sanctions. Harmony offered bounties and reimbursement plans but recovery was partial. The case reinforces the pattern of **cross-chain bridges as a preferred target of state actors** + the role of mixers in laundering proliferation finance.
January 4, 2023 US confirmed
US: Coinbase $100M NYDFS settlement — AML/BSA failures Jan 2023 (largest US crypto exchange)
On **January 4, 2023**, Coinbase Global Inc (NASDAQ: COIN since April 2021 via direct listing, ~108M verified users, ~$170B+ assets under custody, largest US crypto exchange by trading volume) agreed to pay **$50M penalty + $50M compliance investment = $100M total** to NYDFS for **systemic AML/CFT failures**: deficient transaction monitoring (processed transactions for PEPs, sanctioned, drug traffickers without reporting); inadequate suspicious activity reporting (SARs) — failed to file SARs on obvious patterns; deficient CIP/KYC for new customers especially high-risk; deficient sanctions screening (didn't detect OFAC SDN matches); failure to comply with NYDFS Part 504 (transaction monitoring + filtering) and Part 500 (cybersecurity). Coinbase has operated under NYDFS BitLicense since **January 2017** (one of the first crypto exchanges to obtain it). The settlement required Independent Monitor for 2 years + compliance officer reporting requirements. **Brian Armstrong** (Co-Founder/CEO since 2012) and **Emilie Choi** (President/COO) faced public criticism but no charges. Coinbase **also faced SEC enforcement action June 2023** (vs registration as unregistered securities exchange) — **case partially dismissed February 2025** post-Trump 2.0 crypto-friendly administration. **NYDFS Part 200 (Virtual Currencies)** + BitLicense regulate crypto exchanges in NYC since 2015. Coinbase is the largest crypto exchange enforcement case in US in terms of regulatory magnitude (combined with SEC).
August 22, 2017 CL confirmed
Chile: Penta + SQM cases revealed systematic illegal political financing in Chile 2009-2014
The **Penta** (Penta financial-industrial group) and **SQM** (Sociedad Química y Minera de Chile, lithium producer of the Atacama Salt Flat and world's largest producer of specialty fertilizers) cases revealed from 2014-2015 one of **the broadest illegal political financing schemes in Chilean history**. Carlos Délano and Carlos Eugenio Lavín (Penta controllers) issued false invoices to deduct illegal political expenses — the case extended to multiple Chilean political parties (UDI, RN, PRSD, PPD), with politicians across the spectrum implicated. The SQM case (controlled by the Ponce Lerou family, son-in-law of former dictator Augusto Pinochet through Julio Ponce Lerou) revealed payments of $11M to more than 200 Chilean politicians, advisors and consultants between 2009-2014. The Chilean Public Ministry, led by prosecutor Carlos Gajardo, pursued both cases with mixed results: some defendants agreed to conditional suspension of proceedings (Chilean legal figure), others were convicted (Délano and Lavín: 4 years effective sentence). The case affected former President Sebastián Piñera (RN, 2010-2014 and 2018-2022 — the SQM case involved him indirectly via Eliodoro Matte). The Chilean financial sector is supervised by the Financial Market Commission (CMF, ex-SVS+SBIF post-2017 merger), with the Financial Analysis Unit (UAF) as FIU. Chile is a GAFILAT member.
May 24, 2016 CH confirmed
Switzerland: FINMA shuts down BSI in May 2016 over its role in Malaysia's 1MDB scandal
FINMA ordered in May 2016 the forced closure of Banco della Svizzera Italiana (BSI), the oldest private bank in Ticino canton (founded 1873), after finding 'serious and systematic violations' of anti-money laundering law in connection with Malaysia's 1MDB sovereign fund scandal. BSI was absorbed by EFG International. The authority confiscated CHF 95 million in illicit profits. It was the first time in history that FINMA forced a bank closure. A historic turning point: parallel enforcement proceedings against Coutts (sold to UBP), Falcon Private Bank (voluntary shutdown), JP Morgan Switzerland, Edmond de Rothschild Luxembourg and other Swiss banks implicated in 1MDB/Petrobras/PDVSA/FIFA.
March 1, 2025 US confirmed
BitMEX: over $100M from CFTC and FinCEN over AML deficiencies enabling darknet trades
BitMEX (HDR Global Trading) pleaded guilty in July 2024 and was sentenced in January 2025 to a $100 million fine for violating AML and KYC laws. The CFTC and FinCEN flagged AML program deficiencies that enabled darknet-linked trades. It illustrates sustained scrutiny of crypto platforms.
June 3, 2023 US confirmed
US: Atomic Wallet hack $100M Jun 2023 — DPRK Lazarus (5,500 users, Sinbad mixer)
On **June 3, 2023**, **Atomic Wallet** (a non-custodial, multi-chain cryptocurrency wallet, estimated based in the US/Estonia) suffered a massive hack of **~$100 million USD** affecting **~5,500 users** — one of the largest thefts from wallet users in history. The attackers compromised users' private keys (the exact vector was never publicly confirmed — possible vulnerability in key generation or malware). Blockchain analysis firms (**Elliptic + Chainalysis**) attributed the hack to **DPRK's (North Korea) Lazarus Group** based on laundering patterns: the funds were moved through the **Sinbad** mixer (successor to Blender.io, both sanctioned by OFAC as North Korean laundering tools) and chain patterns characteristic of Lazarus. It is another case in the pattern of **DPRK crypto theft as proliferation finance** — funding North Korea's weapons/nuclear program under sanctions. It is part of the Lazarus series: Bangladesh Bank ($81M, 2016), Ronin ($625M, 2022), Harmony ($100M, 2022), Atomic Wallet ($100M, 2023), Bybit ($1.5B, 2025). Atomic Wallet faced class-action lawsuits from users. The case reinforces the risk of **non-custodial wallets as targets of state actors** + the role of mixers (Tornado Cash, Sinbad, Blender) in laundering North Korean proliferation finance.
December 15, 2011 LB confirmed
Lebanon: $102M from Lebanese Canadian Bank in 2011 for laundering for Hezbollah and drug trafficking
On February 10, 2011, the US Treasury designated the Lebanese Canadian Bank (LCB) as a 'financial institution of primary money laundering concern' under Section 311 of the USA PATRIOT Act, prohibiting US financial institutions from dealing with it. Lebanon's eighth-largest bank, with 35 branches and assets over $5 billion, was accused of laundering up to $200 million per month in drug proceeds for an international network linked to Hezbollah led by Ayman Joumaa, a Lebanese drug trafficker indicted in November 2011 for transporting 100 tons of Colombian cocaine to the Mexican Los Zetas cartel. The scheme used the used-car trade from the US to West Africa to launder money (TBML). LCB branches and associated exchange houses moved at least $329 million between 2007 and 2011. LCB was forced to merge with Société Générale's Lebanese subsidiary in 2011; in December 2013 it paid $102 million in a settlement. A landmark case of using Section 311 against a designated terrorist organization.
June 30, 2025 AE confirmed
UAE: AED 381M ($104M) from CBUAE in H1 2025 — its largest-ever AML enforcement campaign
The Central Bank of the UAE (CBUAE) accumulated in the first half of 2025 financial penalties worth AED 381 million (~$104 million) after 19 inspections of 35 financial institutions: 20 exchange companies, 11 banks (three foreign), three insurers and one finance company. 92% of the amount (AED 350M) fell on exchange houses, and 98% (AED 374M) corresponded to AML/CFT law breaches. CBUAE revoked licenses of several exchange houses (including Gomti Exchange and Al Hindi Exchange) and temporarily restricted operations at other entities. It is the largest AML enforcement campaign in the country's history, following the UAE's removal from the FATF grey list in 2024 and the EU's high-risk jurisdictions list.
November 30, 2022 KM confirmed
African islands: Sambi (Comoros) life imprisonment Nov 2022 — CBI scandal 67,000 passports + $104M bribes
The most prominent case: Comoros CBI Scandal — the 'Ahmed Abdallah Mohamed Sambi era' (President 2006-2011): Comoros sold 67,000 passports between 2008-2011 to stateless Bidoon of Kuwait and UAE (residents without nationality — ~100,000 in UAE) under a scheme where former President Sambi received $104M in bribes. In November 2022, former President Sambi was sentenced to life imprisonment by Moroni Court of Appeal — one of Africa's most notorious CBI corruption cases. Scheme was one of the largest per capita passport sales in history (67K in country of 850K = ~8% population). Cabo Verde is one of Africa's most compliant countries. Sao Tome lived Manuel Pinto da Costa era + offshore oil corruption. Comoros is GIABA + ESAAMLG member; Cabo Verde + Sao Tome are GIABA members.
July 26, 2017 RU confirmed
BTC-e: $110M from FinCEN in 2017, one of the first major penalties against a crypto exchange
FinCEN imposed a $110 million penalty in 2017 on the crypto exchange BTC-e for operating as a money-laundering platform without registering or maintaining AML controls, plus $12 million on its operator Alexander Vinnik. BTC-e processed transactions linked to ransomware, fraud and drug trafficking. It was one of the first major AML penalties against a crypto platform, a precursor to later cases.
October 11, 2022 US confirmed
US: Mango Markets exploit $116M Oct 2022 — Eisenberg + 'legal strategy' defense (conviction vacated 2025)
On **October 11, 2022**, **Avraham Eisenberg** executed a **$116 million USD exploit** against **Mango Markets** (decentralized exchange on Solana) through **oracle manipulation**: he artificially inflated the price of the MNGO token by massively buying in illiquid markets (raising the price ~1,300% in minutes), used that inflated position as collateral to borrow $116M in other protocol assets, and took the funds. The distinctive part of the case: **Eisenberg publicly admitted being responsible on Twitter** days later, arguing it was **'a profitable and legal trading strategy'** that only used the protocol's functions as designed — a 'code is law' defense. He returned ~$67M after negotiating with Mango's DAO (which voted not to pursue him in exchange, a controversial deal). However, **the DOJ arrested him in December 2022** in Puerto Rico. Eisenberg was **convicted of fraud and market manipulation in April 2024** (SDNY) — the **first conviction case for oracle manipulation in DeFi**. But in **May 2025, a judge VACATED the fraud/manipulation conviction** (insufficient evidence on jurisdiction/elements), although Eisenberg remained separately convicted of child pornography possession (unrelated charge, found during his arrest). The case is referenced as **the central legal debate over whether DeFi exploits that 'only use the code' constitute fraud** + precedent on oracle manipulation. SEC + CFTC filed parallel civil charges.
October 10, 2024 US confirmed
TD Bank: an additional $123.5M from the Federal Reserve in 2024 over AML risk-management failures
On 10 October 2024, the US Federal Reserve fined TD Bank $123.5 million for violations related to anti-money-laundering laws, as part of the ~$3.1 billion global package. The Fed found TD failed to conduct adequate risk management and oversight of its US retail banking, allowing a subsidiary to be used to launder hundreds of millions, and required it to create an office dedicated to remediating the deficiencies.
October 27, 2021 US confirmed
US: Cream Finance $130M hack Oct 2021 — flash loan attack (third hack of the year)
On **October 27, 2021**, **Cream Finance** (a DeFi lending protocol, part of the Yearn Finance ecosystem) suffered a **~$130 million USD hack** through a sophisticated **flash loan attack** that exploited a vulnerability in the price calculation of a collateral asset. The notable part of Cream Finance: it was **hacked three times in 2021** (February ~$37M, August ~$19M, October ~$130M), accumulating ~$186M in total losses in a single year — making it one of the most attacked DeFi protocols in history. The October attack was particularly complex, chaining multiple flash loans and exploiting Cream's integration with other protocols (composability risk — the risk that the interconnection of 'composable' DeFi protocols amplifies vulnerabilities). The case is referenced as **an example of the systemic risk of 'composability' in DeFi + the recurrence of flash loan attacks** (along with Euler, Beanstalk, Mango). Cream Finance never fully recovered. It is part of the 2021-2022 wave of DeFi exploits that exposed the structural weaknesses of decentralized 'money legos'.
December 9, 2022 GB confirmed
Santander UK: £107.8M (~$135M) in 2022 for failing to verify 560,000 business clients
The FCA fined Santander UK nearly £108 million (~$135 million) for failures in its business-banking division's AML systems. Between 2012 and 2017 its systems could not properly verify the information of 560,000 business clients, exposing it to significant money-laundering risk. The bank did not dispute the findings, earning a 30% discount.
March 17, 2022 US confirmed
USAA: $140M from FinCEN in 2022 over an AML program that did not keep pace with the bank
FinCEN sanctioned USAA Federal Savings Bank $140 million in March 2022 for willful Bank Secrecy Act violations. The bank admitted failing to maintain a compliant AML program between January 2016 and April 2021, nor reporting thousands of suspicious transactions, despite notice and opportunity to fix it. FinCEN credited $60 million paid to the OCC.
July 22, 2015 US confirmed
US: Banamex USA pays $140M to FDIC and California in 2015 before shutting down
The Federal Deposit Insurance Corporation (FDIC) imposed in July 2015 a joint civil penalty of $140 million on Banamex USA, the US subsidiary of Citigroup linked to its Mexican parent Banamex, for serious failures in its anti-money-laundering program. Of that amount, $40 million went to California's Department of Business Oversight as a civil penalty. Citigroup decided to shut down the three-branch unit after the resolution; liquidation would be completed by June 2017. The supervisor found that the unit had grown to dominate remittances between the US and Mexico without adequately protecting its systems from illicit funds.
October 21, 2021 CH confirmed
Credit Suisse: £147.2M (~$190M) from the FCA in 2021 over loan due-diligence failings
The FCA fined Credit Suisse £147.2 million (~$190 million) in October 2021 for 'serious financial crime due diligence failings' in connection with loans. It was the FCA's second-largest financial-crime fine at the time, and a precursor to the bank's later collapse and absorption by UBS.
March 17, 2010 US confirmed
Wachovia: $160M in 2010 for laundering money from Mexican 'casas de cambio'
Between 2004 and 2007, Wachovia funneled drug-trafficking laundering funds from Mexican and Colombian 'casas de cambio'. In March 2010 it admitted weak anti-money-laundering controls over $378.4 billion in transfers, making the case the largest Bank Secrecy Act violation in history at the time. It paid around $160 million in fines.
February 8, 2018 IT confirmed
Italy: BitGrail collapse $170M Feb 2018 — Francesco Firano 'The Bomber' (Nano/XRB)
On **February 8, 2018**, **BitGrail** (an Italian cryptocurrency exchange based in Florence, operated by **Francesco Firano**, known as 'The Bomber') announced the loss of **~17 million Nano (XRB) tokens, valued at ~$170 million USD** at the time. BitGrail was the main exchange for the Nano cryptocurrency (formerly RaiBlocks). Firano blamed a 'hack' and failures in Nano's software, but investigations revealed a murkier story: the **Florence Court determined in 2019 that Firano was responsible** for most of the losses, finding that he had continued operating the exchange and accepting deposits knowing the funds were missing, and that there was gross negligence + possible fraud. Firano was **declared bankrupt** and ordered to return funds to users as much as possible. There was a public dispute between Firano and the Nano Foundation. The case is referenced as **one of the largest exchange collapses in Europe + an example of an operator who hid losses and kept operating** (a pattern similar to QuadrigaCX, Mt. Gox). Italy is a FATF + MONEYVAL founding member. The sector is supervised by the Banca d'Italia + CONSOB + UIF.
April 17, 2022 US confirmed
US: Beanstalk Farms $182M hack Apr 2022 — first major DeFi 'governance attack'
On **April 17, 2022**, **Beanstalk Farms** (a DeFi algorithmic stablecoin protocol governed by a DAO) suffered a **~$182 million USD hack** through an innovative **'governance attack'** — the first major attack of its kind in DeFi. The attacker used a **massive flash loan (~$1 billion borrowed temporarily)** to instantly acquire **67% of Beanstalk's governance tokens (STALK)**, giving him a majority of votes. With that majority, he **approved and executed a malicious proposal** (which had already been submitted days earlier with an innocent appearance) that transferred all the protocol's funds to his own wallet — all in a single atomic transaction. After draining $182M (of which he kept ~$76M net after repaying the flash loan), the protocol became insolvent. The case is paradigmatic of the **risk of on-chain governance of DAOs** — it demonstrated that token-based voting systems are vulnerable to flash loan attacks that allow temporarily 'renting' voting power. It led many DeFi protocols to implement **timelocks** (mandatory delays between proposal approval and execution) as a standard defense. Beanstalk subsequently relaunched with improved security. The FBI investigated. It is part of the wave of 2022 DeFi exploits that exposed the structural weaknesses of decentralized protocols (governance attacks, flash loans, oracle manipulation, bridge hacks).
August 19, 2016 TW confirmed
Taiwan: Mega International Commercial Bank pays $185M to New York in 2016 over AML failures
The New York Department of Financial Services (NYDFS) sanctioned in August 2016 the Taiwanese Mega International Commercial Bank with $185 million for violations of anti-money laundering and bank secrecy laws. The bank, one of Taiwan's largest, maintained relationships with branches in Panama that generated elevated money laundering risk —in the context of the Panama Papers, which had placed offshore jurisdictions under supervisory focus in 2016—. The sanction was part of NYDFS's foreign-bank enforcement push in 2016 (Intesa Sanpaolo, Agricultural Bank of China), and reflects the extraterritorial reach of US AML regulation via the New York branches of global banks.
February 5, 2019 CA confirmed
Canada: QuadrigaCX $190M collapse Feb 2019 — Gerald Cotten mysterious death + lost keys
In **February 2019**, **QuadrigaCX** (Canada's largest crypto exchange) collapsed leaving **~$190 million CAD ($145M USD) inaccessible** to **76,000 users** — one of the strangest cases in crypto history. Founder and CEO **Gerald Cotten** supposedly **died in India on December 9, 2018** (Crohn's complications at a Jaipur hospital, during his honeymoon) — and, according to his widow, **only he had the private keys to the exchange's cold wallets**, so the funds were 'unrecoverable'. The death generated **massive conspiracy theories** (exit scam, faked death) given the convenient timing + irregularities. The subsequent **Ontario Securities Commission (OSC, June 2020 report)** investigation revealed that QuadrigaCX was essentially a **Ponzi-type fraud**: Cotten had **operated a fraudulent scheme for years**, using client funds for leveraged personal trading (losing large amounts), creating fake accounts with fictitious balances, and diverting money for his lifestyle (properties, yacht, private jet, travel). The OSC concluded that **~$115M of the losses were due to Cotten's fraud**, not just lost keys. Cotten's body was never exhumed despite petitions. The case is referenced as **the paradigmatic example of centralized custody risk + key management + the most famous crypto mystery**. It inspired the Netflix documentary 'Trust No One: The Hunt for the Crypto King' (2022). Canada is supervised by OSC + FINTRAC + provincial regulators. Canada is a FATF member.
August 1, 2022 US confirmed
US: Nomad Bridge hack $190M Aug 2022 — copyable 'free-for-all' (unique chaos)
On **August 1, 2022**, **Nomad Bridge** (cross-chain messaging protocol) suffered a **$190 million USD hack** in a way unique in DeFi history: a faulty smart contract upgrade introduced a bug that made **any withdrawal transaction automatically approved**. Once the first attacker discovered the exploit, the method became **trivially copyable** — anyone could simply copy the original attacker's transaction, change the address, and drain funds. This unleashed a **chaotic 'free-for-all'** where **hundreds of addresses (including opportunists, not just sophisticated hackers) drained the bridge in hours** — an unprecedented event described as 'the first decentralized, crowd-sourced hack'. Notably, **some 'whitehats' (~$36M) returned funds** voluntarily to a Nomad recovery address. The case is referenced as **the most extreme example of bridge risk + a case study on the public/copyable nature of blockchain exploits**. Nomad was backed by prominent investors (a16z, Coinbase Ventures). Part of the 2022 bridge hack pattern ($2.5B+ that year).
March 13, 2023 GB confirmed
UK: Euler Finance hack $197M Mar 2023 — flash loan attack + funds returned
On **March 13, 2023**, **Euler Finance** (a UK-based DeFi lending protocol, one of the most respected for its technical design) suffered a **$197 million USD hack** through a sophisticated **flash loan attack** that exploited a vulnerability in the protocol's 'donateToReserves' function (a flaw in position health verification after a donation). It was one of the largest DeFi hacks of 2023. The notable part: after the attack, **Euler Labs publicly negotiated with the hacker** (via on-chain messages) offering a 10% bug bounty + not pursuing him legally if he returned 90%. The hacker, after weeks of communication (including messages in which he apologized: 'sorry'), **returned virtually all the funds** between March and April 2023 — one of the few cases of near-total recovery of a major DeFi hack (along with Poly Network). The case is referenced as **an example of successful on-chain negotiation with an attacker** + the importance of audits (Euler had been audited multiple times, demonstrating that audits don't guarantee security) + paradigm of the risk of **flash loan attacks** in DeFi. The UK is supervised by the FCA + NCA. The case involved Chainalysis traceability + community collaboration.
December 31, 2024 VU confirmed
Vanuatu: RBV tightens AML — CBI program 10,000+ passports + Schengen visa-free suspended March 2024
The **Reserve Bank of Vanuatu (RBV)** and the **Vanuatu Financial Intelligence Unit (VFIU)** supervise the Vanuatuan banking sector under the framework of the Counter Terrorism and Transnational Organised Crime Act 2014 (amended in 2019, 2022 and 2024). Vanuatu (327,000 inhabitants, archipelago of 80+ islands in Melanesia/South Pacific, former Anglo-French condominium until 1980 independence), operates the Vanuatu vatu (VUV). The country is famous for its **Citizenship by Investment Programme (CBI)** — one of the world's most controversial. Between 2014-2024, Vanuatu sold **10,000+ passports** via 'Capital Investment Immigration Plan' (CIIP) and other programs for ~$130,000-200,000 each, generating **>$200 million in revenues**. **In March 2024, the European Union suspended the visa-free Schengen regime** (visa-free since 2015) for Vanuatu citizens due to security concerns: 1) lax due diligence (cases of European criminals who obtained passports), 2) origin diversity (passports sold to sanctioned Russian citizens post-2022, Iranian, Syrian, Libyan), 3) governance issues. The UK followed in 2024. Vanuatu is now in negotiations with the EU to restore visa-free. Specific Vanuatuan AML risks: **CBI passport-for-sale legacy**, historic offshore tax haven (more than 100 offshore banks in 1990s, reduced by FATF compliance post-2018 grey list exit), Pacific tourism (Bali-Vanuatu-Fiji-Tahiti corridor), tuna fishing. The banking sector is concentrated in: National Bank of Vanuatu (NBV, state), ANZ Bank Vanuatu (Australian), Bred Bank Vanuatu (French BRED), Bank of South Pacific Vanuatu (BSP). Vanuatu is an APG member.
May 19, 2021 KY confirmed
BSC/global: PancakeBunny $200M hack May 2021 — flash loan attack on Binance Smart Chain
On **May 19, 2021**, **PancakeBunny** (a yield farming/optimization protocol on Binance Smart Chain, BSC) suffered a **~$200 million USD flash loan attack** — one of the largest hacks of the wave of exploits that hit BSC DeFi protocols in 2021. The attacker used massive flash loans to manipulate the price of the BUNNY token (via manipulation of the liquidity pools on PancakeSwap that PancakeBunny used as a price oracle), minted a huge amount of BUNNY tokens at an inflated price, and sold them — which made the **BUNNY token price collapse ~95% in minutes** (from ~$146 to ~$6). Although the nominal 'loot' was $200M, much of it evaporated with the token collapse. PancakeBunny was part of a **series of protocol hacks on Binance Smart Chain in 2021** (along with Spartan Protocol, Uranium Finance, Meerkat Finance, Bogged Finance, etc.) — BSC, being a cheaper and fast-growing chain, attracted many protocols with insufficient audits and became a focus of exploits. The case is referenced as **an example of the 2021 BSC hack wave + oracle manipulation via flash loans**. The Cayman Islands (a common jurisdiction for crypto entities) serve as nominal registration. The Cayman Islands are supervised by CIMA + are a CFATF member + were on the FATF grey list (2021-2023).
September 23, 2023 HK confirmed
Hong Kong: Mixin Network $200M hack Sep 2023 — cloud provider breach
On **September 23, 2023**, **Mixin Network** (a Hong Kong-based cross-chain decentralized network protocol, founded by Feng Xiaodong) suffered a **~$200 million USD hack** — one of the largest DeFi hacks of 2023. Unlike typical smart contract hacks, the Mixin attack originated from a **breach of its cloud service provider's database** — the attackers compromised the third-party cloud infrastructure where Mixin stored data, not the protocol itself. This exposed the **risk of centralized infrastructure dependencies** even in protocols that present themselves as decentralized (a recurring theme: Multichain, Mixin). The security firm **SlowMist** investigated. Mixin **temporarily suspended deposits and withdrawals** and proposed a partial reimbursement plan (offering to cover up to 50% of losses immediately + debt bonds for the rest). Feng Xiaodong personally committed to recovery. The case is referenced as **an example of supply chain/cloud infrastructure risk in DeFi** + another illustration of the gap between the decentralization narrative and operational reality. Hong Kong, which has sought to position itself as a regulated crypto hub (with its VASP licensing regime since 2023), saw this case as part of the sector's challenges. Hong Kong is supervised by the SFC + HKMA. Hong Kong is a FATF + APG member.
September 13, 2023 HK confirmed
Hong Kong: JPEX scandal $200M+ Sep 2023 — unlicensed exchange + 66+ arrests
In **September 2023**, the **JPEX** scandal erupted — a cryptocurrency exchange operating in Hong Kong **without an SFC license** — becoming **one of the largest financial frauds in Hong Kong's history**. JPEX had run an aggressive marketing campaign (billboards, influencers, local celebrities) promising high returns. On September 13, 2023, the SFC issued a public warning about JPEX for operating without a license and for misleading claims. This unleashed panic: JPEX **abruptly raised withdrawal fees to impossible levels** (freezing funds), and thousands of users discovered they couldn't withdraw their money. Losses were estimated at **more than $200 million USD (HK$1.5 billion+)**, with **~2,600 victims**. Hong Kong police (Commercial Crime Bureau) made **more than 66 arrests** (including influencers who promoted the platform). The case was a blow to Hong Kong's ambition to become a **regulated crypto hub** (it had launched its VASP licensing regime in June 2023). It accelerated regulatory tightening. The ICAC also got involved. Hong Kong is supervised by the SFC + HKMA + is a FATF + APG member.
May 27, 2015 CH confirmed
Switzerland/US: FIFA corruption scandal May 2015 — $200M+ bribes + 40+ officials indicted
On **May 27, 2015**, Swiss agents arrested several senior FIFA officials at the Baur au Lac hotel in Zurich, in an operation coordinated with the US DOJ + FBI + IRS — unleashing the largest corruption scandal in sports history. The DOJ (led by then-Attorney General Loretta Lynch) charged **more than 40 individuals and entities** with **racketeering, wire fraud and money laundering** for more than **$200 million USD in bribes** over ~24 years, mainly related to: the sale of tournament marketing/TV rights (Copa América, CONCACAF Gold Cup, Copa Libertadores), the allocation of World Cup hosts (including the controversial Russia 2018 and Qatar 2022), and internal elections. Among those implicated: **Jeffrey Webb** (CONCACAF, convicted), **Jack Warner** (Trinidad, former FIFA VP, extradition fugitive), **Eugenio Figueredo** (CONMEBOL), **José Maria Marin + Marco Polo del Nero** (Brazil), **Juan Ángel Napout** (Paraguay), **Alejandro Burzaco** (Argentina, Torneos y Competencias, key cooperator), **Hugo Jinkis + Mariano Jinkis** (Argentina, Full Play). **Sepp Blatter** (FIFA president 1998-2015) resigned days later + was **suspended 8 years (later 6) by FIFA's Ethics Committee**; **Michel Platini** (UEFA) also suspended. Although Blatter and Platini were **acquitted of the Swiss criminal charges in 2022** (case of a 'disloyal' 2M CHF payment), their careers were destroyed. The case transformed FIFA governance (Gianni Infantino president since 2016 + reforms). It is referenced as **the paradigmatic case of corruption in international sports organizations** + use of US jurisdiction (payments passed through US banks) to prosecute global corruption. Switzerland is a FATF member.
November 4, 2016 CN confirmed
China: Agricultural Bank of China pays $215M to New York in 2016 over serious AML failures
The New York Department of Financial Services (NYDFS) imposed in November 2016 on Agricultural Bank of China —one of China's four major state-owned banks— a $215 million penalty for AML/BSA violations. A signature case of NYDFS's supervisory enforcement against foreign banks with New York branches, which intensified under Superintendent Maria Vullo in 2016 (alongside parallel sanctions on Mega Bank of Taiwan and Intesa Sanpaolo of Italy). The supervisor found failures in transaction monitoring and concealment of information, in a pattern that would recur with other Asian banks in subsequent years.
June 1, 2025 US confirmed
GVA Capital: $216M from OFAC for processing Iran-linked payments
In June 2025, OFAC imposed $216 million on GVA Capital for processing Iran-related payments, in violation of the sanctions regime. It is an example of OFAC enforcement against investment and fintech entities, beyond traditional banking.
July 18, 2024 IN confirmed
India: WazirX $230M hack Jul 2024 — DPRK Lazarus (largest crypto hack in India's history)
On **July 18, 2024**, **WazirX** (India's largest cryptocurrency exchange) suffered a **~$230 million USD hack** — the **largest crypto exchange hack in India's history**. The attackers compromised one of WazirX's multi-signature wallets (operated jointly with custodian **Liminal**) through a discrepancy between the displayed interface and the actual signed transaction (a sophisticated signing UI manipulation attack). Blockchain analysis firms (**Elliptic + Chainalysis**) attributed the hack to **DPRK's (North Korea) Lazarus Group** based on laundering patterns and characteristic techniques. It is another case in the pattern of **DPRK crypto theft as proliferation finance**. The hack triggered a crisis: WazirX **suspended withdrawals**, proposed a controversial 'socialized loss' scheme (distributing losses among all users, ~45% haircut), and entered a restructuring process in Singapore (its parent entity Zettai Pte Ltd). There was a public dispute between WazirX and Binance over ownership/responsibility for the exchange. India's **Enforcement Directorate (ED)** investigated. The case is significant because India is one of the world's largest crypto markets by number of users, with a punitive tax regime (30% on crypto gains + 1% TDS) but exchange regulation still developing. It reinforces the Lazarus pattern: Bangladesh ($81M), Ronin ($625M), Harmony ($100M), Atomic Wallet ($100M), WazirX ($230M), Bybit ($1.5B). India is a FATF + APG member.
November 16, 2009 RU confirmed
Russia/US: Sergei Magnitsky died Nov 16 2009 — Magnitsky Acts 35+ countries + Hermitage Capital Bill Browder
On **November 16, 2009**, **Sergei Magnitsky** (auditor at Firestone Duncan, lawyer for Hermitage Capital Management of Bill Browder), died in Moscow's Butyrka prison after 358 days of pre-trial detention without trial. Magnitsky had discovered the **largest tax fraud scheme in Russian history**: $230 million ($5.4 billion rubles) stolen from the **Russian Treasury** by a group of officials from the Interior Ministry, FSB and Tax Service through the use of companies stolen from Hermitage Capital (Bill Browder, American-British, founder and largest foreign investor in Russia 1996-2005, expelled in November 2005). After denouncing the fraud in July 2008, Magnitsky was arrested on November 24, 2008 by the **same people he had denounced**, subjected to torture (denial of medical treatment for pancreatitis and gallstones), and beaten to death on the day of his death (independent forensic report). **On December 14, 2012, President Obama signed the Sergei Magnitsky Rule of Law Accountability Act** which individually sanctioned the Russian officials involved — the first US case of global sanctions based on human rights violations. The **Global Magnitsky Act 2016** (US) expanded scope to global HR violators and corrupt. **35+ countries have adopted Magnitsky laws**: UK (2017), Canada (2017), Estonia, Lithuania, Latvia, Netherlands, Australia, EU (2020), Switzerland, Norway, Kosovo, Gibraltar. Russia responded with the **Dima Yakovlev Law** (December 2012) which prohibited adoptions by Americans. Bill Browder has been designated in absentia by Russia repeatedly and has suffered Interpol Red Notice attempts (all rejected). The **Russian Laundromat** (case aml-moldova-russian-laundromat-2014 in this tracker) laundered part of the $230M.
December 15, 2016 IT confirmed
Italy: Intesa Sanpaolo pays $235M to New York in 2016 for training employees to mask Iran transactions
The New York Department of Financial Services (NYDFS) imposed in December 2016 on Intesa Sanpaolo and its New York branch a $235 million civil penalty for 'severe compliance failures' in anti-money laundering. The investigation found that between 2002 and 2006 Intesa had used 'opaque methods' to conduct more than 2,700 US dollar clearing transactions worth over $11 billion on behalf of Iranian clients and other entities possibly subject to sanctions. NYDFS established that the bank 'specifically trained certain employees' to handle Iran transactions so they could not easily be identified as tied to sanctioned entities, and that it 'deliberately concealed information from bank examiners'. It is the second Italian case in the tracker; the first, much smaller, was Intesa's OFAC settlement of $2.9 million in 2013.
August 6, 1982 VA confirmed
Vatican: the 1982 Banco Ambrosiano/IOR scandal and Roberto Calvi's death under Blackfriars Bridge
On June 18, 1982, banker Roberto Calvi —chairman of Banco Ambrosiano, Italy's second-largest bank and known as 'God's banker' for his Vatican ties— was found hanged from London's Blackfriars Bridge with bricks and cash in his pockets. Days later, a $3.26 billion hole was revealed in Banco Ambrosiano's accounts, with the IOR (Vatican Bank) as the main shareholder. Calvi had built a network of offshore shell companies in Panama and the Bahamas to move money out of Italy, in operations where the IOR took a cut. In 1984 the Vatican paid $244 million (some sources cite $250M) to Ambrosiano's creditors as a 'goodwill payment' without admitting responsibility, invoking its sovereign immunity. Michele Sindona, the Sicilian financier who had introduced Calvi to Archbishop Paul Marcinkus (head of IOR), died in 1986 in an Italian prison after drinking coffee laced with potassium cyanide. The case is parallel to BCCI (1991) as a foundational milestone of modern AML enforcement. The IOR remained under scrutiny: in 2010 Italian magistrates froze €23-30 million from the IOR for AML reporting breaches; in 2013 Pope Francis launched the most aggressive reforms (closure of suspect accounts, external audits, first-ever financial reports, compliance with international standards).
February 14, 2008 LI confirmed
Liechtenstein: 2008 tax affair — Heinrich Kieber LGT data leak 12 countries + Klaus Zumwinkel Deutsche Post
On February 14, 2008, the 'Liechtenstein tax affair' exploded when German authorities arrested Klaus Zumwinkel (Chairman Deutsche Post) at his Cologne mansion — first arrest in a series affecting 12 countries. The source: Heinrich Kieber, former LGT Group employee (owned by Liechtenstein's Princely Family since 1930), stole 12,000 client names and data from LGT Treuhand and sold them to Germany for €4.2M. German BND bought the data. They revealed massive tax evasion by German, British, French, Italian, US, Spanish, etc. elites. Germany recovered €250M+ (Zumwinkel paid €4M fine + 2 years suspended). UK HMRC £100M+. Spain €30M+. Liechtenstein (40K, microstate under Prince Hans-Adam II → Hereditary Prince Alois) agreed to fundamental reform August 2009: end of bank secrecy for tax purposes, OECD CRS 2017+. Kieber in witness protection program. Banking sector: LGT Bank (Princely Family), VP Bank, LLB.
September 26, 2020 SC confirmed
Seychelles: KuCoin $281M hack Sep 2020 — DPRK Lazarus (84% recovered, atypical recovery case)
On **September 26, 2020**, **KuCoin** (a large cryptocurrency exchange registered in Seychelles, founded by Michael Gan, popular in Asia) suffered a **~$281 million USD hack** when attackers gained access to the private keys of the exchange's hot wallets. Blockchain analysis firms (**Chainalysis + Elliptic**) attributed the hack to **DPRK's (North Korea) Lazarus Group** — another case in the pattern of **DPRK crypto theft as proliferation finance**. The notable part of this case: unlike many hacks, **KuCoin managed to recover ~84% of the stolen funds (~$240M)** thanks to an unprecedented coordinated response: **many token projects whose contracts were among those stolen (USDT, various ERC-20) froze or reissued the tokens** in the hacker's wallets, KuCoin worked with other exchanges to freeze funds when the hacker tried to liquidate them, and used insurance + own capital to cover the rest. KuCoin fully reimbursed its users. The case is referenced as **one of the best examples of coordinated hack recovery** + part of the Lazarus series. Separately, KuCoin faced DOJ charges in the US in 2024 for operating without an AML/BSA license ($300M settlement 2025). Seychelles is supervised by the FSA + is an ESAAMLG member.
June 20, 2019 MX confirmed
Mexico: Walmart $282M FCPA settlement Jun 2019 — Walmex permit bribes + NYT Pulitzer investigation 2012
On **June 20, 2019**, **Walmart Inc** agreed to pay **$282 million USD in DOJ + SEC settlement** for FCPA violations — culminating a 7-year investigation catalyzed by the **New York Times investigation (David Barstow, April 2012, 2013 Pulitzer Prize winner)** that revealed **Walmart de México (Walmex)** had paid **~$24 million in bribes to Mexican officials** between 2003-2005 to accelerate store construction permits (Mexico's largest retail network). The NYT investigation documented that **Walmart corporate HQ (Bentonville, Arkansas) had suppressed an internal 2005-2006 investigation** into the Mexico bribes to protect Walmex's aggressive growth (which opened 1 store every day at its peak). The final settlement covered not only Mexico but **Brazil, China and India** where Walmart subsidiaries also paid bribes via 'third-party intermediaries' without due diligence. **Settlement breakdown**: $138M DOJ criminal + $144M SEC disgorgement. Walmart entered a **3-year DPA (Deferred Prosecution Agreement)** + independent compliance monitor. The case cost Walmart **$900M+ in internal investigation + legal fees** (one of the highest FCPA investigation costs in history). Walmart implemented massive global compliance reforms. The case is referenced as **one of the paradigmatic examples of FCPA enforcement against US multinationals in emerging markets** + the role of investigative journalism (NYT Pulitzer) in catalyzing enforcement. **Walmex remains Mexico's largest retail chain** (Walmart Supercenter, Bodega Aurrera, Sam's Club, Superama). Mexico is a GAFILAT member.
January 27, 2025 SC confirmed
KuCoin: ~$297M in 2025, pleaded guilty to operating unlicensed and violating the BSA
Peken Global, operator of KuCoin, pleaded guilty in January 2025 to violating the Bank Secrecy Act: it agreed to forfeit $184.5 million and pay a criminal fine of about $112.9 million. KuCoin, one of the world's largest crypto exchanges, was charged with operating unlicensed, bypassing AML/KYC controls and failing to file suspicious activity reports, processing over $4 billion in suspicious transactions.
July 11, 2023 AU confirmed
Crown Resorts: AUD 450M (~$300M) in 2023, the largest AML fine against a non-financial entity
The Federal Court ordered Crown Resorts in July 2023 to pay AUD 450 million (~$300 million) for anti-money-laundering breaches at its casinos: the largest money-laundering-related fine ever applied to a non-financial entity. It marked the extension of AUSTRAC enforcement from banking to the gambling sector, after the Commonwealth Bank and Westpac cases.
May 31, 2024 JP confirmed
Japan: DMM Bitcoin $305M hack May 2024 — DPRK Lazarus/TraderTraitor (exchange closed in 2025)
On **May 31, 2024**, **DMM Bitcoin** (a Japanese cryptocurrency exchange, part of the DMM Group conglomerate) suffered the theft of **~4,502 Bitcoin (~$305 million USD)** — one of the largest crypto hacks of 2024 and the third major Japanese exchange hack (after Mt. Gox and Coincheck). The **FBI, together with Japan's NPA (National Police Agency), officially attributed the hack to the 'TraderTraitor' group (a subdivision of DPRK's Lazarus Group)** in December 2024 — the attack used social engineering against an employee of a contractor company (Ginco) that handled DMM's wallet infrastructure. It is another case in the pattern of **DPRK crypto theft as proliferation finance**. DMM Bitcoin **fully reimbursed its users** (with DMM Group backing, ~$320M in injected funds) but, unable to recover from the blow, **announced the closure of its operations and the transfer of accounts to SBI VC Trade** in early 2025. The **Japan FSA** issued improvement orders. The case reinforces: the Lazarus pattern in Japanese exchanges, the attack vector via **third parties/contractors in the supply chain**, and Japan's role as a mature but recurrently attacked crypto market. It is part of the 2024 Lazarus series (along with WazirX). Japan is a FATF + APG member.
February 2, 2022 US confirmed
US: Wormhole bridge hack $325M Feb 2022 — Jump Crypto replaced the funds (120K ETH)
On **February 2, 2022**, **Wormhole** (cross-chain bridge between Solana and Ethereum, one of DeFi's most used) suffered a **$325 million USD hack** (120,000 wETH) — one of the largest DeFi hacks in history. The attacker exploited a vulnerability in the bridge's signature validation that allowed 'minting' 120,000 wETH (wrapped ETH) on Solana without depositing the corresponding collateral on Ethereum. The notable part: **Jump Crypto** (the trading firm backing Wormhole via Jump Trading) **replaced the $325M from its own capital in less than 24 hours** to avoid the protocol's insolvency and maintain wETH parity — an unprecedented private bailout that demonstrated the institutional backing behind some DeFi protocols. The stolen funds were never recovered from the hacker (unlike Poly Network). The case is part of the **2021-2022 cross-chain bridge hack pattern** (Wormhole, Ronin, Poly Network, Nomad, Harmony) that exposed bridges as the weakest link in DeFi security — they concentrate huge amounts of value with complex attack surfaces. The FBI + Chainalysis investigated but it was not publicly attributed to a state actor (unlike Ronin/Lazarus).
August 10, 2023 LB confirmed
Lebanon: trilateral sanctions (US/UK/Canada) on former BdL governor Riad Salameh in Aug 2023
On August 10, 2023, the US (OFAC), UK and Canada imposed simultaneous sanctions on Riad Salameh, former governor of the Banque du Liban (BdL) for 30 years (1993-2023), for 'abusing his position of power, likely in violation of Lebanese law, to enrich himself and his associates by funneling hundreds of millions of dollars through layered shell companies to invest in European real estate' (US Treasury). The sanctions also covered his brother Raja Salameh, Marianne Hoayek (assistant), Anna Kosakova (romantic partner, without Canadian sanction) and Nady Salameh (US only). Six European countries are investigating in parallel: France, Germany, Switzerland, Luxembourg, Belgium and Liechtenstein. Swiss prosecutors estimated in 2020 that the Salameh brothers had embezzled >$330M from the central bank between 2002-2015, transferred to a British Virgin Islands company controlled by Raja and then to their Swiss accounts (~$248M to Raja's account). In March 2022, Eurojust coordinated the freezing of €120M in assets across France, Germany, Luxembourg, Monaco and Belgium. After the trilateral sanctions, frozen assets exceeded $200M. France and Germany issued arrest warrants with Interpol Red Notices, but Lebanon does not extradite its nationals. Salameh was charged in Lebanon in February 2023 with embezzlement and money laundering.
August 1, 2022 GE confirmed
Georgia/global: Forsage $340M smart contract Ponzi Aug 2022 — largest documented 'on-chain' Ponzi
On **August 1, 2022**, the **SEC sued Forsage** and its four founders for operating a **$340 million USD Ponzi/pyramid scheme executed entirely through blockchain smart contracts** — one of the first and largest cases of a fully automated 'on-chain Ponzi'. Forsage (launched in January 2020) operated through smart contracts on Ethereum, Tron and Binance Smart Chain that **automated the pyramid scheme's payments** — participants paid in crypto to 'buy slots' and earned commissions by recruiting others, without any real underlying product or investment. The main founder, **Lado Okhotnikov** (a Russian/Georgian citizen), along with three other founders (Russia, Georgia and Indonesia), promoted the scheme globally attracting millions of victims (especially in the Philippines, US). The distinctive part: Forsage claimed to be **'decentralized and unstoppable' precisely because it ran on smart contracts** — a 'code is law' argument used to evade responsibility. The SEC + DOJ pursued the founders. The case is referenced as **the paradigmatic example of the automated blockchain Ponzi + the regulatory challenge of schemes operating via smart contracts**. Georgia is a MONEYVAL member. It demonstrated that 'decentralization' does not exempt from securities laws.
December 13, 2021 GB confirmed
NatWest: £264.8M (~$350M) in 2021, the first criminal AML conviction of a British bank
NatWest was sentenced in December 2021 to a £264.8 million fine (~$350 million) after pleading guilty to three offences of breaching anti-money-laundering rules: the first time the FCA criminally prosecutes a bank for AML failures. The case centred on customer Fowler Oldfield, a Bradford jeweller that deposited around £365 million (£264 million in cash) between 2012 and 2016, with bags of musty-smelling notes deposited at ~50 branches. The judge said that without the bank's failures 'the money could not be effectively laundered'.
February 7, 2018 NL confirmed
Rabobank: $369M in 2018, pleaded guilty to concealing AML failures from regulators
Rabobank's US unit (Rabobank N.A.) pleaded guilty in 2018 and agreed to a $369 million forfeiture for allowing the laundering of hundreds of millions from drug trafficking and other illicit activities on the Mexican border, and —a key aggravator— for deliberately concealing its AML program deficiencies from its regulator, the OCC. The cover-up, not just the failure, was the core of the criminal case.
December 16, 2023 VA confirmed
Vatican: first cardinal convicted in 500 years — Becciu 5.5 years for embezzlement (Dec 2023)
On December 16, 2023, the Vatican City Tribunal sentenced Cardinal Angelo Becciu, former substitute of the Secretariat of State (third-highest Vatican office), to 5 years and 6 months in prison on two counts of embezzlement and one of aggravated fraud, along with an €8,000 fine and perpetual public office disqualification. He is the first cardinal to be tried and convicted by a Vatican court in 500 years. The trial, dubbed the 'Trial of the Century' by Vatican experts, was presided over by Italian anti-mafia judge Giuseppe Pignatone over 86 hearings spanning 600+ hours. The case revolved around the Vatican Secretariat of State's €350 million investment in developing a Sloane Avenue building (London, former Harrods warehouse) converted into luxury apartments. Prosecutors alleged monsignors and brokers siphoned tens of millions in fees and commissions, then extorted the Vatican for €15M to cede control of the building. Other convicted: Raffaele Mincione (5.5 years, embezzlement+self-laundering+corruption), Gianluigi Torzi (6 years, aggravated fraud+extortion+laundering), Cecilia Marogna (3 years 9 months), Enrico Crasso, Fabrizio Tirabassi. Combined total: 37 years of prison. The investigation lasted 2 years and resulted in a 487-page indictment after unprecedented raids on the Secretariat of State offices. Appeal pending before a 6-judge Court of Appeal.
March 19, 2020 SE confirmed
Swedbank: SEK 4bn (~$386M) in 2020, record Swedish fine over the Baltic scandal
Sweden's financial authority (Finansinspektionen) fined Swedbank SEK 4 billion (~$386 million) in March 2020 for serious, systematic deficiencies in its anti-money-laundering work in its Baltic operations, and for withholding information from the authority. The bank had accepted clients in Estonia without identifying the real owners; the scandal linked to Danske's and cost its leadership their jobs.
January 15, 2021 US confirmed
Capital One: $390M from FinCEN in 2021 for failing to file thousands of suspicious activity reports
FinCEN imposed a $390 million civil penalty on Capital One in January 2021 for willful and negligent Bank Secrecy Act violations. The bank admitted willfully failing to maintain an effective AML program and to file thousands of suspicious activity reports (SARs) in its Check Cashing Group between 2008 and 2014, leaving millions in transactions linked to organized crime and tax evasion unreported.
July 4, 2022 SG confirmed
Singapore/India: Vauld collapse Jul 2022 — $400M+ frozen (crypto winter contagion)
On **July 4, 2022**, **Vauld** (a crypto lending/borrowing platform based in Singapore but founded by Indians **Darshan Bathija and Sanju Sony Kurian**, operated by Defi Payments Pte Ltd, popular in India and Southeast Asia) **suspended all withdrawals, trading and deposits** with ~$400 million+ in liabilities to ~800,000 users — another victim of the 2022 crypto winter domino effect (after Terra/Luna, Celsius, 3AC, Voyager). Vauld had promised high returns on crypto deposits and suffered a withdrawal run (~$200M withdrawn in weeks) after the Terra/Luna collapse + market decline. The company sought creditor protection (moratorium) in a Singapore court. **Nexo** (another crypto lending platform) announced its intention to acquire Vauld, but the **deal collapsed** after due diligence. Users were trapped in a long restructuring process. The case is part of the **2022 crypto winter crypto lending collapse cluster** and notable for illustrating the impact on **emerging Asian markets** (India is one of the world's largest crypto markets by users). Singapore, Asia's fintech/crypto hub, saw multiple collapses in its jurisdiction (3AC, Vauld, Hodlnaut, Zipmex) that led the MAS to tighten its crypto regulation. Singapore is a FATF + APG member.
September 7, 2021 SV confirmed
El Salvador: Sept 7 2021 adopts Bitcoin as legal tender — world's first nation + Bukele regime
On **September 7, 2021**, El Salvador became the **first nation in the world to adopt Bitcoin as legal tender** alongside the USD (already in use since 2001 post-dollarization). The **Bitcoin Law** (approved by the Nuevas Ideas-controlled Legislative Assembly on June 9, 2021) requires merchants to accept BTC. The **Nayib Bukele** government (President since June 2019, reelected in February 2024 with 84% of the vote despite constitutional prohibition of consecutive reelection) launched **Chivo Wallet** (managed by Athena Bitcoin) with $30 BTC bonus for users. El Salvador has accumulated **~6,000 BTC in state reserves** (~$400M value 2024) under DCA (Dollar-Cost Averaging) policy — IMF and World Bank expressed concerns (IMF rejected BTC program but negotiated $1.4B loan Dec 2024 conditional on declassifying BTC as legal tender — legislative modification Jan 2025). The **Central Reserve Bank (BCR)** and the Superintendence of the Financial System (SSF) supervise the financial sector under the framework of the Law against Money Laundering and Asset Laundering 1998 (amended in 2014). Specific Salvadoran AML risks: **state of exception** decreed in March 2022 (suspended constitutional rights after homicide pandemic — 88K detentions, Bukele's CECOT prison inaugurated 2023 capacity 40K inmates, world's largest 'mega-prison'), dramatic homicide reduction (from 103 per 100K in 2015 to 2.4 in 2024 — but accusations of MS-13/Barrio 18 gang pacts documented by El Faro and InsightCrime), Salvadoran diaspora (3M+ in US, $7B annual remittances = 25% GDP). Banking sector: Banco Cuscatlán (PROMERICA subsidiary), Banco Agrícola, Banco Davivienda El Salvador, BAC Credomatic. El Salvador is a GAFILAT member.
July 7, 2023 CN confirmed
Tenpay (Tencent): CNY 3bn (~$420M) from the PBOC in 2023 for AML and payment failures
The PBOC fined Tenpay (财付通), Tencent's payments unit, CNY 3 billion (~$420 million) in July 2023 for money-laundering-prevention and payment-rules breaches. Together with the Ant Group fine, it marked China's largest regulatory offensive against payment fintechs, in a year when payments concentrated the largest sanction amount.
February 28, 2014 JP confirmed
Japan: Mt. Gox collapse Feb 2014 — 850,000 BTC ($450M then, ~$50B 2024) + first major crypto exchange collapse
On **February 28, 2014**, **Mt. Gox** (Tokyo-based, the world's largest Bitcoin exchange at its peak — handled **~70% of all global Bitcoin transactions 2013**) declared bankruptcy after revealing the **loss/theft of ~850,000 Bitcoin** (~750,000 from customers + 100,000 own), valued at **~$450 million USD at the time** — but which would be worth **~$50 billion at 2024 prices** ($60K/BTC). It was the **first major collapse of a crypto exchange in history**, a traumatic event that marked the early crypto industry. Mt. Gox (originally 'Magic: The Gathering Online Exchange', hence the name) was acquired by **Mark Karpelès** (French programmer) in 2011. The causes of the collapse: a combination of **sustained hacking over years (2011-2014, hackers drained BTC gradually without detection)**, poor technical management, buggy software, and possible internal fraud. **Mark Karpelès** was arrested in Japan in August 2015, tried by the Tokyo District Court — **convicted in 2019 for falsifying records (data manipulation) but ACQUITTED of embezzlement**, received a **2.5-year suspended sentence** (didn't go to prison). Subsequent investigations (WizSec + Chainalysis) attributed much of the theft to **Alexander Vinnik** (operator of the Russian exchange BTC-e — Vinnik laundered the stolen Mt. Gox BTC via BTC-e). After 10 years of bankruptcy proceedings, **Mt. Gox creditors began receiving reimbursements in BTC/BCH in 2024** (~142,000 BTC distributed, a massive gain for those who waited given Bitcoin's appreciation). The case is referenced as **the foundational trauma of the crypto industry + the paradigmatic example of centralized custody risk ('not your keys, not your coins')**. Japan (124M inhabitants) implemented after Mt. Gox **the world's first crypto regulation (Payment Services Act 2017)** — Japan FSA pioneer. Japan is a FATF + APG member.
July 15, 2020 MX confirmed
Mexico: Emilio Lozoya (ex-Pemex CEO) extradited from Spain Jul 2020 — Odebrecht + Agronitrogenados + Peña Nieto era
On **July 15, 2020**, **Emilio Lozoya Austin** (Pemex Director General 2012-2016 under Enrique Peña Nieto government, former PRI international campaign coordinator) was **extradited from Spain to Mexico** after being arrested in Málaga in February 2019 — the most prominent corruption case of the Peña Nieto sexenio (PRI, 2012-2018). FGR accusations: **(1) Odebrecht** — Lozoya received **$10.5 million USD in bribes** from Brazilian construction company Odebrecht (Lava Jato connection) in exchange for Pemex contracts (Tula refinery, etc.) + financing of Peña Nieto's 2012 presidential campaign; **(2) Agronitrogenados/Fertinal** — Lozoya orchestrated the **fraudulent purchase of the scrap Agronitrogenados plant from Altos Hornos de México (AHMSA, Alonso Ancira's Grupo Acerero del Norte)** for **$475M (overvalued, non-functioning plant)** in 2014 — Lozoya received ~$3.4M in commissions. **Alonso Ancira** (AHMSA owner) arrested in Mallorca 2019, extradited 2021. Lozoya **negotiated cooperation agreement (cooperator/whistleblower)** with FGR — implicated Peña Nieto, Luis Videgaray (former Finance Secretary), multiple PAN/PRI senators for vote-buying for the 2013 Energy Reform. Lozoya **was under house arrest, then preventive prison Reclusorio Norte since Nov 2021**, multiple delays in his trial (pending 2026). The AMLO government (MORENA, 2018-2024) + Claudia Sheinbaum (2024+) has used the case politically. **The Bank of Mexico (Banxico)**, CNBV (National Banking and Securities Commission) and UIF (Financial Intelligence Unit, led by Santiago Nieto 2018-2021) supervise the sector. Mexico is a GAFILAT member + FATF observer.
June 20, 2018 AU confirmed
Commonwealth Bank: AUD 700M (~$477M) in 2018 for failing to report 53,500 transactions
The Federal Court ordered Commonwealth Bank of Australia in June 2018 to pay AUD 700 million (~$477 million), then the largest civil penalty in Australian corporate history, after admitting over 53,000 breaches of the anti-money-laundering law that allowed drug-trafficking networks to funnel millions offshore. The case cost the CEO his job.
February 1, 2025 US confirmed
OKX: $504M for sanctions breaches at the crypto exchange
In early 2025, the DOJ imposed $504 million on the crypto exchange OKX for sanctions violations. It was one of the year's major crypto-sector cases, which alongside OFAC's against GVA Capital marked the digital-asset enforcement front.
May 1, 2025 CH confirmed
Credit Suisse: $511M for facilitating tax-evasion schemes linked to AML lapses
In 2025, Credit Suisse agreed to pay $511 million for facilitating tax-evasion schemes linked to AML compliance failures. It was the largest US AML/sanctions penalty of 2025, a year of marked enforcement slowdown versus 2024.
January 26, 2018 JP confirmed
Japan: Coincheck $530M hack Jan 2018 — NEM (XEM) theft, largest crypto hack at the time
On **January 26, 2018**, **Coincheck** (one of Japan's largest cryptocurrency exchanges) suffered the theft of **~$530 million USD in NEM (XEM) tokens** — at the time the **largest crypto exchange hack in history** (surpassing Mt. Gox in nominal value). The attackers accessed the private keys of Coincheck's NEM 'hot wallet', which was **insecurely stored** (without multi-signature, connected to the internet) — a basic security failure. ~260,000 users were affected. Unlike Mt. Gox, **Coincheck reimbursed affected users from its own capital** (~$430M at reimbursement prices) in March 2018. The **Japan FSA (Financial Services Agency)** issued a **'business improvement order'** + intensified supervision of all Japanese exchanges after the incident (Japan had already been a pioneer in crypto regulation with the Payment Services Act 2017 post-Mt.Gox). Coincheck was subsequently **acquired by Monex Group** (April 2018) as part of its rescue/restructuring. Subsequent analyses (though not officially confirmed) suggested possible involvement of DPRK-linked actors in laundering the stolen NEM. The case is referenced as **the second great trauma of the Japanese crypto industry (after Mt. Gox)** + an example of the risk of inadequately secured hot wallets. Japan is a FATF + APG member.
October 19, 2021 MZ confirmed
Mozambique: TUNA BONDS case — Credit Suisse $475M + new UBS charges Dec 2025 — 1.9M pushed into poverty
On October 19, 2021, Credit Suisse Group AG and its London subsidiary CSSEL agreed to pay $475M in fines to DOJ, SEC, UK FCA and Swiss FINMA over the Mozambique TUNA BONDS scandal. Additionally, Credit Suisse agreed to write off $200M in Mozambique debt. Between 2013-2017, Credit Suisse arranged loans of $2+ billion for 3 Mozambican state-owned companies (EMATUM, MAM, ProIndicus) ostensibly for tuna fishing fleets and maritime security. In reality: $50M in kickbacks to Credit Suisse bankers (Andrew Pearse, Surjan Singh, Detelina Subeva) + $150M in bribes to Mozambican officials (including Manuel Chang, former Finance Minister). Privinvest and Iskandar Safa paid $100+M in bribes. Catastrophic result for Mozambique: sovereign default, IMF support withdrawal, metical devaluation, **1.9 MILLION people pushed below the poverty line** (largest increase in the country's history according to Center for Public Integrity 2019). Manuel Chang was arrested in South Africa in 2018, extradited to the US and sentenced in January 2024 to **8 and a half years in federal prison**. On December 1, 2025, the Swiss Office of the Attorney General (OAG) announced **criminal charges against UBS and legacy Credit Suisse**, marking a new phase of the case 4 years after the original settlement. The UK FCA banned 3 individual executives (Pearse and Singh Feb 2025; Subeva 2025 after admitting $200K kickbacks). Mozambique exited the FATF grey list in October 2025.
April 19, 2021 NL confirmed
ABN Amro: €480M (~$583M) in 2021, deemed 'culpable' in aiding criminal groups
The Dutch prosecutor fined ABN Amro €480 million (~$583 million) in 2021 for falling 'seriously short' of its AML program requirements and being deemed 'culpable' in helping criminal groups launder illicit gains. The prosecutor also identified three former board members as 'effectively responsible', opening the path of individual director liability.
January 19, 2017 US confirmed
Western Union: $586M in 2017 for an ineffective AML program and enabling fraud
Western Union admitted anti-money-laundering violations in January 2017 and agreed to pay $586 million with the DOJ and FTC. The remittance company acknowledged turning a blind eye to criminals using its service for fraud and laundering, even ignoring evidence that its own agents were complicit. 39 agents were charged in the US and Canada. It is one of the major money-transfer-sector cases.
August 10, 2021 CN confirmed
China: Poly Network $611M hack Aug 2021 — hacker returned all funds (atypical case)
On **August 10, 2021**, **Poly Network** (cross-chain interoperability DeFi protocol between Ethereum, BSC and Polygon) suffered a **$611 million USD hack** — at the time the **largest DeFi hack in history** (later surpassed by Ronin). The attacker exploited a vulnerability in the bridge's smart contracts that allowed altering the 'keeper' role and authorizing transfers. The extraordinary part of the case: the hacker, self-named **'Mr. White Hat'**, **began returning the funds voluntarily the next day**, claiming he did it 'for fun' and 'to expose the vulnerability'. Poly Network offered him a **$500,000 bug bounty** + asked him to be its 'Chief Security Advisor'. Within ~2 weeks, **virtually all $611M was returned**. The quick return was attributed partly to **Tether freezing $33M in USDT** from the hacker + the difficulty of laundering such large and traceable sums (Chainalysis + SlowMist publicly traced the wallets). The case is referenced as **an atypical example of 'ethical hacking'** in DeFi + a demonstration that blockchain transparency makes laundering large hacks difficult + paradigm of the **security risk of cross-chain bridges** (Poly Network, Ronin, Wormhole, Nomad, Harmony were targeted for $2.5B+ combined 2021-2022). Poly Network suffered a smaller second hack in 2023.
March 23, 2022 SG confirmed
Singapore/Vietnam: Ronin Bridge hack $625M Mar 2022 — DPRK Lazarus (largest DeFi hack in history)
On **March 23, 2022**, the **Ronin Network** (Ethereum sidechain supporting **Axie Infinity**, the world's most popular 'play-to-earn' game in 2021, developed by **Sky Mavis** — a Vietnamese/Singaporean company) suffered **the largest DeFi/crypto hack in history to that point: $625 million USD** (173,600 ETH + 25.5M USDC). The attackers compromised 5 of the bridge's 9 validator keys (including one via a spear-phishing attack with a fake job offer to a Sky Mavis engineer). The **FBI officially attributed the hack to DPRK's (North Korea) Lazarus Group in April 2022** — confirming that the North Korean regime uses crypto hacks as a **primary funding source for its weapons program (proliferation finance)**. OFAC **sanctioned Lazarus's wallets** + subsequently **sanctioned the Tornado Cash mixer (August 2022, case aml-tornado-cash-2022)** that Lazarus used to launder part of the Ronin funds. Sky Mavis **reimbursed users** (with help from a $150M funding round led by Binance) + restored the bridge with improved security. The case is paradigmatic of: **(1) DPRK crypto theft as proliferation finance** (UN Panel of Experts estimates DPRK stole $3B+ in crypto 2017-2023); **(2) the security risk of cross-chain bridges** (which were targeted in $2B+ in hacks 2021-2022: Ronin, Wormhole, Poly Network, Nomad, Harmony). It is part of the Lazarus pattern (Bangladesh Bank 2016, Bybit 2025).
January 30, 2017 DE confirmed
Deutsche Bank: $630M in 2017 over 'mirror trades' that moved $10bn out of Russia
Deutsche Bank agreed to pay $630 million ($425M to New York's DFS and ~$200M to the UK's FCA) in 2017 over a 'mirror trades' scheme that moved $10 billion out of Russia between 2011 and 2015. Russian clients bought shares in rubles in Moscow and sold them almost simultaneously in London in foreign currencies. The DFS found 'greed and corruption motivated the Moscow traders' and imposed an independent monitor. Some money reached the Russian mafia and the Khanani network.
February 26, 2021 MY confirmed
Malaysia: MYR 2.83B ($680M) from BNM to AmBank in Feb 2021 — absolute record over 1MDB scandal
On February 26, 2021, Bank Negara Malaysia (BNM) imposed on AMMB Holdings Berhad (AmBank Group) a fine of MYR 2.83 billion (~$680M USD), the largest AML/CFT sanction in the history of the Malaysian supervisor. AmBank was investigated for its role in the alleged misappropriation of MYR 4.5 billion ($1.08B) from the Malaysian sovereign fund 1Malaysia Development Berhad (1MDB), including the handling of personal accounts of former Prime Minister Najib Razak (sentenced to 12 years prison in August 2020 for related cases). The sanction included the order to establish 'robust systems and processes to enhance the due diligence framework' at AmBank. The case is part of the complete 1MDB package of approximately $4.5B USD globally recovered (Goldman Sachs $2.9B in 2020, Goldman Sachs Malaysia $3.9B in 2020, MAS Singapore sanctions in 2016-2017 on 8 institutions including BSI Bank closed, etc). Repercussions continue: in 2023, Muhyiddin Yassin (also former PM) was arrested by MACC for cases related to AMLA and abuse of power. In 2024, Najib was ordered to enter defense in a second 1MDB corruption trial.
October 27, 2017 GQ confirmed
Equatorial Guinea: Teodorin Obiang $700M+ asset seizures — France/US/UK/Switzerland (Oct 2017)
On October 27, 2017, Teodorin Nguema Obiang Mangue (son of Equatorial Guinea dictator Teodoro Obiang Nguema Mbasogo, President since Aug 3 1979 — 45 years in power, the longest-serving dictator in the world) was sentenced in absentia by Paris Tribunal de Grande Instance for embezzlement of €150M of Equatorial Guinea state funds 2008-2011, used to fund his French lifestyle: Avenue Foch penthouse ($180M), 11 super-cars (Bugatti Veyron, Ferrari Enzo, Bentleys, Aston Martins, Maybachs, Lamborghinis), $40M in art (Whistler, Renoir, Manet, Degas), $1.4M Michael Jackson glove (Cirque du Soleil auction), super-yacht 'Ebony Shine' $400M (ordered 2014). Conviction: 3 years suspended + €30M fine + asset seizure. US DOJ agreed $30M settlement with Teodorin Oct 2014 ($30M + Malibu mansion $30M + Michael Jackson memorabilia $1M, donated to Equatorial Guinea charities — controversial). UK National Crime Agency confiscated Bugatti Veyron 2019. Brazil seized $16M in jewelry 2018. Switzerland froze accounts 2016. Total globally seized assets: $700+ million. Teodorin Obiang was named Equatorial Guinea Vice-President in June 2016. His father is preparing him for succession. Equatorial Guinea (1.6M inhabitants) produces ~250,000 barrels daily of oil and has enriched the regime estimated $20B+ since ExxonMobil + Marathon Oil discoveries 1995. Operates Central African CFA franc XAF (BEAC supervision). GABAC member. TI CPI: position #173 of 180.
January 18, 2023 RU confirmed
Bitzlato: $700M and FinCEN's first use of its 'primary money laundering concern' power
In January 2023, US and European authorities dismantled the Bitzlato exchange, designated by FinCEN as a 'primary money laundering concern' —the first use of that authority— for moving over $700 million in suspect funds between 2016 and 2022. Its owner, Russian national Anatoly Legkodymov, was arrested in Miami. Five people were arrested (in Cyprus, Spain and the US) and around €68 million in crypto and accounts were frozen. Bitzlato was a key source and destination of funds from the Hydra market and the sanctioned exchange Garantex.
December 31, 2023 CN confirmed
China: the PBOC issued 996 AML fines totaling CNY 5.22bn in 2023 (+798%)
In 2023 the People's Bank of China (PBOC) and its branches issued 996 money-laundering-related fines totaling CNY 5.22 billion (~$720 million), a 798% increase over the prior year. Banks were the most sanctioned by count (349 institutions), though payment fintechs concentrated the largest amount. AML fines were 60% of the PBOC's total sanction count and 91% of the amount.
December 31, 1995 FR confirmed
France: Crédit Lyonnais nationalized 1995 — Executive Life fraud $4B + $770M DOJ settlement 2003
Crédit Lyonnais, founded in 1863 in Lyon, was one of France's and Europe's largest banks until its collapse in **1995**, when the French government had to **nationalize it with a $30 billion franc rescue** (~$5-6 billion USD), the largest European bank bailout of its time. The **Executive Life Insurance Company scandal** (California, bought by Crédit Lyonnais in 1991 violating US Glass-Steagall Act which prohibited foreign banks from owning insurers) was the cataclysm: after Executive Life's bankruptcy in 1991, Crédit Lyonnais acquired its assets secretly via nominees, evading US regulations. The California Insurance Commissioner discovered the scheme in 1998 and sued. The **case was settled on December 24, 2003 for $770 million** (one of the largest banking settlements of the era), with Crédit Lyonnais (then owned by Crédit Agricole post-2003 merger) admitting guilt. Crédit Lyonnais was privatized in 1999 after the rescue and eventually absorbed by Crédit Agricole in 2003 (rebrand to 'LCL - Le Crédit Lyonnais'). The case illustrates the legacy of European banks without modern AML/CFT compliance before Basel II + FATF 40 Recommendations. **Jean Peyrelevade**, Crédit Lyonnais CEO 1993-2003, was held responsible by the California court. The Banque de France (French central bank) led the rescue. **The case is referenced in AML literature as a historical example of cross-border banking fraud pre-modern AML era** (similar to BCCI 1991, case aml-bcci-1991 in this tracker).
January 17, 2017 ID confirmed
Indonesia: Garuda FCPA case — Rolls-Royce £671M settlement + ex-CEO convicted (Jan 2017)
On **January 17, 2017**, **Rolls-Royce plc** (UK aerospace conglomerate) agreed to pay **£671M ($800M USD) in the largest settlement under UK Bribery Act 2010 to that point** — $497M UK SFO + $170M DOJ + $25M Brazilian MPF + smaller settlements in Australia, Singapore, Brazil. The scheme: Rolls-Royce had **paid bribes to aerospace officials in 6+ countries** (Indonesia, Brazil, Thailand, Russia, China, Nigeria, Angola) for **30+ years (1980s-2013)** to influence decisions of Trent series engines vs Pratt & Whitney and GE Aviation competitors. **Indonesia Garuda case**: payments to **Emirsyah Satar** (Garuda Indonesia CEO 2005-2014, first non-government Garuda head, considered modernizer) and **Hadinoto Soedigno** (Garuda Director of Engineering) for Trent 700 + Trent 800 engines contracts for Garuda's 777-300ER fleet. Emirsyah Satar arrested by KPK (Komisi Pemberantasan Korupsi, Indonesia's anti-corruption commission) in August 2017 + sentenced **8 years in Indonesia May 2020** (reduced to 6 years on appeal); also paid **$3.4M USD restitution**. Satar's wife (Andry Soetjipto) and intermediary Tunggal also convicted. Parallel Brazilian case: payments to Embraer + TAM + multiple Brazilian Lava Jato connections. The case was **landmark UK Bribery Act 2010 enforcement** (UK SFO under Director David Green QC + later Lisa Osofsky) + **the most significant FCPA case in Asia-Pacific 2010s post-Siemens 2008**. Garuda Indonesia is **national flag carrier**, has lived **multiple financial restructurings** (suspended NYSE 2007, returned 2024 NYSE listing). Indonesia (280M inhabitants, largest Southeast Asian economy $1.3T GDP) is supervised by BI (Bank Indonesia) + OJK (Otoritas Jasa Keuangan) + PPATK (FIU). APG member.
September 3, 2019 GT confirmed
Guatemala: CICIG dismantled in 2019 after 12 years combating corruption — Otto Pérez Molina convicted
The International Commission against Impunity in Guatemala (CICIG), created in 2007 through an agreement between the UN and the Guatemalan government, operated until September 3, 2019, when President Jimmy Morales refused to renew its mandate. For 12 years, CICIG investigated and prosecuted **more than 60 criminal cases** involving political corruption networks, money laundering, tax evasion and illicit campaign financing through the Guatemalan banking system. The most emblematic cases: 'La Línea' (2015) that led to the conviction of **Otto Pérez Molina** (former President) and **Roxana Baldetti** (former Vice President) for customs corruption; 'State Co-opting'; 'Unregistered Electoral Financing' (Sandra Torres case). Assets recovered: **more than $800 million**. Dozens of Guatemalan banks were investigated for processing funds from corrupt officials' accounts. The SIB (Superintendency of Banks) and IVE (Special Verification Intendancy — Guatemalan FIU) coordinated with CICIG. After CICIG's dismantling, criminal prosecution of corruption has deteriorated significantly. The Public Ministry (MP) has been captured, several prosecutors have gone into exile, and the US has designated dozens of Guatemalan officials under the Engel List. Guatemala is a GAFILAT member.
April 30, 2020 IL confirmed
Israel: Bank Hapoalim $874M settlement DOJ + IRS — tax evasion 5,500+ US clients (Apr 2020)
On **April 30, 2020**, **Bank Hapoalim BM** (largest Israeli bank by assets, BPI 4th on Tel Aviv Stock Exchange) agreed to pay **$874 million USD in combined DOJ + IRS settlement** for **'concierge service' that helped ~5,500+ US citizens evade federal taxes** on offshore accounts at Bank Hapoalim Switzerland AG (Zurich) and Bank Hapoalim Luxembourg SA between 2002-2014. It is **the second largest tax evasion settlement against a foreign bank** after Credit Suisse $2.6B (2014, case aml-credit-suisse-us-2014). **Scheme structure**: 1) Advisory to US clients to maintain accounts in Swiss/Luxembourg subsidiaries, 2) Falsification of Forms W-9 (US tax forms), 3) Acceptance of fake **'Form W-8BEN-E'** for non-US declared status, 4) Help in fraudulent structuring via shell companies in Panama, BVI, Cayman. **Settlement breakdown**: $216M DOJ criminal penalties + $169M IRS civil forfeiture + $216M U.S. Federal Reserve civil penalty + $214M Israeli criminal forfeiture (via Israel coordination) + $59M additional fines. **Dov Kotler** (former CEO Hapoalim Switzerland 2008-2014) pleaded guilty individually. **Hayim 'Chaim' Bach** (Hapoalim VP) cooperated. The case forced **massive Israeli banking reform**: end of Hapoalim Switzerland + Luxembourg operations 2017, closure of **all foreign branches focusing on US clients**. Bank Hapoalim is **member of Tel Aviv Stock Exchange (TA-35 index)** and the **largest Israeli bank by assets** ($150B+). It is the only **post-Israeli major bank with criminal conviction**. Israeli banking supervision is under **Bank of Israel + Banking Supervision Department**. Other Israeli banks: **Bank Leumi** (second largest, also paid $400M settlement DOJ 2014 for similar tax evasion case), Mizrahi-Tefahot Bank, Israel Discount Bank, First International Bank of Israel.
July 17, 2012 MX confirmed
Mexico: HSBC Mexico was the Sinaloa cartel's 'gateway' to the US financial system
The US Senate Permanent Subcommittee on Investigations report (chaired by Carl Levin) of July 2012 documented that HSBC Mexico (HBMX) was the focal point of laundering for the Sinaloa cartel and Colombia's Norte del Valle cartel into the US banking system between 2002 and 2009. The Mexican subsidiary moved $7 billion in cash to HSBC's US operation between 2007 and 2008, a volume that 'could only reach that size if they included illegal drug proceeds' according to law enforcement officials. HSBC classified Mexico in its 'lowest risk' category, which excluded $670 billion in transactions from monitoring systems. At least $881 million from Mexican and Colombian cartels were laundered through the group. The Office of the Comptroller of the Currency (OCC) 'tolerated' the bank's lax controls for six years without taking 'a single enforcement action'. The final $1.92 billion settlement of December 2012 covered this case (separately documented), but the specific findings about Mexico established the precedent for all subsequent border cartel cases: Wachovia ($160M, 2010), Banamex USA ($140M FDIC + $97M DOJ, 2015-2017), TD Bank ($3.09B, 2024).
September 4, 2018 NL confirmed
Netherlands: ING Bank pays €775M ($900M) in Sep 2018 — largest AML fine in Dutch history
On **September 4, 2018**, the Dutch Public Prosecutor (Openbaar Ministerie) announced a settlement with **ING Bank N.V.** (largest Dutch bank) for **€775 million ($900M USD)** — **the largest AML fine in Dutch history**. The agreement did not require guilty plea ('Transactie' — Dutch legal figure similar to US DPA). Facts: ING was accused of violating the Wet ter voorkoming van witwassen en financieren van terrorisme (Wwft, Dutch AML Act) and of **systematic structural AML monitoring failures between 2010-2016**. Specific cases investigated included: (1) **Processing of VimpelCom transactions** linked to the Uzbekistan Karimova case (case aml-uzbekistan-cbu-2024, $850M in telecom bribes), (2) **Unmonitored PEP accounts** including **Suriname President Dési Bouterse** (former military dictator 1980-1987, elected president 2010-2020, convicted of drug trafficking in absentia by Netherlands in 1999 — 11 years prison), (3) **Tax evasion for wealthy European clients**, (4) **Deficient banking services for high-risk clients in Belgium, Luxembourg, Italy, Poland**. The **CEO Ralph Hamers (CEO 2013-2020) resigned** in October 2020 but continued with responsibilities at UBS Group (CEO UBS from November 2020 to April 2023 — controversial appointment given the ING DPA). The regulatory action of **De Nederlandsche Bank (DNB)** and **Autoriteit Financiële Markten (AFM)** continued with subsequent investigations. The case drove the reform of the **Dutch AML Act 2018** aligning with the EU's 4th/5th AMLD.
October 21, 2020 AU confirmed
Westpac: AUD 1.3bn (~$919M) in 2020, the largest civil penalty in Australian history
The Federal Court of Australia declared in October 2020 that Westpac had breached the AML/CTF Act on over 19 million occasions, and ordered it to pay AUD 1.3 billion (~$919 million), the largest civil penalty in Australian history. AUSTRAC said the bank enabled payments from high-risk countries and convicted child sex offenders, without due monitoring between 2013 and 2018.
August 8, 2022 US confirmed
Tornado Cash: OFAC sanctions in 2022 the mixer used by North Korea's Lazarus group
In August 2022, the US Treasury (OFAC) added the crypto mixer Tornado Cash to its sanctions list, barring US citizens and companies from using it. Its founders, Roman Storm and Roman Semenov, were charged in 2023 with operating a mixer that laundered over $1 billion, including funds from North Korea's Lazarus group. A key case of enforcement over code and decentralized mixers, with debate over sanctioning a software protocol.
January 18, 2023 HK confirmed
Hong Kong/Macau: Suncity dismantled — Alvin Chau 18 years prison for VIP gambling junket (Jan 2023)
On January 18, 2023, Alvin Chau Cheok Wa (president and founder of Suncity Group, largest VIP gambling junket company in pre-2022 Macau) was sentenced to 18 years prison by Macau Court of First Instance on 162 charges including: organizing gambling syndicate, massive fraud, money laundering, illegal casino operation. Suncity Group operated as VIP junket — operators taking Chinese high-rollers to Macau via offshore credit (traditional vector for Chinese capital flight), also operated illegal online casinos in Philippines, Vietnam, Cambodia. Scheme documented by OCCRP + Reuters investigation revealing $1+ billion in bribes and Chinese offshore capital movement. Suncity Group completely liquidated between 2022-2023, marking end of VIP junket era in Macau (40%+ gambling revenues pre-2022). HKMA + SFC + JFIU supervise the Hong Kong banking sector under AMLO Cap. 615 (2012). Hong Kong (7.4M inhabitants, $360 billion GDP) is one of Asia's largest financial centers alongside Singapore. Post-2020 (National Security Law imposed by Beijing), Hong Kong has seen massive capital flight ($500+ billion documented by HKMA + IMF).
November 28, 2022 US confirmed
US: BlockFi bankruptcy Nov 2022 — $100M SEC settlement (first crypto lending) + FTX exposure
**BlockFi** (crypto lending platform, CEO **Zac Prince**) had two key moments: **(1)** In **February 2022**, it agreed to a **historic $100 million settlement with the SEC + 53 state regulators** ($50M SEC + $50M states) — the **first major enforcement against a crypto lending product** ('BlockFi Interest Account' BIA, deemed an unregistered security), setting the regulatory precedent later applied to Celsius, Voyager, Genesis. **(2)** On **November 28, 2022**, BlockFi declared Chapter 11 bankruptcy after the FTX collapse (November 2022) — BlockFi had **massive exposure to FTX/Alameda Research** (it had received a $400M bailout from FTX in July 2022 + had collateral at FTX + loans to Alameda) — a domino effect of the crypto winter. BlockFi users were trapped; bankruptcy distributions began 2023-2024 (~$1B+ partially recovered). The case is part of the **2022 crypto lending collapse cluster** (Celsius, Voyager, 3AC, Genesis) catalyzed by Terra/Luna + FTX. BlockFi was backed by prominent venture capital (Peter Thiel's Valar Ventures, Galaxy Digital). The case reinforced SEC scrutiny of 'crypto yield products' as unregistered securities.
July 7, 2023 CN confirmed
Ant Group: CNY 7.123bn (~$1bn) from the PBOC in 2023, one of China's largest fintech fines
The People's Bank of China (PBOC) fined fintech giant Ant Group (蚂蚁集团) and its units CNY 7.123 billion (~$1 billion) in July 2023 for breaches including money-laundering-prevention failures, among other payment and consumer-protection violations. It was one of the two mega-fines that drove China's total AML penalty amount up 798% that year (CNY 52.2 billion across 996 fines).
December 6, 2019 SE confirmed
Sweden: Ericsson FCPA $1.06B Dec 2019 — telecom bribery in 5 countries + DPA breach 2023
On **December 6, 2019**, **Telefonaktiebolaget LM Ericsson** (the Swedish telecommunications giant) agreed to pay **$1.06 billion USD** (DOJ + SEC) to resolve FCPA charges for a **long-standing bribery scheme in at least 5 countries**: China, Djibouti, Vietnam, Indonesia and Kuwait, during 2000-2016. Ericsson used consultants, bribes to officials, creation of slush funds, and falsification of books to win telecommunications contracts. The settlement included a **3-year DPA (Deferred Prosecution Agreement) + an independent monitor**. However, the case had a notable twist: in **2023, the DOJ determined that Ericsson had VIOLATED the terms of the DPA** (for not fully disclosing information about its conduct in Iraq, including possible payments to ISIS/Islamic State to operate in areas controlled by the terrorist group, revealed by the 2022 'Iraq scandal') — Ericsson had to **plead guilty + pay an additional $206 million** in March 2023, a rare case of corporate DPA violation. The case is referenced as **one of the largest telecom FCPAs (along with the Uzbekistan cases: TeliaSonera, VimpelCom, MTS)** + an example of the consequences of violating a DPA. Sweden is a FATF founding member.
April 9, 2019 GB confirmed
Standard Chartered: $1.1bn in 2019 for transactions with sanctioned countries
British bank Standard Chartered was fined $1.1 billion in 2019 by US and UK authorities for violating anti-money-laundering rules. It was found guilty of processing hundreds of millions of dollars in transactions from sanctioned countries like Syria, Cuba and Iran, without implementing adequate controls. It was a repeat offender: it had already paid $667 million in 2012 and $300 million in 2014 for similar conduct.
April 9, 2019 GB confirmed
United Kingdom: Standard Chartered repeat offender — $1.1B 2019 + $667M 2012 = $1.767B total OFAC sanctions
**Standard Chartered plc** (largest British bank operating in emerging markets — Asia, Africa, Middle East) has been subject to two rounds of massive OFAC sanctions: **(1) August 2012**: $667M settlement with DOJ + NY DFS + Federal Reserve + Manhattan DA for violating Iran sanctions during 2001-2007 — processed $250+ billion in U-turn transactions for Iranian clients, using 'wire stripping' (removing Iranian identifiers from wire messages). The NY DFS under Benjamin Lawsky described Standard Chartered as **'a rogue institution'** and nearly suspended its NY banking license (very controversial decision among federal regulators). **(2) April 2019**: **$1.1 billion settlement** coordinated by DOJ + OFAC + UK FCA + Federal Reserve + NY DFS + Manhattan DA for **repeat Iran sanctions violations + new Burma, Cuba, Sudan and Zimbabwe violations between 2007-2014** — including $437M identified transactions. **Standard Chartered is a classic repeat offender**: the pattern of violations continued EVEN AFTER the 2012 DPA, in direct violation of the agreement. UK FCA imposed **£102M fine ($133M) — the second largest FCA fine in history** (£40M deferred subject to future compliance). Key facts: Iranian clients with accounts in Gulf branches (Dubai, Bahrain) and wire transfers via Standard Chartered NY using 'manual stripping' (manual removal of SWIFT message); 'walk-in customer business' allowed for UAE-Iran clients without sanctions check. **Bill Browder** (Hermitage Capital, already designated) accused Standard Chartered in 2020 of processing funds from the **Russian Treasury fraud Magnitsky case** ($230M, case aml-magnitsky-russia-2009 in this tracker) — investigation continues.
May 24, 2022 CH confirmed
Switzerland: Glencore pleads guilty FCPA + $1.1B settlement (May 2022) — 7-country bribes + commodity manipulation
On **May 24, 2022**, **Glencore plc** (world's largest commodity trader, headquartered in Baar, Switzerland, LSE-listed) agreed to **pay $1.1 billion USD** in penalties coordinated with DOJ ($428M), CFTC ($486M), UK SFO ($315M GBP converted + £282M Nov 2022 sentence), Brazilian Federal Police ($39M), Swiss OAG ($2M), Dutch Public Prosecutor — **one of the largest FCPA settlements in history** (surpassed only by Goldman 1MDB $2.9B 2020). **Glencore International AG** (Swiss subsidiary) **pleaded guilty** for **conspiracy to violate FCPA**. Facts: during 2007-2018, Glencore paid **$100+ million in bribes** to government officials in **7 African and Latin American countries**: **Nigeria** (NNPC Nigerian National Petroleum Corp), **Cameroon** (SNH Société Nationale des Hydrocarbures), **Democratic Republic of Congo** (Gécamines), **Venezuela** (PDVSA), **Côte d'Ivoire**, **Brazil** (Petrobras), **Equatorial Guinea**. Additionally, Glencore **manipulated oil and gasoline markets** during 2011-2019, generating $100M+ in illicit profits via 'wash trades' and benchmark manipulation. Convicted co-defendants: **Anthony Stimler** (UK SFO, 32 months prison), **Andrew Gibson** (US, 24 months), **Paul Hopkins** (US, cooperator), **Anthony Hayward** (former oil head, cooperator), among others. The case is **emblematic** of the **role of commodity traders** (Glencore, Vitol, Trafigura, Mercuria) in endemic corruption of extractive sectors in Sub-Saharan Africa and Latin America. **Vitol** has also paid $164M in 2020 in FCPA, **Trafigura** $127M in 2024.
September 4, 2018 NL confirmed
ING Groep: $1.18bn in 2018 over weak financial controls in the Netherlands
Dutch multinational bank ING Groep was fined $1.18 billion in 2018 for a string of poor financial controls. Prosecutors said internal controls were exceedingly weak, allowing money laundering without adequately declaring the source of funds. Four specific transactions were called out for facilitating crime, including bribe payments.
October 1, 2013 US confirmed
US: Silk Road darknet $1.2B — Ross Ulbricht life sentence 2015, pardoned by Trump Jan 2025
On **October 1-2, 2013**, the FBI arrested **Ross Ulbricht** (alias 'Dread Pirate Roberts' / DPR) in a San Francisco public library, dismantling **Silk Road** — the **first and most notorious darknet marketplace in history**, operating on the dark web (Tor) since 2011. Silk Road facilitated **~$1.2 billion USD in sales (9.5M BTC in transactions)** of illegal drugs, fake documents, hacking tools, and other illicit goods, using **Bitcoin as the exclusive payment method** (the first major criminal 'use case' of Bitcoin, which catalyzed the early crypto-cybercrime association). Silk Road charged 8-15% commissions as escrow. Ulbricht was **convicted in February 2015** on 7 charges (narcotics conspiracy, money laundering, computer hacking, continuing criminal enterprise 'kingpin') — **sentenced to DOUBLE LIFE WITHOUT PAROLE + 40 years** in May 2015 (SDNY, Judge Katherine Forrest), one of the most severe sentences for non-violent crimes in US history (although the case included unproven murder-for-hire allegations). The US government **seized ~144,000 BTC** from Silk Road (sold in US Marshals auctions 2014-2015 + later, valued in billions at current prices). The Silk Road case generated a **libertarian 'Free Ross' movement** (family + Bitcoin community argued disproportionate sentence). **On January 21, 2025, President Trump granted Ross Ulbricht a full presidential pardon** (campaign promise to the crypto/libertarian community), freeing him after ~11 years in prison. The case is referenced as **the foundational darknet markets case + crypto criminal use + the debate on cybercrime sentencing**. Later darknet markets (AlphaBay, Hansa, Dream Market, etc.) followed the Silk Road model.
September 15, 2024 BD confirmed
Bangladesh: BFIU freezes $1.25B from 366 individuals post-fall of Hasina government in August 2024
After the fall of Sheikh Hasina's government on August 5, 2024 due to a student-popular revolution, the Bangladesh Financial Intelligence Unit (BFIU) executed the largest account freeze in the country's history: Tk 15,000 crore (~$1.25 billion) over 366 individuals and entities linked to the former government, including Sheikh Hasina herself, Awami League leaders and the S Alam Group (a business conglomerate whose leaders allegedly laundered funds through major commercial banks). The legal framework is the modified Money Laundering Prevention Act (MLPA) 2012 and the Anti-Terrorism Act 2009. In 2025, the United Kingdom additionally froze £185-260M in Bangladesh-linked assets (the largest UK freeze ever linked to a South Asian country). Transparency International Bangladesh estimates the country loses $12-15B annually to laundering since 2010. Global Financial Integrity estimated USD 61.6B in illicit outflows between 2005-2014. The BFIU, established as the Anti Money Laundering Department in 2002 and renamed in 2012, is Bangladesh's FIU and part of the Asia/Pacific Group on Money Laundering (APG).
July 5, 2022 US confirmed
US: Voyager Digital $1.3B bankruptcy Jul 2022 — 3AC default + FDIC false claims + FTC $1.65B
On **July 5, 2022**, **Voyager Digital** (crypto brokerage/lending platform, listed on Toronto TSX, CEO **Stephen Ehrlich**) declared Chapter 11 bankruptcy with ~$1.3 billion deficit — a direct victim of the **Three Arrows Capital (3AC)** collapse, to which it had lent **$670 million uncollateralized** (one of the most reckless loans of the crypto winter). Voyager had ~3.5M users. The **FTC sued Voyager + Ehrlich in October 2023** for **falsely claiming deposits were FDIC-insured** (they weren't — Voyager wasn't a bank) — **$1.65 billion settlement with the FTC** (Oct 2023) + Ehrlich agreed to a ban on handling consumer assets. Voyager was **acquired by Binance.US in a bankruptcy auction** but the deal collapsed after regulatory objections (CFIUS) — users recovered ~35% via crypto distributions 2023-2024. The case, along with Celsius/3AC/BlockFi, defined the **crypto lending fraud model of the 2022 crypto winter** + set precedent on **FDIC insurance misrepresentation in crypto**. SEC + CFTC + NYAG + 7 state regulators parallel actions.
April 15, 2019 IT confirmed
Italy: UniCredit pays ~$1.3B in 2019 for violating US sanctions on Iran, Libya, Sudan, Syria
The Federal Reserve Board fined UniCredit and two subsidiaries $158 million in April 2019 for 'unsafe practices' linked to inadequate sanctions compliance controls, while the US Treasury announced three parallel settlements totaling $611 million with UniCredit in Germany, Austria and Italy. The cumulative total, including a final payment to OFAC, reached approximately $1.3 billion (~€1.2 billion). The case revealed systematic 'wire stripping' practices —the compliance team removed payment details to protect the anonymity of beneficiaries in sanctioned countries—. Between 2006 and 2011, Iranian shipping line IRISL Group made 1,319 payments totaling $75 million. UniCredit Bank AG (the German subsidiary) pleaded guilty to criminal conspiracy in a US federal court.
January 1, 2022 AU confirmed
Australia/global: HyperVerse/HyperFund $1.3B+ global Ponzi — Sam Lee/Ryan Xu (founders charged 2024)
**HyperVerse** (and its predecessor **HyperFund**, also known as HyperTech/HyperCommunity) was a **global cryptocurrency Ponzi/pyramid scheme of more than $1.3 billion USD** that operated between 2020-2022, attracting victims in dozens of countries (especially the US, Australia, UK, India, Africa). Founded by Chinese-Australian **Sam Lee (Aijun Li) and Ryan Xu (Qiao Xu)** — who had already been linked to the collapsed Blockchain Global —, HyperVerse promised returns of **0.5-1% daily** (impossible returns, ~300% annually) supposedly generated by 'crypto mining' and company operations, with an MLM recruitment commission structure. The scheme was notorious for presenting a **'CEO' named 'Steven Reece Lewis' who turned out to be completely fictitious** (a hired actor, with no verifiable real existence) — a detail that became emblematic of the fraud. Regulators in **at least 8 countries issued warnings** (including Australia's ASIC, the UK's FCA, and authorities in New Zealand, Germany, Hungary, etc.). In **2024, the US SEC + DOJ filed charges** against Sam Lee (fraud) and arrested a key promoter (Rodney Burton 'Bitcoin Rodney'). Sam Lee faces charges; his whereabouts have been the subject of a search. The case is referenced as **one of the largest global crypto Ponzis (along with OneCoin, BitConnect, PlusToken) + the example of the 'fake CEO'**. Australia is supervised by ASIC + AUSTRAC. Australia is a FATF + APG member.
December 21, 2017 CD confirmed
DR Congo: Dan Gertler Magnitsky SDN Dec 2017 — $1.36B Congo lost + Glencore $1.1B settlement + Kabila era
On **December 21, 2017**, **Dan Gertler** (Israeli businessman, grandson of the Israel Diamond Exchange founder, operating in DR Congo since 1997) was **designated SDN by OFAC under the Global Magnitsky Act** — one of the paradigmatic mining sector corruption cases in Africa. Gertler was documented (by The Sentry, Global Witness, IMF) as the **key mining corruption intermediary under Joseph Kabila's regime** (DR Congo President 2001-2019). Scheme: Gertler used his **close relationship with Kabila** to acquire mining rights (copper + cobalt — DR Congo has **70% of world cobalt reserves**, critical for EV batteries) at **dramatically undervalued prices from the Congolese state**, then resell to mining majors (Glencore, ENRC, etc.) with enormous margins. An **Africa Progress Panel study (Kofi Annan, 2013) documented that DR Congo lost ~$1.36 billion** in 5 mining deals 2010-2012 sold to Gertler-linked offshore companies (BVI) at a fraction of market value. **Glencore plc** (Anglo-Swiss mining giant) **paid $1.1 billion in settlements (DOJ + UK SFO + Brazil + Swiss) in 2022** for a bribery scheme that included payments to Gertler intermediaries for DRC + Nigeria + Venezuela + others (the Glencore case is one of the largest mining FCPA cases). After the 2017 Magnitsky designation, Gertler faced **global asset freezes** — but controversially, in **January 2021 (last day of Trump 1.0), OFAC granted Gertler a special license** (revoked by Biden March 2021 after outcry from NGOs + Congress). Gertler has negotiated asset return agreements with the government of **Félix Tshisekedi** (DR Congo President since 2019, Kabila's successor) — controversial 2022 deal. DR Congo (100M inhabitants, capital Kinshasa) — the financial sector is supervised by the BCC (Banque Centrale du Congo) + CENAREF (FIU). It is a GABAC + COMESA member. DR Congo is one of the world's richest countries in natural resources but among the poorest (paradigmatic resource curse).
February 26, 1995 GB confirmed
UK: Barings Bank $1.4B collapse Feb 1995 — Nick Leeson + UK's oldest bank went bankrupt
On **February 26, 1995**, **Barings Bank** — founded in 1762, the **UK's oldest merchant bank**, known as 'the Queen's bank' (managed the royal family's assets) and financier of the British Empire — declared bankruptcy after unauthorized trading losses of **£827 million ($1.4 billion USD)** were discovered, caused by a single trader: **Nick Leeson (28 years old)**, head of operations in Singapore. Leeson had been **accumulating losses for years on unauthorized speculative operations** in Nikkei 225 futures (betting that the Japanese market would rise), hiding them in a secret error account ('account 88888'). He had simultaneous control of front-office (trading) AND back-office (settlement) operations in the Singapore office — a **critical violation of separation of duties** that enabled the concealment. The **Kobe earthquake (January 17, 1995)** crashed the Nikkei, catastrophically multiplying his losses; Leeson doubled bets trying to recover, without success. When the loss exceeded the bank's capital, **Barings simply collapsed** — it was sold to **ING (Netherlands) for a symbolic £1** on March 6, 1995. Leeson fled to Malaysia, was arrested in Germany, **extradited to Singapore, sentenced to 6.5 years in prison** (served 4, released 1999 for colon cancer). The case is referenced as **the paradigmatic rogue trader example + critical internal controls failure in banks** + established fundamental lessons on the mandatory separation of front/back office. It inspired the book 'Rogue Trader' and the film (1999). The case prefigured other later rogue traders (Société Générale/Kerviel 2008, UBS/Adoboli 2011, JPMorgan/London Whale 2012). The UK is a FATF founding member.
March 12, 2015 DE confirmed
Commerzbank: $1.45bn in 2015 for moving money for Iran, Sudan and Myanmar
German bank Commerzbank was fined $1.45 billion in 2015 for violations of anti-money-laundering and sanctions laws, including facilitating transactions with Iran, Sudan and Myanmar. US prosecutors said the bank knowingly moved money through the US financial system on behalf of blacklisted entities between 2002 and 2008, deliberately hiding identifying information from wires.
January 7, 2009 IN confirmed
India: Satyam $1.5B fraud Jan 2009 — Raju confessed ('India's Enron') + 7 years prison
On **January 7, 2009**, **Ramalinga Raju** (founder and CEO of **Satyam Computer Services**, then India's fourth-largest IT company, with ~50,000 employees, NYSE-listed as ADR) sent a letter to the board **confessing a massive accounting fraud of ~$1.5 billion USD (₹7,136 crore)** — one of the largest corporate scandals in India's history, immediately dubbed 'India's Enron'. The confession revealed that **94% of Satyam's reported 'cash' (₹5,040 crore of ₹5,361) was fictitious** — Raju had inflated the balance sheets for years with fake accounts, non-existent customers, and fabricated income to meet market expectations, a scheme he compared to 'riding a tiger, not knowing how to get off without being devoured'. The auditing firm **PwC India** was strongly implicated (its affiliate was banned from auditing listed companies in India for 2 years; PwC paid **$25.5M in settlement to the SEC in 2011**, the first PCAOB case against a Big Four in India). **Raju + 9 executives were sentenced in 2015 to 7 years in prison** + fines. Satyam was rescued via forced acquisition by **Tech Mahindra** (Mahindra Group) in 2009 + renamed Mahindra Satyam. The case transformed corporate governance in India: it accelerated the **Companies Act 2013** (massive reforms), the creation of the **SFIO (Serious Fraud Investigation Office)**, and the tightening of SEBI. India is a FATF + APG member.
July 6, 2023 SG confirmed
Singapore/China: Multichain $1.5B collapse Jul 2023 — CEO Zhaojun arrested in China (hidden centralization)
In **July 2023**, **Multichain** (formerly Anyswap, one of DeFi's largest cross-chain bridge protocols, connecting 90+ blockchains) collapsed with **~$1.5 billion USD in user funds frozen/lost** — one of the largest DeFi collapses of 2023. The protocol advertised itself as decentralized, but reality exposed a **hidden and catastrophic centralization**: the Chinese CEO known as **'Zhaojun' (Zhao Jun)** personally controlled the keys of the servers operating the bridge. When Zhaojun was **arrested by Chinese police in May 2023** (Chinese authorities seized his devices + control of the wallets), the protocol became inoperable — funds began moving anomalously in July 2023 (possibly by Chinese authorities or third parties with access). Zhaojun's sister was also arrested. Multichain **announced its definitive closure**, leaving users and integrated protocols (including Fantom Foundation, which had massive exposure) with enormous losses. The case is paradigmatic of the **risk of 'theatrical decentralization'** — protocols that present themselves as decentralized but have hidden single points of failure. It also illustrates the regulatory/jurisdictional risk of DeFi projects operated from China (where crypto is banned). It reinforces the pattern of **cross-chain bridges as DeFi's riskiest component**.
December 15, 2008 DE confirmed
Germany: Siemens $1.6B FCPA settlement Dec 2008 — $1.4B global bribes (modern foundational FCPA case)
On **December 15, 2008**, **Siemens AG** (German industrial conglomerate, Munich, one of the world's largest) agreed to pay **$1.6 billion USD in combined settlement** — $450M DOJ criminal + $350M SEC disgorgement + €395M ($569M) German Munich Prosecutor + smaller — **the largest FCPA (Foreign Corrupt Practices Act) settlement in history to that point** and foundational case of the modern FCPA enforcement era. The investigation revealed that Siemens had operated **a systematic and global bribery system** between 2001-2007: **$1.4 billion in bribes paid** to government officials in **dozens of countries** to win contracts — the scheme included physical 'cash desks' in Siemens offices (employees withdrew up to €1M cash in briefcases), shell companies, fake 'consulting agreements', slush funds in Swiss/Liechtenstein/Dubai accounts. Documented cases: **Argentina** (national ID cards $1B contract, bribes to Menem + De la Rúa government), **Bangladesh** (mobile telephone), **Venezuela** (metro projects), **China** (medical equipment + transmission lines), **Israel** (power plants), **Iraq** (UN Oil-for-Food kickbacks), **Nigeria** (telecom), **Russia** (traffic systems), **Mexico** (refinery), **Vietnam, Italy, Greece (Siemens Hellas Olympics 2004)**. The case was catalyzed by **German tax investigation 2006** + raids at Munich HQ November 2006. **Heinrich von Pierer** (CEO 1992-2005, then Chairman) forced to resign + civil settlement. **Klaus Kleinfeld** (CEO 2005-2007) resigned. **Reinhard Siekaczek** (mid-level executive, cash desk manager) became key witness, sentenced suspended Germany 2008. **Uriel Sharef** (board member) first DAX company board member charged by SEC 2011. Siemens implemented **one of the most extensive corporate compliance reforms in history** ($1B+ invested) + became a Harvard Business School case study. The case is **referenced as the start of the modern era of aggressive FCPA enforcement** (before Siemens, settlements were typically <$50M).
October 14, 2011 JP confirmed
Japan: Olympus $1.7B fraud Oct 2011 — Woodford whistleblower + Kikukawa convicted
On **October 14, 2011**, **Olympus Corporation** (the Japanese optical/medical equipment giant, founded in 1919) abruptly fired its new British CEO **Michael Woodford** just 2 weeks after his appointment — an unprecedented event in Japanese corporate culture. What was revealed afterward: Woodford had **discovered and questioned suspicious payments of $1.7 billion USD** that Olympus had made in advisory fees (~$687M to an unknown advisor in the Cayman Islands for the acquisition of Gyrus, a British medical equipment company) + acquisitions at inflated prices of three small Japanese companies (~$773M). The Olympus board had voted to silence Woodford. Woodford became a **public whistleblower**, took evidence to the British SFO, FBI and the Financial Times — unleashing one of Japan's biggest corporate scandals. The investigation revealed that Olympus had used those payments to **hide investment losses from the 1990s ('tobashi' scheme)** for **~13 years** — a 'loss deferral' scheme to keep books clean, known and approved by successive presidents. Former chairman **Tsuyoshi Kikukawa + Hisashi Mori + Hideo Yamada were convicted in 2013** (Kikukawa: 3 years, suspended sentence — controversial as considered lenient). Olympus paid fines + faced lawsuits. Woodford received a £10M settlement. The case revealed the problems of **corporate governance in Japan** (passive board, lack of independent directors, culture of silence) + catalyzed reforms (Stewardship Code, Corporate Governance Code 2014-2015). Japan is a FATF + APG member.
December 11, 2012 GB confirmed
HSBC: $1.9bn in 2012 for enabling Mexican cartel money laundering
The US Treasury announced in 2012 the largest bank settlement in its history at the time: over $1.9 billion with HSBC for Bank Secrecy Act and sanctions violations. The bank's AML compliance failures allowed hundreds of millions of dollars from Mexican drug-trafficking organizations to flow through US accounts. Under Secretary David Cohen called the conduct willful and dangerous.
April 22, 2021 TR confirmed
Turkey: Thodex $2B exit scam Apr 2021 — Özer 11,196 years prison (world record sentence)
On **April 22, 2021**, **Thodex** (one of Turkey's largest cryptocurrency exchanges) abruptly collapsed when its founder and CEO, **Faruk Fatih Özer (27)**, **fled the country to Albania** taking an estimated **$2 billion USD** in funds from **~400,000 users** — one of the largest crypto exit scams in history. Thodex suddenly ceased operations, claiming a false 'sale to investors' and technical problems, while Özer boarded a flight to Tirana with suitcases. The collapse occurred in the context of a **crypto boom in Turkey** driven by the very high inflation of the Turkish lira (Turks bought crypto as a store of value). The Turkish government issued an arrest warrant + Interpol Red Notice. **Özer was arrested in Albania in August 2022, extradited to Turkey in April 2023**, and tried. In **September 2023, a Turkish court sentenced Faruk Fatih Özer to 11,196 years in prison** (along with his brother and sister, also sentenced to the same term) — one of the **longest prison sentences ever imposed in the world** (Turkish courts add penalties for each victim/charge). The case is referenced as **Turkey's largest crypto fraud + the most extreme crypto sentence in history** + an example of the risk of unregulated exchanges in emerging markets with high crypto adoption. Turkey entered the **FATF grey list (Oct 2021)**, exited June 2024. Turkey is a FATF member + MENAFATF observer.
October 8, 2025 KH confirmed
Cambodia/US: Huione Group FinCEN Section 311 Oct 2025 + 146 Prince Group Chen Zhi designations
On October 8, 2025, FinCEN designated Huione Group (Cambodia) under Section 311 of USA PATRIOT Act as 'primary money laundering concern' — first time since Banco Delta Asia (2005, case aml-dprk-bda-2005). Huione Group including Huione Pay, Huione Crypto and Huione Guarantee (escrow), documented by blockchain analysts (Elliptic, TRM Labs) as one of main hubs for: (1) DPRK Lazarus Group laundering (including $1.5B Bybit hack Feb 2025, largest crypto heist in history), (2) Pig-butchering scam compounds in Cambodia, Myanmar (Karen State, Shan State), Laos (Bokeo Province SEZ), Philippines border zones — where thousands of people are kidnapped in modern slavery conditions to operate massive scams. UK, EU, Switzerland and Singapore have implemented parallel sanctions. On October 14, 2025, OFAC designated 146 additional entities of Prince Group (Chen Zhi, Cambodian-Chinese citizen, majority shareholder of Royal Group of Cambodia linked to PM Hun Sen + Hun Manet). The case is the largest crypto/AML enforcement of the 21st century ($2+ billion documented). ASEAN AML + APG launched pan-Asian initiative 2025 to combat scam compounds.
October 14, 2025 KH confirmed
Cambodia: Huione Group severed from US financial system by FinCEN + designated TCO by OFAC in Oct 2025
On October 14, 2025, FinCEN issued the final rule severing Huione Group (Cambodian conglomerate of banks, crypto exchanges and payment services) from the US financial system, requiring US financial institutions not to process transactions of correspondent accounts involving Huione. In parallel, OFAC designated Huione Group as a Transnational Criminal Organization (TCO) under Executive Order 13581, sanctioning 146 targets associated with the company. Treasury described Huione as a 'central financial conduit' for Southeast Asia's scam industry, including networks overlapping with Prince Group (also designated the same day as TCO). Specific allegations include: laundering proceeds from 'pig butchering' scams (romantic-financial deception), ransomware linked to the Chen family, facilitation of cybercrime, and links to Myanmar's military dictatorship through Shwe Kokko. It is the broadest TCO designation executed in 2025 and the first 311 final rule (PATRIOT Act) against a Southeast Asian crypto group.
July 17, 2014 CY confirmed
Cyprus: FBME Bank FinCEN Section 311 Jul 2014 — Hezbollah/Syria/Russia laundering + bank liquidation
On **July 17, 2014**, FinCEN designated **FBME Bank Ltd** (Federal Bank of the Middle East, registered in Tanzania but operating primarily from Cyprus — Nicosia) under **Section 311 of USA PATRIOT Act** as 'primary money laundering concern'. It is one of the **few Section 311 designations issued in history** (among Banco Delta Asia 2005, ABLV Latvia 2018 case aml-ablv-fincen-311-detail-2018, and Huione Group 2025). FinCEN documented that FBME had facilitated **at least $2 billion in suspicious transactions** and operated as a laundering vehicle for: **(1) Hezbollah financing** (documented transactions with linked entities); **(2) Syria sanctions evasion** (Bashar al-Assad regime + sanctioned Syrian Scientific Studies and Research Center SSRC, chemical weapons producer); **(3) Russian + transnational organized crime**; **(4) terrorist financing**; **(5) a client that was a front company for a Hezbollah agent**. FBME was owned by **Lebanese brothers Ayoub-Farid and Fadi Saab**. The bank operated ~$2 billion in deposits, 90% non-resident. After the designation, the **Central Bank of Cyprus took control of FBME (resolution) + revoked its license in 2015**, ordering liquidation. The Saab brothers litigated extensively (US courts, Cyprus, international arbitration) alleging unfair process — FBME won some procedural victories (US court remanded FinCEN 2015-2017 on procedure) but the bank was already liquidated. The case is paradigmatic of **Cyprus as a hub of Russian + Middle East flight capital pre-2013** (Cyprus had its own banking crisis 2013 — depositor bail-in of Laiki Bank + Bank of Cyprus, €10B Troika bailout, massive Russian deposits). The Central Bank of Cyprus + MOKAS (FIU) supervise. Cyprus is a MONEYVAL member + EU since 2004 + Eurozone since 2008.
December 13, 2023 DK confirmed
Danske Bank: the ~€200bn Estonian scandal and a fraud guilty plea
Danske Bank pleaded guilty to bank fraud related to money laundering over the infamous scandal at its Estonian branch, where some €200 billion in suspicious transactions were processed between 2007 and 2015. The resolution with US and Danish authorities was around $2 billion. Danish authorities maintained additional penalties in later years.
April 25, 2023 KN confirmed
Eastern Caribbean: 5 CBI states (KN/DM/GD/VC/AG) Common Standards Apr 2023 + UK visa-free Dominica suspension
The 5 OECS states with CBI programs: Saint Kitts and Nevis (53K, program since 1984 — world's oldest, 50K+ passports sold), Dominica (72K, program since 1993, $100K min — world's cheapest, 25K+ passports), Grenada (113K, program since 2013 + unique US E-2 Treaty Investor Visa pathway), Saint Vincent (104K, no active CBI), Saint Lucia (180K, program since 2015), Antigua and Barbuda (97K, program since 2013). Programs generated ~$2B+ revenues 2010-2024. In April 2023, the 5 states signed 'Principles for Common Standards in CBI Programmes' under US/EU pressure: reinforced due diligence, prohibition of sale to sanctioned Russian/Iranian/Syrian citizens, background checks, minimum pricing harmonization. UK suspended visa-free for Dominica + Vanuatu 2023. ECCB supervises the OECS banking sector (East Caribbean Dollar XCD pegged 2.70:1 to USD).
June 25, 2020 DE confirmed
Germany: Wirecard case — €1.9B nonexistent + Markus Braun arrested + Marsalek fugitive in Moscow
On **June 25, 2020**, Wirecard AG (German payment processor based in Munich, DAX member since 2018) declared bankruptcy after admitting that €1.9 billion ($2.1 billion USD) in cash reported on its financial statements (a quarter of its assets) probably never existed. It is **the largest financial scandal in German post-war history** (according to then-Finance Minister and current Chancellor Olaf Scholz). CEO **Markus Braun** was arrested on June 23, 2020 (released on €5M bail, then re-arrested in July 2020). COO **Jan Marsalek** (Austrian) escaped via private jet from Austria to Belarus on June 18 and, **according to German Bild and Financial Times, lives in Moscow under Russian FSB protection**. The investigation revealed: fake revenues generated via fictitious Third-Party Acquirers (TPAs) in Dubai (Al Alam), Singapore (Senjo) and Philippines (PayEasy); payment infrastructure used for intelligence (BND, BKA operations, and foreign services — Wirecard issued 'non-attributable prepaid cards' for agents); connections with Wagner Group, RSB, and 'cash-for-crypto' network that in 2025 was revealed by UK National Crime Agency. **Beyond accounting fraud** (€3.1 billion in loans lost by banks), Wirecard functioned as a **financial conduit for global intelligence operations**. EY (auditor for 10 years) faced extensive scrutiny. BaFin (German regulator) was widely criticized for protecting Wirecard despite Financial Times allegations since January 2019. The Munich trial began in December 2022 with Braun + von Erffa + Bellenhaus (the latter cooperation witness). Indictment: 474 pages. In 2025-2026, new UK investigations connect Marsalek with 'cash-for-crypto' laundering network for British organized criminals and sanctioned Russian elites.
March 10, 2015 AD confirmed
Andorra/Spain: FinCEN Section 311 against BPA in Mar 2015 — collapses Banca Privada and Banco Madrid
On March 10, 2015, FinCEN designated Banca Privada d'Andorra (BPA), the fourth-largest Andorran bank with €1.79 billion in assets, as a 'foreign financial institution of primary money laundering concern' under Section 311 of the USA PATRIOT Act. FinCEN found that high-level bank managers had knowingly facilitated transactions for third-party launderers acting on behalf of transnational criminal organizations, with clients from China, Russia and Venezuela. That same day the Bank of Spain intervened in its Spanish subsidiary Banco Madrid; on March 12 its entire board resigned, on March 14 BPA CEO Joan Pau Miquel Prats was arrested in Andorra, and on March 25 Banco Madrid filed for voluntary insolvency. Standard & Poor's downgraded Andorra's credit rating. A landmark case of Section 311 used against a non-typical target (Russia, Lebanon, Burma) — first designation against a European bank.
December 22, 2020 AO confirmed
Angola: Luanda Leaks ICIJ Jan 2020 — Isabel dos Santos $2.2B empire + dos Santos dynasty (1979-2017)
Angola lived under the José Eduardo dos Santos regime (MPLA, President 1979-2017, 38 years) followed by João Lourenço (MPLA, President since 2017) with visible anti-corruption campaign. **Isabel dos Santos** (daughter of former President, former Africa's richest woman with $3.5B Forbes 2013), was the center of **'Luanda Leaks'** ICIJ investigation published on January 19, 2020 — **715,000 documents** leaked revealing how she built a $2.2 billion empire through preferential contracts with the Angolan government: Sonangol (state oil company — Isabel dos Santos was Chairman 2016-2017 until her dismissal by João Lourenço), Sonangol Cabo Verde, Galp Energia (12.3% stake), Banco BIC Portugal, Unitel telecom, NOS media, ZAP TV, EuroBic Portugal, ENI Angola. Luanda Provincial Court **froze $1+ billion in assets in December 2019**. Portugal, Switzerland, Netherlands, Luxembourg froze Isabel's assets in parallel. Criminal investigations active in Angola, Portugal (Operação 'Operação Marquês' separate but connected to former PM José Sócrates), US (case vs PwC + KPMG). Brother José Filomeno dos Santos ('Zenú', former Chairman Angola Sovereign Wealth Fund FSDEA $5 billion assets) was sentenced to 5 years prison Angola 2020 for embezzlement $500M from FSDEA. BNA and UIF Angola supervise the banking sector under the framework of Law 5/20. Angola is an ESAAMLG member.
September 14, 2011 CH confirmed
Switzerland/UK: UBS-Adoboli $2.3B Sep 2011 — Kweku Adoboli (Delta One London) + 7 years prison
On **September 14, 2011**, **UBS** revealed unauthorized trading losses of **$2.3 billion USD** in its London Delta One desk — caused by a single trader: **Kweku Adoboli (31 years old)**, a British-Ghanaian citizen, raised partly in the US/UK. Adoboli traded ETFs (exchange-traded funds) and had been creating **'umbrella accounts' with fictitious offsetting operations** for ~3 years to hide unauthorized directional positions on S&P 500, DAX and Eurostoxx futures — a scheme technically similar to Kerviel's at SocGen (2008), exploiting his prior back-office knowledge. Losses materialized after European market volatility in August-September 2011 (European sovereign debt crisis). Adoboli **voluntarily turned himself in** when discovered + sent a confessional email ('I made wrong decisions... I made big mistakes'). **Adoboli was sentenced in November 2012 to 7 years in prison** (served 4) + was **deported to Ghana in 2018** after his release (the UK revoked his post-prison residency rights, controversially). UBS received combined fines: **£29.7 million from the UK FSA + CHF 60M from Swiss FINMA** for massive risk control failures + inadequate Delta One desk supervision. CEO **Oswald Grübel resigned** (September 2011). The case is part of the post-Barings rogue trader series: Sumitomo-Hamanaka (1996), Barings-Leeson (1995), SocGen-Kerviel (2008), JPM London Whale (2012). It is referenced as **the case that demonstrated that Kerviel's lessons (3 years earlier) had NOT been implemented** + an example of persistent Delta One desk risk + post-prison case on deportation of non-nationals after criminal convictions. Switzerland is supervised by FINMA. Switzerland is a FATF + MONEYVAL member.
December 31, 2024 BG confirmed
Bulgaria: BNB tightens AML — CCB collapse 2014 $2.3B + Magnitsky sanctions Vasil Bozhkov + Delyan Peevski
The Bulgarian National Bank (BNB), the State Agency for National Security (DANS) and the Financial Supervision Commission (FSC) supervise the Bulgarian banking sector under the framework of the Law on Measures against Money Laundering 2018 (amended in 2020, 2022, 2024). Bulgaria (6.9M inhabitants, capital Sofia) is an EU member since 2007 + Schengen since March 2024 (partial — full integration Jan 2025). The most prominent Bulgarian historical AML case: **Corporate Commercial Bank (CCB, KTB in Bulgarian) collapse in June 2014** — Bulgaria's 4th largest bank with $2.3 billion in assets collapsed after bank run, revealing massive **'shadow lending' schemes to founder Tsvetan Vassilev** (fugitive since 2014, refugee in Serbia, extradition pending). The case resulted in **$1.5 billion loss to depositors** (partial rescue via Deposit Insurance Fund). Bulgaria has been subject of **massive US Treasury Magnitsky designations in June 2021**: 64 individuals and entities sanctioned under Global Magnitsky Act for corruption, including: **Vasil Bozhkov** (gambling oligarch 'King of Gambling', fled to Dubai 2020, designated SDN), **Delyan Peevski** (politician, former MRF, media mogul), **Ilko Zhelyazkov** (former DANS deputy chair), Bobokov brothers (mining/recycling). Additionally parallel UK Magnitsky designations 2021. Bulgaria ranks last in the EU on Transparency CPI 2024. The banking sector is concentrated in: UniCredit Bulbank (Italian subsidiary), DSK Bank (Hungarian OTP subsidiary), United Bulgarian Bank (UBB Belgian KBC subsidiary), First Investment Bank (FIBank). Bulgaria is a MONEYVAL member.
December 31, 2024 DO confirmed
DR: BCRD tightens AML — Antipulpo Operation + Punta Catalina + Joao Santana + Odebrecht case ($92M)
The Central Bank of the Dominican Republic (BCRD), the Superintendence of Banks (SB) and the Financial Analysis Unit (UAF) supervise the Dominican banking sector under the framework of Law 155-17 on AML/CFT (amended in 2020 and 2023). The DR has faced **multiple massive corruption cases**: **(1) Odebrecht case** — the Brazilian construction company paid **$92 million in bribes** to Dominican officials to obtain public contracts 2001-2014; the case resulted in convictions for Angel Rondón ($20M commissions, sentenced 8 years 2022) and other officials; former Attorney General Jean Alain Rodríguez advanced the case under Abinader (PRM 2020+) government. **(2) Punta Catalina** — the DR's most controversial thermoelectric plant ($2.4 billion contracts with Odebrecht 2013), under investigation for overprice. **(3) Antipulpo Operation** (November 2020) — massive Pepca (Specialized Prosecution of Administrative Corruption) investigation against former President Danilo Medina's (PLD 2012-2020) inner circle: **Adán Cáceres** (presidential adviser, convicted), **Alexis Medina Sánchez** (former President's brother, convicted), **Carmen Magalys Medina Sánchez** (sister), Fernando Rosa, Julián Suriel. **(4) Joao Santana** (Brazilian political strategist who also worked on Lava Jato) worked Dominican campaigns. **(5) Bahía 'Pulpo' case** expanding Antipulpo case. The Dominican banking sector is concentrated in: Banreservas (state, largest), Banco Popular Dominicano, BHD León, Scotiabank República Dominicana, Banco BDI. The DR is a GAFILAT member.
January 16, 2018 IN confirmed
India/US: BitConnect $2.4B crypto Ponzi — Satish Kumbhani fugitive (Jan 2018) + Arcaro guilty
On **January 16, 2018**, **BitConnect** collapsed — one of the largest documented cryptocurrency Ponzi schemes pre-OneCoin: **$2.4 billion USD**. BitConnect (launched 2016, founded by **Satish Kumbhani**, Indian citizen) operated a **'lending program'** that promised **returns of up to 40% monthly + 1% daily** (mathematically impossible) supposedly generated by a proprietary 'trading bot' that traded Bitcoin volatility. In reality, it was a **classic MLM Ponzi scheme** — returns were paid with new investors' money, with a pyramidal referral commission structure. The **BCC token (BitConnect Coin)** reached a peak of **$463 (December 2017, top-20 crypto by market cap ~$2.6B)** before collapsing to cents in January 2018 when BitConnect abruptly closed the lending program after cease-and-desist orders from Texas + North Carolina regulators. The case was notorious for its **viral promotion videos** (promoter Carlos Matos's famous 'BitConneeeeect!' at a 2017 conference became a global meme). **Satish Kumbhani** was **charged by DOJ + SEC in 2022** (SDCA, securities fraud + wire fraud + commodities manipulation + conspiracy to launder) — **remains a fugitive, presumably in India**, Interpol involved. The **Indian Enforcement Directorate (ED)** has seized **$190M+ in BitConnect assets in India** (2022-2024). **Glenn Arcaro** (top US BitConnect promoter) **pleaded guilty in September 2021** (wire fraud conspiracy) + cooperated. The case is referenced as **one of the largest and most viral crypto Ponzis pre-OneCoin/FTX**. India (1,430M inhabitants) is supervised by RBI + SEBI + ED + FIU-IND. India is a FATF + APG member.
August 1, 2024 AE confirmed
UAE: FATF grey list exit Feb 2024 + Russia sanctions evasion hub + Sudan gold smuggling $2.5B/year
The **Central Bank of UAE (CBUAE)**, the Financial Intelligence Unit (FIU) and the Securities & Commodities Authority (SCA) supervise the financial sector of the United Arab Emirates under the framework of Federal Law 20/2018 on AML/CFT (amended in 2021, 2023 and 2024). UAE (10M inhabitants, 90% expatriates, $510 billion GDP 2024) is **one of the most important financial hubs in the emerging world** — Dubai in particular has consolidated as regional hub for Persian Gulf, Africa, Central Asia and SE. UAE **exited the FATF grey list on February 23, 2024** after being added in March 2022 (24 months in monitoring). Specific Emirati AML risks are extensive and documented: **(1) Russian sanctions evasion post-Feb 2022** — UAE has become #1 destination for sanctioned Russian oligarchs, with Roman Abramovich's yachts (My Solaris, Eclipse) docked in Dubai 2022-2025, massive mansions in Palm Jumeirah/Emirates Hills, ~$1B in sanctioned real estate documented by C4ADS + EU TFSC. **(2) Sudan gold smuggling** — OCCRP/Global Witness documented that UAE is #1 destination of illegal Sudanese gold ($2.5B/year estimated from Darfur via Dubai DMCC + Sharjah Gold Souk). **(3) DMCC (Dubai Multi Commodities Centre)** — controversial free zone with massive opaque flows. **(4) Hawala global hub** — South Asia + Middle East + Africa flows. **(5) Crypto-friendly post-2022** — VARA (Virtual Assets Regulatory Authority) Dubai 2022 + ADGM. **(6) Real estate boom** — Dubai prices +40% 2022-2024. **(7) Golden visa programs** ($272K real estate investment 10-year visa). The banking sector is concentrated in: First Abu Dhabi Bank (FAB, largest), Emirates NBD, Abu Dhabi Commercial Bank (ADCB), Dubai Islamic Bank, Mashreq Bank. UAE is a MENAFATF founding member.
March 7, 2019 UZ confirmed
Uzbekistan: Gulnara Karimova telecom bribery $1B — TeliaSonera/VimpelCom/MTS $2.6B settlements + prison
**Gulnara Karimova** (eldest daughter of Uzbek dictator Islam Karimov, President 1990-2016 — 26 years; former diplomat, fashion designer 'Guli', pop singer 'GooGoosha', former ambassador to UN Geneva) was the center of **one of the largest telecom bribery cases in history**. Between **2004-2012**, the 3 largest telecom companies operating in Uzbekistan — **TeliaSonera (Sweden/Finland, now Telia Company), VimpelCom (Netherlands/Russia, now VEON), and MTS (Russia, Mobile TeleSystems)** — paid **~$1 billion USD in bribes to Gulnara Karimova** (via Takilant Ltd, Gibraltar shell company + Swiss accounts) to obtain telecom licenses, frequencies and market access in Uzbekistan (32M inhabitants). The settlements: **TeliaSonera $965M (2017, DOJ+SEC+Swedish+Dutch)** + **VimpelCom $795M (2016, DOJ+SEC+Dutch)** + **MTS $850M (2019, DOJ+SEC)** = **~$2.61 billion combined** — some of the largest FCPA settlements in history. **Gulnara Karimova** fell from grace in 2014 (rivalry with her mother Tatyana + sister Lola + Uzbek security services SNB Rustam Inoyatov) — **arrested/house arrest 2014, convicted in Uzbekistan 2017 to 10 years (corruption) + 2020 additional charges = 13 years total**, currently in Tashkent prison. **Switzerland froze ~$800M in Karimova accounts** (partially returned to Uzbekistan 2022-2024 via agreement). The **case is referenced as paradigmatic example of post-Soviet 'crony capitalism' + kleptocracy + telecom sector corruption**. **Islam Karimov died in September 2016** → **Shavkat Mirziyoyev** (President since 2016) has implemented partial reforms + asset returns. The **Central Bank of Uzbekistan (CBU)** supervises the sector. Uzbekistan is an EAG (Eurasian Group, FATF-style regional body) member.
June 13, 1996 JP confirmed
Japan: Sumitomo-Hamanaka $2.6B Jun 1996 — 'Mr. Copper' 10 years manipulating LME (rogue commodity trader)
On **June 13, 1996**, **Sumitomo Corporation** (one of Japan's main **sogo shosha** or general trading conglomerates, founded in 1919, heir to the 17th-century Sumitomo clan) revealed losses of **$1.8 billion** from unauthorized copper trading operations that would grow to **$2.6 billion USD**, caused by a single trader: **Yasuo Hamanaka**, head of the copper department, nicknamed **'Mr. Copper' or 'Mr. 5%'** because he controlled ~5% of the world copper market. Hamanaka had been **manipulating the copper price on the London Metal Exchange (LME) for ~10 years** through a massive market 'corner' scheme — accumulating massive long positions in physical copper + futures to keep the price artificially high, generating profits for Sumitomo while the corner lasted. Losses accumulated when the corner began to collapse (1995-1996). Hamanaka forged documents and superiors' signatures for years to hide the losses. **Hamanaka was sentenced in 1997 to 8 years in prison** (served 7), one of the temporally longest rogue traders in history (10 years manipulating vs Kerviel's 2 years, Leeson's 4). Sumitomo paid combined fines of ~$150M to the CFTC + UK SIB + LME for market manipulation. The case is referenced as **the foundational rogue trader paradigm precedent pre-Leeson** (Hamanaka actually operated long before Barings, but came to light a year later) + a unique example of commodities market manipulation (not financial derivatives like other rogue traders) + the case that transformed LME and OTC commodities supervision. Japan is a FATF + APG member.
January 7, 2014 US confirmed
JPMorgan: $2.6bn in 2014 for turning a blind eye to Madoff's Ponzi scheme
JPMorgan Chase agreed to pay $2.6 billion in 2014 to resolve criminal charges related to the Bernie Madoff fraud. Prosecutors argued the bank turned a blind eye to the Ponzi scheme: for decades, Madoff laundered billions through a single set of accounts at JPMorgan, even though a bank fund manager warned as early as 1998 that his returns were 'too good to be true'.
January 7, 2014 US confirmed
US: JPMorgan Chase pays $2.6B for Madoff account 703 (Jan 2014) + total $20+B in fines 2014-2026
On **January 7, 2014**, **JPMorgan Chase & Co** (largest US bank by assets) agreed to pay **$2.6 billion USD** in penalties coordinated with DOJ ($1.7B), OCC ($350M), FinCEN ($461M) for its role in the Madoff case. JPM Chase had been Madoff's main bank for **22 years (1986-2008)**, handling account **703** which processed hundreds of thousands of transactions. Facts: JPM Chase ignored **multiple internal alerts** about the Ponzi nature of the Madoff scheme, including in 2008 (same year as collapse) an internal written report evaluating Madoff's firm as Ponzi. The SAR (Suspicious Activity Report) was submitted to UK authorities but NOT to US FinCEN — key failure. The $2.6B was divided among: $1.7B for forfeiture to DOJ (subsequently distributed to Madoff victims via Trustee Picard), $350M OCC civil money penalty, $461M FinCEN civil money penalty. The **DOJ's 5-year DPA** ended in January 2019. JPMorgan Chase is **the par excellence repeat offender** of the US banking sector: enforcement actions accumulated 2014-2026 include the **'Whale' case (2012, $920M settlement for $6.2B trading London CIO losses)**, **LIBOR manipulation $920M (2015)**, **CDO/securities $13B (2013) — the largest mortgage settlement in US history**, **FX market manipulation $550M (2015)**, **precious metals manipulation $920M (2020) — CFTC record**, **whistleblower retaliation case $200M (2023)**, **Epstein affiliate banking case $290M (2023)**. **Total accumulated fines: $20+ billion (2014-2026)** according to academic research. CEO **Jamie Dimon** (since 2005) has maintained the position despite multiple settlements.
February 13, 2018 LV confirmed
Latvia: ABLV designated FinCEN Section 311 Feb 2018 — DPRK + Iran financing + Latvia AML reform
On **February 13, 2018**, FinCEN designated **ABLV Bank AS** (Latvia, founded 1993, peak 2017 — 3rd largest Latvian bank with $2.7 billion USD in assets, ~120,000 mostly non-resident accounts) under **Section 311 of USA PATRIOT Act** as 'primary money laundering concern' — the most severe designation FinCEN can impose. It is the **second Section 311 issued in 13 years** (after Banco Delta Asia 2005 aml-dprk-bda-2005, before Huione Group 2025 aml-huione-group-fincen-2025). FinCEN documented that ABLV: **(1) Facilitated DPRK transactions** — at least **6,000 transactions identified with connections to Korea Mining Development Trading Corporation (KOMID), Foreign Trade Bank of Korea (FTB) and Tanchon Commercial Bank**, all US/UN sanctioned for proliferation finance; **(2) Iran corruption** — massive transactions with companies linked to Iran's Revolutionary Guard Corps (IRGC); **(3) Azerbaijan corruption** — linked to 'Azerbaijani Laundromat' case aml-azerbaijani-laundromat-2017 (caviar diplomacy, $2.9 billion in 4 years); **(4) Russian flight capital** — massive facilitator of 'Russian Laundromat' case aml-moldova-russian-laundromat-2014; **(5) Falsified documents** — the institution 'systematically obstructed' supervision and gave false documents to regulators. After FinCEN designation, **ECB rejected immediate Emergency Liquidity Assistance** to ABLV on February 18, 2018, and the bank **announced voluntary liquidation February 26, 2018**. **CEO Ernests Bernis and chairman Olegs Fils** faced criminal charges in Latvia (Fils died in 2024 before sentencing). The case catalyzed **massive AML reform in Latvia 2018-2019**: closure of 2 additional banks (PNB Banka and BlueOrange Bank), declined '90% of non-resident business' from the sector, reinforced FCMC, massive Russian capital exit post-2018, Latvia led by Krišjānis Kariņš (PM 2019-2023). **ECB assumed direct supervision** of major Latvian banks since then. It is **referenced as the paradigmatic case of Russian + DPRK financing post-9/11**.
October 22, 2020 US confirmed
Goldman Sachs: ~$2.9bn to the DOJ over Malaysia's 1MDB scandal (global resolution ~$5bn)
Goldman Sachs reached a resolution in 2020 over the Malaysian sovereign-fund 1MDB scandal: its Asian unit pleaded guilty and the group paid around $2.9 billion to the DOJ under the anti-corruption law (FCPA), within a global resolution that with other jurisdictions exceeded $5 billion. The case combined bribery of officials and laundering of billions diverted from the fund.
September 4, 2017 AZ confirmed
Azerbaijan: Azerbaijani Laundromat 2017 — $2.9B laundered + 70+ European politicians bought
In September 2017, **OCCRP (Organized Crime and Corruption Reporting Project)** along with The Guardian, Süddeutsche Zeitung, Le Monde and Berlingske published the **'Azerbaijani Laundromat'** investigation: a laundering scheme of **$2.9 billion** that operated between 2012-2014. The structure: 4 shell companies registered in the UK (Polux Management, Hilux Services, Metastar Invest, LCM Alliance) opened accounts in **Danske Bank Estonia branch** (case aml-danske-estonia-2018 in this tracker) that processed payments through more than 16,000 transfers. Beneficiaries: 70+ European politicians co-opted to soften the Aliyev regime image (Ilham Aliyev president since 2003, succeeding his father Heydar Aliyev), including Council of Europe members, German parliamentarians (Karin Strenz, former Bundestag CDU), Italian (Luca Volontè, former EPP, convicted in Italy for accepting €2.4M bribes), Spanish, British. The scheme was known as 'caviar diplomacy' for the luxuries paid to politicians. The Aliyev family controls the Azerbaijani financial sector via **Pasha Holding** (Pasha Bank, owned by Mehriban Aliyeva, First Lady and Vice President, and their daughters Leyla and Arzu Aliyeva). The Central Bank of Azerbaijan (CBAR) regulates the sector. Azerbaijan faces specific AML risks: oil and gas (SOCAR), Turkey-Iran corridor, conflict resolved with Armenia after Nagorno-Karabakh 2023 (Armenian ethnocide according to UN), Aliyev family real estate in London ($800M+ documented). Azerbaijan is a MONEYVAL member.
December 31, 2024 CK confirmed
Pacific: Cook Islands Trust 'gold standard' asset protection + Niue + Tokelau + Polynesia + New Caledonia
Cook Islands (15K inhabitants, free association with NZ) has one of world's most sophisticated offshore trust asset protection regimes — International Trusts Act 1984 established Cook Islands Trust model, 'gold standard' for asset protection. Cases: OJ Simpson, Larry King, Donald Trump (allegedly). Cook has 15K-20K active trusts managing $1B-$3B+. Niue (1.6K inhabitants) was minor offshore center 1990s-2000s (closed post-FATF 2002-2008 grey list). Tokelau (1.5K, NZ territory) operates .tk domain (most-used TLD thanks to Freenom). French Polynesia (280K, CFP franc) — Mururoa nuclear test legacy 193 tests 1966-1996. New Caledonia (270K, CFP franc) — world's largest nickel producer (~25% reserves) + political crisis May 2024 (riots, 14 deaths). Cook + Niue are APG members.
October 10, 2024 US confirmed
TD Bank: $3.21bn — the largest AML penalty in US history, with a criminal guilty plea
In October 2024, TD Bank agreed to pay around $3.21 billion (DOJ, FinCEN, OCC and Federal Reserve) and pleaded guilty to conspiracy to violate the Bank Secrecy Act and money laundering: the largest AML penalty in US history and the first bank to plead guilty to money-laundering conspiracy. It allowed over $670 million in cartel proceeds to flow through its branches (2014-2023). It includes an independent monitor and $1.1 billion forfeiture.
December 21, 2016 US confirmed
US/Brazil: Operation Car Wash US side — Odebrecht $3.5B (FCPA record 2016) + Petrobras + Braskem
On **December 21, 2016**, the DOJ announced the coordinated settlement of the 'Operation Car Wash' US side case — the US branch of Brazil's **Operação Lava Jato** (case aml-brasil-lava-jato-historic-2014 in this tracker). **Odebrecht agreed to pay $3.5 billion USD** in penalties coordinated with DOJ ($93M), SEC, Brazilian Federal Public Prosecutor ($2.388B), Brazilian Supreme Court and Swiss Federal Office of Justice — **the largest FCPA settlement in history until then** (later surpassed by Goldman Sachs 1MDB $2.9B 2020 and Glencore $1.1B 2022). Facts: Odebrecht paid **$788 million in bribes** to political officials in **12 countries**: Argentina, Brazil, Colombia, Dominican Republic, Ecuador, Guatemala, Mexico, Mozambique, Panama, Peru, Venezuela, and Angola — generating $3.3 billion in net benefits. Petrobras (Brazilian state subsidiary) paid **$853M in September 2018 to DOJ + SEC + Brazilian Federal Public Prosecutor** for FCPA violations + securities fraud (affected ADR investors on NYSE). Braskem (petrochemical subsidiary of Petrobras and Odebrecht) paid **$957M in December 2016** to DOJ + Brazilian. The scheme was so complex that it required the creation of a **'Division of Structured Operations'** (Odebrecht's secret internal division) with **$100M+ shadow banking system** that controlled bribes via shell companies in Antigua, Switzerland, Monaco, and Mossack Fonseca (Panama Papers). The **DOJ Operation Car Wash US Task Force** collaborated with Switzerland OAG, Andorran FIS (UIFAND), UK SFO. Global connections with cases: aml-brasil-lava-jato-historic-2014, aml-colombia-odebrecht-bancolombia-2017, aml-bpa-banco-madrid-2015 (Banco Andorra), aml-panama-papers-2024 (Mossack Fonseca), aml-tuna-bonds-credit-suisse-2021 (Credit Suisse).
January 19, 2023 US confirmed
US: Genesis Global bankruptcy Jan 2023 — $3.5B + Gemini Earn + NYAG $2B settlement (DCG/Silbert)
On **January 19, 2023**, **Genesis Global Capital** (crypto lending division of **Digital Currency Group DCG**, **Barry Silbert's** conglomerate that also owns Grayscale + CoinDesk) declared Chapter 11 bankruptcy with **~$3.5 billion in liabilities** to 100,000+ creditors — the last major collapse of the 2022 crypto winter chain. Genesis was hit by: exposure to **Three Arrows Capital ($2.4B in unpaid loans)** + exposure to **FTX/Alameda** after the November 2022 collapse. The case involved the **'Gemini Earn'** product — a yield program jointly operated by Genesis + the **Gemini exchange (Winklevoss twins)** that promised returns to ~340,000 retail users; when Genesis froze withdrawals (November 2022), $900M of Gemini Earn users were trapped. **SEC sued Genesis + Gemini in January 2023** (unregistered securities). **The NYAG (Letitia James) sued Genesis, DCG, Barry Silbert and Gemini in October 2023**, alleging **$3 billion** fraud — settlement of **$2 billion (Genesis) + $50M (Gemini to Earn users) in 2024**. Barry Silbert + DCG faced accusations of concealing Genesis's losses. Genesis creditors began recovering funds 2024. It is the **final chapter of the crypto winter domino effect** (Terra/Luna → 3AC → Celsius/Voyager → FTX → BlockFi/Genesis).
June 23, 2021 ZA confirmed
South Africa: Africrypt $3.6B alleged exit scam Jun 2021 — Cajee brothers vanished
In **June 2021**, **Africrypt** (a South African cryptocurrency investment platform founded by brothers **Ameer Cajee (20) and Raees Cajee (18)**) collapsed amid **allegations of an exit scam of up to $3.6 billion USD (~69,000 Bitcoin)** — which, if true, would make it one of the largest crypto frauds in history. The timeline: in April 2021, Africrypt notified its clients that it had suffered a 'hack' and asked them **not to report it to authorities** (a classic red flag). The Cajee brothers **disappeared**. The law firm Hanekom Attorneys, hired by investors, alleged massive fraud. However, the $3.6B figure is **strongly disputed**: subsequent investigations (including Chainalysis + local reports) suggest the real amount could be much smaller (possibly $100-200M), and the Cajee brothers **denied the fraud** claiming they too were victims of the hack. The South Africa FSCA (Financial Sector Conduct Authority) initially stated it **could not formally investigate because crypto was not regulated as a financial product in South Africa at the time** (this changed in October 2022, when South Africa declared crypto a financial product). The case is referenced as **one of Africa's most notorious crypto exit scams + an example of jurisdictional/regulatory challenges** when crypto is unregulated. The Cajee brothers were tracked to UAE/UK. South Africa is an ESAAMLG member + entered the FATF grey list (Feb 2023).
September 8, 2016 US confirmed
Wells Fargo: 2 million fake accounts — $3.7B settlement + Fed asset cap 2018+ + Stumpf clawback (Sep 2016)
On **September 8, 2016**, the Consumer Financial Protection Bureau (CFPB), OCC and LA City Attorney announced **$185M combined settlement against Wells Fargo** ($100M CFPB record at the time + $35M OCC + $50M LA City Attorney) for the **'fake accounts scandal'** — Wells Fargo employees created **>2,000,000 unauthorized accounts** (including savings/checking accounts, credit cards, online banking) for existing customers between 2011-2015 to meet extremely aggressive internal sales quotas ('Eight is Great' program — 8 products per customer). Employees without customer consent moved funds between real and fake accounts, opened credit cards with customer SSN without authorization, charged overdraft and maintenance fees. **>5,300 employees were fired** between 2011-2016. Subsequent investigations expanded the scope: in 2017, Wells Fargo revealed it had **forced 800,000 customers into auto insurance they didn't need**, $20M in compensations; mortgage interest rate manipulation, foreign exchange manipulation. Total settlements: **$3.7+ billion accumulated 2016-2024**. **John Stumpf** (CEO 2007-2016) forced resignation October 12, 2016, **$69M clawback of equity awards**, lifetime ban from banking industry by OCC 2020 + $17.5M individual fine. **Carrie Tolstedt** (Head of Community Banking, architect of quotas program) sentenced in **May 2023 to 3 years prison + $1M fine + $67M clawback** — first banking executive sentenced to federal prison post-2008 GFC. **Tim Sloan** (Stumpf successor CEO 2016-2019) forced resignation March 2019. **Charles Scharf** (CEO since October 2019). The **Federal Reserve imposed a $1.95T 'asset cap' on Wells Fargo in February 2018** — unique restriction in US history, still active in 2026 (Fed declined to remove in 2024). Wells Fargo is the 4th largest US bank (Bank of America > JPM > Citi > Wells Fargo).
December 20, 2022 US confirmed
Wells Fargo: $3.7bn from the CFPB in 2022 over widespread account mismanagement
The Consumer Financial Protection Bureau (CFPB) reached a $3.7 billion resolution with Wells Fargo in 2022 over widespread mismanagement across auto loans, mortgages and deposit accounts. Although not a money-laundering case strictly speaking, it illustrates the scale of compliance enforcement against major US banking.
October 25, 2017 BG confirmed
OneCoin: Ruja Ignatova 'Cryptoqueen' FBI Top Ten Most Wanted fugitive since 2022 — $4-15B crypto Ponzi (Oct 2017)
On **October 25, 2017**, **Ruja Ignatova** (born Bulgaria 1980, Oxford doctorate, former McKinsey consultant) disappeared from Sofia (Bulgaria) airport on a Ryanair flight to Athens — and was never officially seen again. She is the founder and CEO of **OneCoin Ltd**, considered **one of the largest Ponzi schemes in history** ($4-15 billion USD according to DOJ/FBI estimates; 2014-2017+). OneCoin was sold as a 'revolutionary cryptocurrency' competitor to Bitcoin since 2014, in an **MLM pyramidal structure** that recruited 3+ million investors in **175 countries** (focus on Asia, Africa, Eastern Europe, Latin America) — particularly devastating in Uganda, China, Kazakhstan. The 'crypto' didn't actually exist — no blockchain, just internal databases. Ignatova was **added to the FBI Top Ten Most Wanted List on June 30, 2022** ($100K reward, increased to $250K in 2024). Intelligence investigations (BBC Podcast 'The Missing Cryptoqueen' by Jamie Bartlett, OCCRP) have documented connections with **Hristoforos Amanatidis 'Taki'** (Bulgarian organized crime boss murdered 2025 in South Africa) — Ignatova possibly murdered on Greek Mediterranean yacht Oct 2018 according to protected witnesses testimony. **Konstantin Ignatov** (Ruja's brother, former OneCoin Co-CEO) arrested LAX 2019, pleaded guilty 2019 + 5 charges, cooperator witness, finally sentenced 90 years but suspended (cooperation). **Mark Scott** (Locke Lord LLP attorney, laundered $400M for OneCoin via Cayman Fenero Funds) sentenced 10 years in February 2024. **Sebastian Greenwood** (OneCoin co-founder) sentenced 20 years SDNY September 2023. The case has had **massive cultural impact**: BBC podcast (5M+ downloads), HBO documentary 2023, Netflix series planned. It is **referenced as the paradigmatic example of pre-FTX crypto-Ponzi**.
December 31, 2024 NG confirmed
Nigeria: Sani Abacha $4B+ recovered post-1998 — first major dictator asset recovery global
**Sani Abacha** (Nigerian general, dictator 1993-1998 after coup against Ernest Shonekan) **died of heart attack at his official residence on June 8, 1998** — suspicious circumstances (Indian prostitutes allegedly poisoned). In his **5 years in power**, Abacha **diverted an estimated $4-5 billion USD** from Nigerian state finances (World Bank + Stolen Asset Recovery Initiative StAR estimates) through Swiss, UK, Liechtenstein, Luxembourg, Jersey, Bahamas, Lebanon banking. The case is **referenced as the first major 'asset recovery' case from an African dictator** and catalyzed the **UN Convention Against Corruption (UNCAC) 2003** and the **Stolen Asset Recovery Initiative (StAR)**. **Accumulated recoveries 1999-2024**: $2.2B from Switzerland (returned between 2005-2018), $480M Jersey (2020), $311M US (forfeiture 2014 + 2020), £100M+ UK (multiple settlements), €350M Lithuania (2024 final settlement), Jersey $321M (2020) + Luxembourg + Liechtenstein. Total recovered: ~$4+ billion. **The Central Bank of Nigeria (CBN)** and other Nigerian banks are still investigating. **Mohammed Abacha** (dictator's son) repeatedly indicted Nigeria + UK + Swiss — multiple convictions and settlements. **Maryam Abacha** (widow) settle agreements. Some criticism: $1B+ recoveries **'mismanaged'** according to World Bank monitoring (questionable infrastructure projects, re-corruption allegations during Obasanjo + Buhari administrations). The case is **leading case in international asset recovery doctrine**. Nigeria is **the country with most dictatorial assets recovered in history**.
January 31, 2020 FR confirmed
France: Airbus $4.0B settlement Jan 2020 — largest anti-corruption settlement in history
On **January 31, 2020**, **Airbus SE** (Europe's largest aerospace manufacturer, Franco-German-Spanish) agreed to pay a **combined settlement of €3.6 billion ($4 billion USD)** with the US DOJ, the UK's SFO (Serious Fraud Office), and France's PNF (Parquet National Financier) — **the largest corruption/bribery settlement in world history**, surpassing Goldman Sachs/1MDB and Siemens. The 3-year investigation (coordinated among the three jurisdictions) revealed that Airbus had operated **a massive and systematic bribery scheme** for over a decade (~2008-2015) through its network of 'intermediaries' (business partners) in **at least 16 countries** — including China, Malaysia, Sri Lanka, Indonesia, Taiwan, Ghana, Colombia, Nepal, South Korea, Japan, Kuwait, Russia, Mexico, Brazil, India — to win commercial and military aircraft sales contracts. The scheme was discovered partly through Airbus's own disclosures to authorities (self-reporting that reduced penalties). The settlement was structured as **DPAs (Deferred Prosecution Agreements)** in the three jurisdictions. The distribution: ~€2.08B France (PNF) + ~€984M UK (SFO) + ~$527M US (DOJ + State Department for ITAR arms export violations). Although no individual executives were imprisoned in the corporate settlement, several individual investigations continued. CEO **Tom Enders** (2012-2019) and other executives faced scrutiny. The case is referenced as **the climax of coordinated transnational anti-corruption enforcement** + a demonstration of the power of multi-jurisdictional investigations. France is a FATF founding member.
November 21, 2023 US confirmed
Binance: $4.32bn — one of the largest corporate penalties in US history, with a criminal guilty plea
Binance and its CEO pleaded guilty in a coordinated DOJ, FinCEN, OFAC and CFTC resolution: $4.316 billion total ($2.51 billion forfeiture + $1.805 billion criminal fine). The world's largest crypto exchange accepted an independent compliance monitor for three years over AML program failures and sanctions evasion.
July 28, 2020 MY confirmed
Malaysia: Najib Razak 12 years Jul 2020 — 1MDB case $4.5B laundered + Jho Low fugitive + Goldman $2.9B
On **July 28, 2020**, **Najib Razak** (former Malaysian PM 2009-2018, Barisan Nasional/UMNO, son of former PM Abdul Razak + nephew of former PM Hussein Onn — political dynasty) was **sentenced to 12 years prison + 210 million ringgit (~$50M) fine by Kuala Lumpur High Court** for his role in the **1MDB scandal (1Malaysia Development Berhad)** — one of the largest state corruption cases in documented history. **Najib began serving sentence on August 23, 2022** at Kajang Prison (sentence reduced to 6 years + further reduced 2024 to 4 years by controversial partial pardon by King Sultan Abdullah). The 1MDB scheme (2009-2015): Najib created sovereign wealth fund 1MDB in 2009 supposedly to promote economic development. Together with **Jho Low** ('Low Taek Jho', Malaysian businessman, mastermind of the scheme, **fugitive since 2016** — Interpol Red Notice, confirmed residences in China + Cyprus + Dubai), **diverted $4.5+ billion USD** via accounts in Cyprus, Singapore, Switzerland, US, Caribbean islands — funds used for: 1) **$250M Equanimity yacht** bought by Jho Low in Indonesia (recovered 2018, sold 2019 for $126M); 2) **Real estate in Beverly Hills, Manhattan, London** (Park Lane Hotel, Time Warner Center NYC penthouse $30M); 3) **Production of 'The Wolf of Wall Street' (2013, Martin Scorsese)** $100M+ produced by **Riza Aziz** (Najib's stepson); 4) **Picasso, Monet, Basquiat paintings** ($35M); 5) Lorraine Schwartz jewelers, Birkin bags Hermès; 6) **Diamond bond for Miranda Kerr** (Jho Low's girlfriend), $20M gift; 7) **Cash transferred to Najib's personal account = $681M in 2013** (discovered by The Edge investigation 2015 — Sarawak Report). **Goldman Sachs Group** (sponsor of 3 1MDB bond issues 2012-2013 worth $6.5B, earned $600M in fees) **paid $2.9B DOJ settlement + $3.9B total global settlements July 2020** (case aml-goldman-1mdb-2020 covered). **Tim Leissner** (former Goldman Southeast Asia chairman, mastermind at Goldman) pleaded guilty 2018 + cooperator (still pending sentencing 2026 + $44M forfeiture). **Bank Negara Malaysia (BNM)** and Securities Commission Malaysia (SCM) supervise the Malaysian banking sector under Anti-Money Laundering, Anti-Terrorism Financing and Proceeds of Unlawful Activities Act 2001.
July 13, 2022 US confirmed
US: Celsius $4.7B bankruptcy Jul 2022 — Alex Mashinsky 12 years prison (May 2025) + crypto lending fraud
On **July 13, 2022**, **Celsius Network** (crypto lending platform, founded by **Alex Mashinsky** 2017) declared Chapter 11 bankruptcy with a **$4.7 billion USD deficit** — one of the largest collapses of the 2022 crypto winter post-Terra/Luna. Celsius had promised **returns of up to 18% APY** to 1.7M+ users depositing crypto, marketed with the slogan 'Unbank Yourself' and Mashinsky's phrase 'banks are not your friends'. In reality, Celsius operated an unsustainable scheme: it used user deposits for high-risk DeFi bets (including exposure to stETH, Anchor Protocol UST, BadgerDAO hack), lent to insolvent hedge funds (3AC), and operated with a **'CEL token' artificially inflated** by the company itself. When users tried to withdraw massively after the Terra/Luna collapse, Celsius **froze all withdrawals on June 12, 2022** ('pause'), trapping the funds of 1.7M users. **Alex Mashinsky** was arrested July 2023, **pleaded guilty in December 2024** to 2 charges (commodities fraud + securities fraud scheme manipulating CEL token), and **sentenced to 12 years federal prison in May 2025** (SDNY) + $48M forfeiture. SEC + CFTC + FTC + NYAG parallel settlements. The case is paradigmatic of **crypto lending model fraud** (along with BlockFi, Voyager, Genesis). Mashinsky had withdrawn **$42M in personal CEL tokens** before the collapse. The reorganization plan returned ~60% to users via crypto + new entity 'Ionic Digital' (Bitcoin mining) 2024.
August 3, 2014 PT confirmed
Portugal: Banco Espírito Santo collapse Aug 2014 — €4.9B bailout + Ricardo Salgado convicted
On **August 3, 2014**, the **Bank of Portugal** intervened and rescued **Banco Espírito Santo (BES)** — then Portugal's second-largest private bank — in a collapse that cost **€4.9 billion ($5.4 billion USD)** and marked the biggest financial scandal in recent Portuguese history. BES was the flagship bank of the **Espírito Santo Group (GES)**, the conglomerate of the powerful Espírito Santo family, controlled for decades by **Ricardo Salgado** ('o Dono Disto Tudo' / 'the owner of all this', BES CEO). The collapse was due to a **massive fraud and opacity scheme**: GES had used BES to finance its own troubled companies (Espírito Santo International, Rioforte) through a network of opaque entities in Luxembourg, Panama and other offshore jurisdictions, hiding multimillion-dollar losses, selling toxic GES debt to BES retail clients, and falsifying accounts. The Bank of Portugal split BES into a 'good bank' (**Novo Banco**, created with the bailout) and a 'bad bank' (the losses). **Ricardo Salgado** was charged with multiple crimes (fraud, money laundering, forgery, breach of trust) — **convicted in 2024 to 6 years in prison** ('Universo Espírito Santo' case / Operação Marquês connections), although he faced health issues (alleged Alzheimer's). The case also had connections to the 'Operação Marquês' corruption scandal involving former prime minister José Sócrates. It is referenced as **the paradigmatic case of family banking fraud + capture of a bank to finance a bankrupt conglomerate**. Portugal is a FATF + MONEYVAL founding member.
April 15, 2023 SD confirmed
Sudan: SAF vs RSF civil war since Apr 2023 — OFAC designates both sides + UAE gold smuggling
On April 15, 2023, civil war broke out between the Sudanese Armed Forces (SAF, led by General Abdel Fattah al-Burhan) and the Rapid Support Forces (RSF, led by General Mohamed Hamdan Dagalo 'Hemedti'), after months of tension over control of the post-Bashir democratic transition. OFAC and the EU have systematically designated: in June 2023, sanctions against Defense Industries System (DIS) Sudanese and RSF-affiliated companies; in May 2024, sanctions against Hemedti as an individual under Executive Order 14098. The war has caused 150,000+ deaths, 10 million displaced, hunger documented by UN and atrocities of genocide in Darfur (RSF is the heir of the Janjaweed militias that committed the Darfur genocide 2003-2005). The Sudanese banking sector is collapsed: the Central Bank of Sudan (CBS) has been displaced to Port Sudan (fled from Khartoum), multiple commercial banks destroyed or looted. Specific Sudanese AML risks: massive gold smuggling from Darfur, South Sudan and Ethiopia to UAE (estimated $2.5 billion/year by OCCRP — UAE Gold Rush 2023), oil through pipelines to Port Sudan, RSF illicit revenues in Darfur (commerce taxes, mine occupation). Sudan was removed from the State Sponsor of Terrorism list in December 2020 after $335M payment to USS Cole and East African embassy victims, but the war has collapsed all AML progress. Sudan is a MENAFATF member (transition pending to ESAAMLG).
October 14, 2025 KH confirmed
Cambodia: OFAC designates Prince Group + Chen Zhi as TCO in Oct 2025 with 146 targets sanctioned
On October 14, 2025, OFAC designated Prince Group as a Transnational Criminal Organization (TCO) under Executive Order 13581, simultaneously sanctioning Chen Zhi (Cambodian CEO and political-business benefactor) and 146 associated targets, including key executives and numerous subsidiary companies throughout the Prince Group perimeter. The action was executed in coordination with the United Kingdom (parallel British sanction) and Five Eyes members. Prince Group has been linked to 'pig butchering' scam operations (long emotional-engineering scams) executed from compounds (forced labor camps) in Cambodia, Myanmar (Shwe Kokko zone) and Laos (Golden Triangle Special Economic Zone), where they traffic human trafficking victims forced to operate financial scams targeting global victims. Treasury estimates indicate these compounds generate more than $5 billion annually in scam revenues. The designation also includes luxury real estate operations in Phnom Penh and Sihanoukville that served as laundering vehicles. Accompanied by the TCO designation of Huione Group the same day.
December 31, 2024 AR confirmed
Argentina: fintech/crypto reform under Milei + currency control removal Apr 2025 + UIF anti-Kirchner corruption
Argentina, under the Javier Milei government (President since December 10, 2023, La Libertad Avanza), has implemented the most radical economic reforms in its recent history: chainsaw to public spending (fiscal deficit eliminated in 2024 according to IMF), removal of currency controls on April 11, 2025 (10 years after their imposition), Argentine peso with free float. The Financial Information Unit (UIF) under the Milei government has intensified investigations against Kirchner-era corruption (2003-2015 and 2019-2023): **Sur Finanzas case** (currency exchange caves, already in this tracker), massive raids on the Kirchner family (Cristina Fernández de Kirchner already sentenced to 6 years prison in 2022 for the Vialidad case), Lázaro Báez, Florencia Kirchner, Máximo Kirchner. Additionally, the National Securities Commission (CNV) regulated the crypto sector in 2024 with the Registry of Virtual Asset Service Providers (PSAV) — Argentina has the highest crypto adoption in South America (Chainalysis 2024). The Central Bank of the Argentine Republic (BCRA) supervises commercial banks: Banco Nación (state, largest), Banco Provincia, Banco Macro, Banco Galicia, Banco Santander Argentina, BBVA Argentina, ICBC Argentina, HSBC Argentina (HSBC withdrew in April 2024, selling to Galicia). Argentina is a GAFILAT member.
July 4, 2017 IT confirmed
Italy: Monte dei Paschi €5.4B bailout 2017 — world's oldest bank + derivatives fraud
On **July 4, 2017**, the Italian government completed a **state bailout of €5.4 billion ($6.1 billion USD)** of **Banca Monte dei Paschi di Siena (MPS)** — founded in **1472, the world's oldest bank still in operation** and Italy's third largest. The MPS crisis developed over years through a **derivatives fraud scandal**: to hide massive losses (partly derived from the disastrous 2007 acquisition of Antonveneta bank for €9B, greatly overvalued), MPS executives carried out **fraudulent structured derivatives operations** known as **'Alexandria' (with Nomura) and 'Santorini' (with Deutsche Bank)** between 2008-2012, designed to dress up the balance sheets and hide losses from regulators. When the fraud was revealed, MPS needed multiple bailouts (2013, 2017). The 2017 one ('precautionary recapitalization') made the Italian State the **majority shareholder (~68%)**. Several former executives were convicted: **Giuseppe Mussari** (former chairman) and **Antonio Vigni** (former general director) received sentences for accounting fraud + market manipulation (although some were revised on appeal). Deutsche Bank and Nomura also faced proceedings for their role in the derivatives. The case is referenced as **the paradigmatic example of the Italian banking crisis + derivatives fraud to hide losses** + the symbolism of the world's oldest bank nearly collapsing. Italy is a FATF + MONEYVAL founding member.
June 27, 2019 CN confirmed
China: PlusToken $5.7B crypto Ponzi — Asia's largest crypto Ponzi + 2M+ victims (Jun 2019)
In **June 2019**, **PlusToken** collapsed — **one of the largest cryptocurrency Ponzi schemes in history**: **$5.7 billion USD** (some estimates up to $6-7B), with **more than 2 million victims** mostly in China, South Korea, and Southeast Asia. PlusToken (launched 2018) sold itself as a **'high-yield crypto wallet'** that promised returns of **9-18% monthly** supposedly generated by 'exchange arbitrage' + 'mining' + 'referral programs' — a classic MLM pyramid scheme. It accumulated enormous amounts of **BTC (~200,000), ETH (~800,000), EOS, and other cryptos** from victims. The team (led by **Chen Bo** and other Chinese nationals) operated from China but registered the entity in **Vanuatu** to evade jurisdiction. When the scheme collapsed (June 2019), the operators tried to flee — **6 were arrested in Vanuatu and deported to China in June 2019**, and a total of **27 operators were eventually arrested** by the Chinese Ministry of Public Security. They were **convicted in 2020-2022** by Jiangsu courts (Chen Bo received 11 years + massive fines). The Chinese government **seized the cryptos** — and controversially, **the sales of the seized cryptos by Chinese authorities (~$4B in BTC/ETH liquidated 2019-2020) impacted the global crypto market** (sell pressure documented by Chainalysis). The case is referenced as **the largest crypto Ponzi in Asia + the example of how China handles crypto crime** (China banned crypto trading 2017 + mining 2021). China (1,410M inhabitants) is supervised by PBOC (People's Bank of China) + CBIRC + Ministry of Public Security. China is a FATF + APG + EAG member.
February 14, 2008 LI confirmed
Liechtenstein: 2008 Liechtenstein tax affair — Heinrich Kieber leaked LGT data to 12 countries
On February 14, 2008, the 'Liechtenstein tax affair' broke — one of the largest tax evasion scandals in European history. Heinrich Kieber, a former data entry clerk at LGT Group (private bank owned by Liechtenstein's Princely House), had stolen the data of 4,527 foreign accounts of wealthy clients in 2002. Kieber sold the data to German intelligence (BND) for €4.2M in 2007, and then to tax authorities of 12 other countries: US, UK, France, Italy, Australia, Canada, Netherlands, Spain, Sweden, Norway, Finland, Ireland. The 'BND Liechtenstein' operation triggered thousands of global tax evasion investigations: in Germany, Klaus Zumwinkel (Deutsche Post CEO) was arrested in February 2008 (prominent case); more than 800 German taxpayers self-reported their accounts after the scandal. Liechtenstein, the fourth smallest country in Europe (~38,000 inhabitants), has a financial sector representing ~25% of GDP. **FinCEN advisory 19 of May 2000** had previously identified serious deficiencies in Liechtenstein's AML regime, including: bearer shares issuance, extreme banking secrecy, information compartmentalization. Post-2008 scandal, Liechtenstein implemented deep reforms: Due Diligence Act (DDA) 2008 amended 2009, Due Diligence Ordinance (DDO) 2009, Act on the Register of Beneficial Owners of Legal Entities (VwbPG), gradual elimination of bearer shares. FMA Liechtenstein supervises 12 banks (LGT AG, Liechtensteinische Landesbank, VP Bank the 3 largest) with CHF 411.4B in AUM (2022). Liechtenstein is a MONEYVAL member and obtained Largely Compliant on 35 of 40 FATF recommendations in 2024.
May 28, 2013 CR confirmed
Costa Rica: Liberty Reserve $6B laundering shut down May 2013 — Budovsky 20 years (foundational digital currency case)
On **May 28, 2013**, the DOJ + US Secret Service dismantled **Liberty Reserve** — then the **largest digital money laundering case in history to that point**: **$6 billion USD laundered** via a centralized 'digital currency' operated from Costa Rica. Liberty Reserve (founded 2006 by **Arthur Budovsky**, Ukrainian-American former e-gold convict, renounced US citizenship to become Costa Rican) operated 'LR dollars' and 'LR euros' — an irreversible, near-anonymous digital currency (only required name/email/birthdate without verification), used massively by **cybercriminals, carders, Ponzi operators, traffickers** of ~1 million worldwide users (200,000 in US). Liberty Reserve charged 1% per transaction + $0.75 for 'privacy' (hiding account number). It was the **main payment vehicle for cybercrime pre-Bitcoin** (carding forums, fake antivirus, investment fraud). The case was the **first time the DOJ used Section 311 of the USA PATRIOT Act against a digital currency** (designation + simultaneous indictment). **Arthur Budovsky** was **arrested in Spain (Madrid) May 2013, extradited to US 2014, pleaded guilty 2016, sentenced to 20 years federal prison** (SDNY). 5 co-conspirators convicted. The case is referenced as **the foundational precedent for digital currency laundering enforcement** (preceded the Bitcoin/crypto enforcement era) + the first major case to demonstrate the 'centralized digital currency for crime' model. Costa Rica was the host but the case was led by US authorities. Costa Rica is a GAFILAT member.
May 10, 2012 US confirmed
US: JPMorgan 'London Whale' $6.2B 2012 — Bruno Iksil + $920M fines
On **May 10, 2012**, **JPMorgan Chase** revealed initial losses of $2 billion in derivatives operations at its **Chief Investment Office (CIO) in London** — losses that eventually reached **~$6.2 billion USD**. The person responsible was **Bruno Iksil**, a French trader in the London office, nicknamed **'The London Whale'** for the massive size of his positions in the credit default swap (CDS) market on corporate indices (CDX IG.9) — positions so large they distorted market prices. Iksil had built positions of ~$157 billion notional (directional bets on the direction of corporate credit) that turned against him when rival hedge funds identified his positions and traded against him. Iksil's superiors — **Javier Martin-Artajo (a Spanish citizen, his direct boss) and Julien Grout (junior trader)** — were charged by the DOJ + SEC with **falsifying valuations to hide growing losses**. Iksil obtained immunity as a cooperator; Martin-Artajo and Grout were charged but the charges were dismissed (Martin-Artajo refused extradition from Spain). JPMorgan paid **$920 million in combined fines** to SEC + OCC + FRB + UK FCA (September 2013 settlement) + admitted violating securities laws. CEO **Jamie Dimon** initially dismissed the scandal as 'a tempest in a teapot' (a phrase that became emblematic) and then publicly apologized. The case is referenced as **the rogue trading desk case (not individual) + an example of massive corporate governance and risk control failures** at one of the world's largest banks + criticism of the supposedly 'hedging' directional bets of the CIO.
August 3, 2014 PT confirmed
Portugal: BES collapse in Aug 2014 — Portugal's largest 21st-century banking scandal
On August 3, 2014, the Bank of Portugal announced the forced resolution of Banco Espírito Santo (BES), the largest listed Portuguese bank, founded in 1869. After weeks of revelations about BES's exposure to the network of Espírito Santo Group (GES) companies controlled by the founding family, the bank reported record losses of €3.57 billion in the first half. The administration of Ricardo Salgado 'disobeyed the Bank of Portugal 21 times between December 2013 and July 2014', engaging in 'wilful acts of ruinous management'. The public rescue cost €4.9 billion (~$6.6 billion, authorized by the European Commission), and the total cost to taxpayers exceeded €12 billion via the Resolution Fund. BES was split into a 'good bank' (Novo Banco) and a 'bad bank'. Ricardo Salgado was sentenced to prison in 2024 over cases such as misrepresentation in the 2014 BES capital increase prospectus and €9.3 million diverted from BES to BES Angola.
January 25, 2019 BR confirmed
Brazil: Vale-Brumadinho Jan 2019 — 270 dead + $7B settlement + DOJ $55.9M FCPA
On **January 25, 2019**, the Córrego do Feijão tailings dam of **Vale SA** (the world's largest iron ore miner, Brazilian) in **Brumadinho, Minas Gerais, Brazil**, catastrophically collapsed — releasing **~12 million cubic meters of toxic mud** that killed **270 people** (including Vale employees having lunch in the mine cafeteria) and devastated the local environment. It was **Brazil's worst workplace disaster + Vale's second dam disaster in 4 years** (after Samarco/Mariana 2015, 19 dead, in partnership with BHP). The investigation revealed: **(1)** Vale **knew about the instability** of the dam (internal reports indicated it) + pressured the German auditor **TÜV SÜD** to certify it as safe despite the risks; **(2) corruption and falsification of safety certificates**. In **2021, Vale paid a record civil/criminal settlement of R$37.7 billion ($7 billion USD)** with the Minas Gerais government — Brazil's largest environmental reparation agreement. In **2023, Vale + Vale executives paid $55.9 million to the DOJ in an FCPA settlement** (Vale ADRs on NYSE) for hiding from investors the true safety situation of the dams. **17 Vale + TÜV SÜD executives were charged** with homicide (trial ongoing). Former CEO **Fabio Schvartsman** resigned. The case transformed dam regulation in Brazil (Law 14.066/2020) + accelerated the forced closure of similar dams. Brazil is a FATF + GAFILAT founding member.
December 4, 2024 US confirmed
US/Netherlands: Tornado Cash OFAC designation + Roman Storm convicted + Alexey Pertsev 5.3 years NL
**Tornado Cash** (privacy mixing smart contract on Ethereum launched in 2019, maintained by Roman Storm, Roman Semenov and Alexey Pertsev) was designated by **OFAC on August 8, 2022** — the first time in history that OFAC designates open source code (smart contract). The designation included 38 Ethereum addresses of the protocol. Tornado Cash processed **$7+ billion in ETH** between 2019-2022, including **$625 million from the Ronin Bridge hack** by **Lazarus Group (DPRK, March 2022)**, $100M+ from Horizon Bridge hack (Jun 2022), multiple ransomware payouts (REvil, Conti, BlackCat), multiple scams. **Key criminal decisions**: on May 14, 2024, **Roman Storm** (co-founder, US-Russian citizen) was **found guilty in the Eastern District of New York** for conspiracy to operate an unlicensed money transmitter and IEEPA violation (sanctions), sentencing pending. **Roman Semenov** (co-founder, Russian) was simultaneously indicted, fugitive. **Alexey Pertsev** (developer, Russian citizen NL resident) was **arrested in Netherlands in August 2022** and **sentenced to 5 years and 4 months prison by the District Court of 's-Hertogenbosch on May 14, 2024** for money laundering — first criminal case in the world against an open source crypto developer. The case has generated global debate about **criminalization of software vs use of software**: organizations like Electronic Frontier Foundation (EFF) and Coin Center have sued Treasury for unconstitutionality of the designation. **Coin Center v Yellen** in US District Court Texas (favorable ruling for Tornado Cash in January 2024, OFAC delisted Tornado Cash March 21, 2025).
February 17, 2009 AG confirmed
Antigua/US: Stanford Financial Group — 2nd largest Ponzi history $7B + Allen Stanford 110 years prison
On **February 17, 2009**, the SEC filed charges against **R. Allen Stanford** (Texan, owner of Stanford Financial Group and Stanford International Bank SIB in Antigua) for **the second largest Ponzi scheme in human history** (after Madoff): **$7 billion USD in fake Certificates of Deposit (CDs)** sold to **25,000+ investors** mainly in the United States, Latin America (Venezuela, Colombia, Mexico) and the Caribbean. SIB Antigua promised consistently high returns (5-15% annually) that were legitimately impossible. Stanford operated the scheme from at least 1993. The scheme's revelation came **post-Madoff (December 2008)** and in the context of the 2008-2009 financial crisis. Stanford was **arrested on June 18, 2009** and **sentenced to 110 years federal prison in June 2012** by SDTX (Southern District of Texas) on 13 fraud counts. Convicted co-conspirators: **James Davis** (CFO, 5 cooperative years), **Laura Pendergest-Holt** (Chief Investment Officer, 3 years), **Gilbertson Lopez** (chief of audit), **Mark Kuhrt**. The **Antigua case** showed the deep vulnerabilities of **offshore banking supervision**: SIB Antigua operated with a license from the **Financial Services Regulatory Commission (FSRC) Antigua** that regulated a bank with $8 billion AUM with almost no supervisory staff. **Leroy King**, the main FSRC Antigua regulator, was bribed by Stanford (documented receipt of $128,000+) and eventually extradited to the US in 2019, convicted in 2021. The receiver **Ralph Janvey** has recovered **$1+ billion since 2009** via extensive litigation (Stanford International Bank Limited In Receivership). The case drove reforms of offshore supervision and reinforcement of OECD CRS (Common Reporting Standard, 2014).
March 9, 2024 FM confirmed
Pacific: FSM + Marshall + Palau — Compact States USD legal tender + Mar 2024 renewal $7.1B
The three Pacific Compact States: FSM (105K), RMI (42K), Palau (18K) — operate under Compact of Free Association with US, giving free US labor/educational access, US defense, USD legal tender. Renewed March 2024 with $7.1B USD for 20 years. RMI has been one of Pacific offshore hubs — operates 70K+ International Business Companies + 3,700 registered vessels (second world flag of convenience after Liberia). RMI launched 'SOV' digital currency 2018 (blocked by IMF). Palau (Compact Plus + controversial Investor Visa Program). The three are APG members.
January 24, 2008 FR confirmed
France: Société Générale-Kerviel €4.9B Jan 2008 — most expensive rogue trader in history
On **January 24, 2008**, **Société Générale (SocGen)** announced unauthorized trading losses of **€4.9 billion ($7.2 billion USD)** — then the **largest 'rogue trader' loss in history** (surpassing Barings) — caused by a single trader: **Jérôme Kerviel (31 years old)**, futures trader on European indices in the Delta One department. Kerviel had built **massive unauthorized speculative positions of up to €50 billion** (more than SocGen's entire market cap), betting directionally on Eurostoxx, DAX and FTSE futures. He kept the positions hidden for 2 years through a system of **fictitious offsetting operations** (with non-existent counterparties), exploiting his prior knowledge of back-office control systems (where he had worked). When SocGen detected the positions on **January 18, 2008**, it liquidated them in an emergency over 3 days — at a time of **high market volatility after the subprime crisis** — which drove losses to €4.9B. **Kerviel was sentenced to 5 years (3 firm) in prison** + ordered to pay **€4.9B in damages** (later annulled on appeal, but criminal charges upheld). The verdict was controversial: Kerviel maintained that his superiors knew his positions and only punished him when they lost — a French court in 2016 ordered SocGen to pay him €500K for wrongful dismissal (separate labor case). The case unleashed massive criticism of SocGen's risk control + banking regulatory reforms in France + Basel III. France is a FATF founding member.
November 2, 2023 BS confirmed
Bahamas/US: FTX collapse Nov 2022 → SBF sentenced 25 years prison for $8B fraud in Nov 2023
On November 2, 2022, the FTX scandal exploded — the world's second-largest crypto exchange, headquartered in Nassau (Bahamas), after a leak of its balance sheet revealed massive commingling between FTX and Alameda Research (Sam Bankman-Fried's proprietary trading firm). On November 11, 2022, FTX filed Chapter 11 bankruptcy. ~$8-10 billion in customer funds were missing. DOJ charges against Sam Bankman-Fried (SBF): wire fraud, commodities fraud, securities fraud, money laundering, FCPA violations (bribes to Chinese officials), conspiracy to make political contributions. Trial in the Southern District of New York began October 2023 and SBF was found guilty of all 7 counts on November 2, 2023. **On March 28, 2024, SBF was sentenced to 25 years federal prison** + ordered to pay $11 billion in forfeiture. Caroline Ellison (Alameda CEO), Gary Wang (FTX co-founder), Nishad Singh, Ryan Salame pleaded guilty and cooperated. The Securities Commission of The Bahamas (where FTX was supposedly regulated) oversaw parallel proceedings. Bahamas had already exited the FATF grey list in 2020, but the FTX case illustrated the weaknesses of its crypto licensing regime (DARE Act 2020). Victims include millions of global retail traders + large institutional investors (Sequoia Capital, BlackRock, Ontario Teachers' Pension Plan).
November 12, 2022 BS confirmed
Bahamas: FTX collapse Nov 11 2022 + SBF arrested + Bahamas offshore center 250 banks historic
The **Central Bank of The Bahamas (CBB)**, the Securities Commission of the Bahamas (SCB) and the Financial Intelligence Unit (FIU Bahamas) supervise the Bahamian financial sector under the framework of the Financial Transactions Reporting Act 2018 and Proceeds of Crime Act 2018 (amended in 2020 and 2023). Bahamas (412,000 inhabitants, capital Nassau) is **one of the most important offshore financial centers in the Caribbean** — at its 1990s peak it had **250+ licensed banks**, including the legacy of **Augusto Pinochet** (Chilean dictator) who maintained $11+ million in Riggs Bank Bahamas branch — case discovered by US Senate Permanent Subcommittee on Investigations 2004. **On November 11, 2022, FTX Trading Limited (based in Nassau) collapsed** — the largest crypto bankruptcy in history with **$8+ billion in client funds lost**. Sam Bankman-Fried (SBF, founder and CEO) was arrested by the Royal Bahamas Police Force on December 12, 2022, extradited to the US on December 21, 2022, and **sentenced to 25 years federal prison on March 28, 2024** by SDNY (US v Bankman-Fried case) — 7 counts including bank fraud, conspiracy, money laundering. **Caroline Ellison** (CEO Alameda Research, SBF's ex-girlfriend) cooperated as witness and received 2 years. **Gary Wang** (CTO FTX) cooperated. **Nishad Singh** (Director Engineering). **Ryan Salame** (Co-CEO FTX Digital Markets Bahamas) received 7.5 years. The Chapter 11 restructuring (John J. Ray III, same as Enron) has recovered ~$14.5 billion in assets (more than the $8B lost by clients — thanks to the crypto rally post-collapse). The Bahamas Examination Committee (Joint Provisional Liquidators) worked in parallel. Bahamas **was on FATF grey list 2022-2024**, exited in Feb 2024. Other historical Bahamian cases: Cayman exit case (FATF removed Bahamas grey list 2024), 'Bahamas Leaks' ICIJ 2016 (175,000 offshore structures). Bahamas is a CFATF member and GAFILAT observer.
June 30, 2014 FR confirmed
BNP Paribas: $8.9bn in 2014, the largest sanctions-violation penalty in history
French bank BNP Paribas pleaded guilty in 2014 to processing billions of dollars for Iran, Sudan and Cuba over eight years, deliberately concealing the transactions even though senior officials knew they were breaking US law. The fine, around $8.9 billion, remains the largest sanctions-violation penalty in history. The bank had its US-dollar clearing license temporarily suspended.
January 4, 2022 US confirmed
Theranos: Elizabeth Holmes 11 years + Balwani 13 years — Silicon Valley $9B fraud valuation (Jan 2022)
On **January 4, 2022**, **Elizabeth Holmes** (Theranos founder, Stanford dropout 2003, self-proclaimed 'next Steve Jobs', Forbes 'youngest self-made female billionaire 2014' cover) was **found guilty by Northern District of California (NDCA, San Jose) jury on 4 wire fraud charges** against investors (out of 11 total charges — jury split on the rest). **Sentenced to 11 years + 3 months federal prison on November 18, 2022**. **Ramesh 'Sunny' Balwani** (former Theranos COO, Holmes' former partner 2002-2016, Indian-American born in Pakistan) was found guilty by separate jury on **12 charges in July 2022** and **sentenced to 12 years + 11 months (13 years) in December 2022**. Holmes began serving sentence in May 2023 at FPC Bryan Texas (federal women's prison). The case: Theranos (founded 2003) raised **$945M in venture capital** from 2003 to a **peak valuation of $9 billion in 2014** (Holmes $4.5B net worth at that moment) based on the fraudulent promise of 'Edison' technology that could perform **240 medical tests from a single drop of blood** (vs blood drawn by traditional venipuncture). In reality: the technology **NEVER worked** — Theranos passed 90% of tests to conventional Siemens analyzers and manipulated results. Investor victims: Walgreens ($140M), Rupert Murdoch ($125M, largest individual investor), Betsy DeVos family ($100M), Henry Kissinger (board member alongside James Mattis, George Shultz, William Perry, Sam Nunn), Carlos Slim ($30M), Larry Ellison ($30M). The whistleblower **Tyler Shultz** (George Shultz's grandson) reported internally 2014 + to John Carreyrou (Wall Street Journal) whose 2015 investigations catalyzed the collapse. **HBO Documentary 'The Inventor: Out for Blood' (2019)**, book 'Bad Blood' Carreyrou (2018), Hulu series 'The Dropout' (2022) with Amanda Seyfried.
December 31, 2024 SS confirmed
South Sudan: OFAC sanctions Kiir + Machar regime — 'The Sentry' documents $9+ billion diverted
South Sudan, independent since July 9, 2011 (separation from Sudan post-2011 referendum), lived the 2013-2018 civil war between forces loyal to President Salva Kiir (Dinka) and former Vice President Riek Machar (Nuer), causing ~400,000 deaths and 4 million displaced. OFAC has systematically designated South Sudanese military and political leaders under Executive Order 13664 (2014). UN Security Council Resolutions 2206 (2015), 2271 (2016) and 2521 (2020) established the UN sanctions regime (arms embargo, individual designations). The report from **The Sentry** (organization of John Prendergast and George Clooney) extensively documents South Sudanese 'kleptocracy': diversion of oil revenues (oil sector is 95% of GDP), luxury real estate in Nairobi, Kampala and Melbourne acquired by Kiir and Machar family members, accounts in UAE and European banks, opaque oil contracts with Chinese-Malaysian consortia (PetroChina, Petronas). The Bank of South Sudan (BSS) and commercial banks (Kenya Commercial Bank South Sudan, Equity Bank South Sudan, KCB South Sudan, EXIM Bank, Co-operative Bank of South Sudan) operate under severe pressure, with South Sudanese pound (SSP) in chronic hyperinflation. South Sudan is an ESAAMLG member. The revitalized 2018 peace agreement (R-ARCSS) has maintained a fragile ceasefire, but the DDR (Disarmament, Demobilization and Reintegration) processes and democratic elections have been postponed multiple times to 2026.
August 15, 2021 AF confirmed
Afghanistan: $9.5B of frozen assets post-Taliban takeover of Kabul Aug 2021 + AfFund 2022
On August 15, 2021, the Taliban took Kabul after the US withdrawal from Afghanistan (Operation Allied Refuge after 20 years of war). Within hours, OFAC and the Federal Reserve of New York froze the $9.5 billion in Da Afghanistan Bank (DAB, Central Bank of Afghanistan) assets deposited in the US. The assets are subject to OFAC Executive Order 13224 (Specially Designated Global Terrorists) and the UN Sanctions Committee 1988 (created in 2011 succeeding the 1267 Taliban/Al-Qaeda). In February 2022, President Biden signed Executive Order 14064 ordering the transfer of $3.5 billion (half of the assets) to the 'Fund for the Afghan People' (AfFund, Switzerland-based, controlled by trustees), reserving the rest for claims by 9/11 victims and other terrorism victims. The decision was extensively criticized by victims and humanitarian organizations. The Taliban has never been recognized by any country as Afghanistan's legitimate government (although China, Russia and Pakistan have established pragmatic diplomatic relations). Specific Afghan AML risks: massive illicit Taliban revenues (~$1.5-2.5 billion/year estimated, including opium — Afghanistan was the world's largest producer with 80%+ of world market until Taliban prohibition in 2022 + eradication goal), mineral trafficking (emeralds, lapis lazuli, marble), massive informal hawala (without functioning banking system), violation of women's rights (female education prohibition post-March 2022), ISIS-K attacks. UN Office of the Special Representative systematically documents.
June 27, 2022 SG confirmed
Singapore: Three Arrows Capital (3AC) $10B collapse Jun 2022 — Su Zhu/Kyle Davies + crypto winter central node
On **June 27, 2022**, **Three Arrows Capital (3AC)** — one of the world's largest crypto hedge funds, founded by **Su Zhu and Kyle Davies** (former Phillips Academy + Columbia University classmates + former Credit Suisse traders) in Singapore 2012 — entered **BVI Court-ordered liquidation** after becoming insolvent, with a **peak AUM of ~$10 billion (2021) that collapsed leaving ~$3.5 billion in liabilities to 27+ creditors**. 3AC was the **central node of the 2022 crypto winter contagion**: it had massive leveraged exposure to **Terra/Luna (LUNA + UST, lost ~$560M), Grayscale Bitcoin Trust (GBTC premium trade), stETH, and leveraged positions with money borrowed from Celsius, Voyager Digital ($670M default that led Voyager to bankruptcy), BlockFi, Genesis, Deribit, FTX**. When Terra/Luna collapsed (May 2022) + Bitcoin fell, 3AC couldn't cover margin calls. **Su Zhu and Kyle Davies fled** (whereabouts initially unknown, then Dubai/Indonesia/Bali) — refused to cooperate with Teneo liquidators. Singapore MAS **banned Su Zhu and Kyle Davies from capital markets activity for 9 years in September 2022**. **Su Zhu was arrested at Singapore airport in September 2023** (4 months prison for contempt of court). Davies remains evasive. The founders controversially launched **'OPNX' (Open Exchange)** in 2023 — an exchange to trade crypto bankruptcy claims (including those of their own victims) — closed 2024. The case is referenced as **the contagion node that amplified the 2022 crypto winter** + paradigm of leverage risk in crypto hedge funds. Singapore is one of Asia's most important crypto/fintech hubs, supervised by MAS.
February 25, 1986 PH confirmed
Philippines: Ferdinand Marcos Sr (1965-1986) — $5-10B diverted + $7.5B recovered PCGG (leading global recovery case)
Ferdinand Marcos Sr (Philippine President 1965-1986, dictator under Martial Law 1972-1981, removed by People Power Revolution Feb 1986) is **the paradigmatic dictatorial asset recovery case pre-Abacha**. During his **20 years in power**, Marcos and his wife Imelda Marcos **diverted an estimated $5-10 billion USD** from Philippine state coffers (PCGG + World Bank + Stolen Asset Recovery Initiative StAR estimates). On **February 25, 1986**, after 4 days of massive People Power Revolution protests led by Corazon Aquino (widow of Ninoy Aquino assassinated 1983), Marcos was forced to exit Manila to US (Hawaii). He died in Honolulu exile on September 28, 1989. The PCGG (Presidential Commission on Good Government, founded by Aquino on Feb 28, 1986) has **recovered $7.5+ billion since 1986** — one of the largest asset recovery cases in history: Swiss bank accounts: $683M (returned 2003 + 2010, judgment); US: $640M (Manhattan real estate + jewelry); Bank of New York: $356M; Imelda's jewelry collection: $5M (Hawaii 1986 + Philippines); famous shoe collection (3,000+ pairs — Imelda Marcos shoe museum Marikina). **Imelda Marcos** (Imelda Romualdez Marcos, 'Iron Butterfly') was **convicted in 2018 by Sandiganbayan to 11 years prison on 7 graft charges** — but remained free for being active politician (Congress 2019-2022). **The Marcos family drama**: **Bongbong Marcos** (Ferdinand Jr., son) **was elected Philippine President in June 2022** — family return to power 36 years later. **Imee Marcos** (daughter) is Senator. The Marcos oligarchy remains powerful: Ilocos Norte + Ilocos Sur provinces are their historical fiefdom. Cases pending in US + Philippines + Switzerland are maintained — flow reduced under Marcos Jr. government (obvious conflict of interest).
September 26, 2024 PH confirmed
Philippines: FATF grey list exit Feb 2025 + ICC investigation Duterte drug war + Marcos legacy
On February 21, 2025, FATF removed Philippines from the grey list ('Jurisdictions under Increased Monitoring') after almost 4 years of monitoring initiated in June 2021. The Bangko Sentral ng Pilipinas (BSP), the Anti-Money Laundering Council (AMLC, FIU) and the Securities and Exchange Commission (PSEC) supervise the Philippine banking sector under the framework of Republic Act 9160 'Anti-Money Laundering Act' 2001 (extensively amended 2003, 2012, 2017, 2021, 2024). Philippines (115M inhabitants, capital Manila) lives under the regime of **Ferdinand 'Bongbong' Marcos Jr.** (President since June 2022, son of former dictator Ferdinand Marcos Sr. 1965-1986). The **Marcos family legacy** is one of the largest historical AML cases: $5-10 billion estimated diverted during Marcos Sr.'s regime — the Presidential Commission on Good Government (PCGG) has recovered $7.5+ billion since 1986. **On September 26, 2024, the International Criminal Court (ICC) formally opened the investigation against Rodrigo Duterte** (former President 2016-2022) for **'crimes against humanity' related to the 'War on Drugs' / 'Tokhang' that killed 30,000+ Filipinos** (HRW estimate, government recognizes 6,000+) in extrajudicial executions by the Philippine National Police (PNP) and vigilantes. **Duterte arrested in Manila March 2025**, transferred to The Hague. Specific Philippine AML risks: crypto corridor (Philippines has **the world's 2nd largest crypto adoption** according to Chainalysis 2024), POGOs (Philippine Offshore Gaming Operations — Chinese operators targeting Chinese gamblers, banned by Marcos Jr. August 2024 after massive POGO Alice Guo scandals, $4.5B illegal gambling); pig-butchering scam compounds, OFW remittances (10M+ Filipinos overseas, $36B annual remittances = 9% GDP). The banking sector is concentrated in: BDO Unibank (largest), Bank of the Philippine Islands (BPI), Metrobank, Land Bank of the Philippines, Security Bank.
March 8, 2021 GB confirmed
UK: Greensill Capital $10B collapse Mar 2021 — David Cameron lobbying scandal
On **March 8, 2021**, **Greensill Capital** — the British **'supply chain finance'** firm founded by Australian **Lex Greensill (ex-Citi, ex-Morgan Stanley)**, valued at its peak at **$7 billion** and backed by SoftBank Vision Fund — declared bankruptcy with ~$10 billion in liabilities. The collapse unleashed three interlocking scandals: **(1)** Greensill's business model was questionable — it packaged 'future invoices' (not real invoices) from troubled companies like **steel magnate Sanjeev Gupta's GFG Alliance**, sold them as 'investment grade' notes to Credit Suisse + GAM funds, and depended on credit insurance from **Tokio Marine (Australian subsidiary BCC)** — when BCC refused to renew the insurance (July 2020), the whole model collapsed. **Credit Suisse lost $3 billion** (its Greensill funds attracted $10B+ of investors), another catalyst of its bankruptcy/UBS 2023. **(2) DAVID CAMERON SCANDAL:** former British Prime Minister David Cameron (PM 2010-2016) had received **Greensill shares worth ~£70M (£10M cashed in)** and it was revealed that he **sent WhatsApp messages + emails to the British Treasury lobbying** for Greensill to access COVID emergency schemes — without officially registering his lobbying as required by law. **The British Parliament investigated (Treasury Select Committee), Cameron was forced to testify** (May 2021), exposed massive regulatory loopholes in the UK's lobbying system, led to reforms. **(3)** Greensill's German bank regulations (Greensill Bank AG in Bremen) were captured by BaFin (depositor bailout). The **UK SFO + APRA + FINMA have been investigating** Greensill since 2021. The case is referenced as: **(a) the foundational collapse of supply chain finance + regulatory opacity**, **(b) the largest lobbying scandal in modern UK**, **(c) co-catalyst of Credit Suisse's collapse along with Archegos**.
January 30, 2017 DE confirmed
Deutsche Bank: Russian mirror trades $10B Moscow-London — $629M NYDFS+FCA settlement (Jan 2017)
On **January 30, 2017**, **Deutsche Bank AG** agreed to pay **$425M to NYDFS + £163M ($204M) to UK FCA = $629M total** for **'Russian mirror trades'** — the largest clandestine **rubles-to-hard-currency conversion** scheme between 2011-2015 via Deutsche Bank Moscow + Deutsche Bank London. **$10+ billion** were moved from the Russian regime (clients including sanctionable oligarchs and shell companies) through the following structure: 1) Russian shell company bought liquid Russian stocks (Gazprom, Sberbank, Rosneft, Lukoil) in Moscow with rubles, 2) Offshore shell company (in BVI, Cyprus, Latvia) **simultaneously sold** the same amount of same stocks in London with USD/EUR, 3) Result: rubles eliminated from Russian balance, hard currency appears in offshore company — all in minutes, without real audit. The scheme was **a direct response to 2014 Crimea/Ukraine sanctions** of Putin's regime. **Tim Wiswell** (US trader Deutsche Bank Moscow, former equity sales head) was the main architect from the bank — fired 2015, pleaded guilty US 2016 to BSA violation, **sentenced 2017**. **Andrey Tikhonov** (former VP Deutsche Moscow) also fired. **Vladimir Antonov** (already covered in Snoras Bank Lithuania case aml-lithuania-blo-2024) was one of the top clients who used the scheme. **Federal Reserve also fined Deutsche Bank $41M in May 2017** for related risk management failures. Deutsche Bank was **additionally fined $7M in July 2017** by NYDFS for AML/CIP failures. The case is part of multiple scandals that led Deutsche Bank to its biggest crisis (2015-2019): Christian Sewing CEO since April 2018 has implemented massive restructuring. The case connected with **Danske Bank Estonia laundromat** (case aml-danske-estonia-2018), Cyprus banking sector, and FBR investigations into Russian flight capital.
November 20, 2024 US confirmed
US: Bill Hwang (Archegos) sentenced to 18 years prison in Nov 2024 — $10B collapse in Mar 2021
On **November 20, 2024**, **Bill Hwang** (Sung Kook 'Bill' Hwang, former Tiger Asia Management), founder of Archegos Capital Management, was sentenced to **18 years federal prison** by the Southern District of New York for massive market manipulation fraud and lies to bank counterparts. Patrick Halligan, Archegos CFO, received 8 years. The March 26, 2021 collapse was one of the most violent events in recent financial history: Archegos, a family office (not regulated hedge fund) built massive positions in tech/media stocks (ViacomCBS, Discovery Communications, Baidu, Tencent Music, IQIYI, Vipshop, Farfetch, GSX Techedu, RLX Technology) using **total return swaps** (TRS) — derivatives that gave exposure without direct legal ownership. When ViacomCBS made equity issuance on March 22, 2021 and the price fell, margin calls forced chaotic liquidation. **Combined prime broker bank losses estimated at $10 billion**: Credit Suisse $5.5 billion (main factor in subsequent 2023 collapse), Nomura $2.9 billion, Morgan Stanley $911 million, UBS $774 million, Mizuho $90 million. Regulators documented that Archegos lied to multiple prime brokers about aggregate positions (each only saw its side). The case resulted in: SEC Final Charging Document April 2022 (Hwang + Halligan + Scott Becker (head risk) + William Tomita (head trading)), FCA fine on UBS $387M (Aug 2023) for Credit Suisse legacy acquisition, FINMA reform of Swiss prime brokerage regulations, OSFI Canadian changes, Federal Reserve enforcement actions. The case has been described as 'the largest margin call in history'.
March 26, 2021 US confirmed
US: Archegos-Bill Hwang $10B collapse Mar 2021 — Hwang 18 years prison Nov 2024 (TRS swaps)
On **March 26, 2021**, **Archegos Capital Management** — a US 'family office' based in NYC, managing ~$10 billion of the personal wealth of **Bill Hwang (Sung Kook Hwang, Korean-American)** — collapsed catastrophically in the **largest individual 'margin call' in history**, triggering a forced sale that evaporated ~$10 billion of capital and caused combined losses of **~$10 billion to counterparty banks**. Hwang's scheme: he used **total return swaps (TRS)** with multiple prime broker banks — **Credit Suisse, Nomura, Morgan Stanley, Goldman Sachs, UBS, Deutsche Bank, Wells Fargo** — to build **massive leveraged positions (~5x leverage = ~$50 billion of effective exposure)** in a handful of stocks (ViacomCBS, Discovery, Tencent, GSX Techedu, etc.) **without the banks knowing the total aggregate exposure** (TRS are not publicly reportable, each bank saw only its portion). When ViacomCBS fell (March 22-24, 2021), Hwang couldn't cover margin calls; banks began liquidating **on March 26**, causing additional crash + massive losses: **Credit Suisse lost $5.5 billion** (final catalyst of its bankruptcy/absorption by UBS in 2023), **Nomura $2.9 billion**, Morgan Stanley + Goldman less (sold earlier). **Bill Hwang was charged in April 2022 + convicted by jury in July 2024** (10 counts of fraud + racketeering + market manipulation) + **sentenced to 18 years in prison in November 2024 + ordered to forfeit $12.35 billion**. **Patrick Halligan (Archegos CFO)** was also convicted + 8 years. The case is referenced as: **(1) the catalyst of Credit Suisse's collapse**, **(2) the paradigmatic example of unregulated family office systemic risk + opaque TRS**, **(3) the longest sentence ever imposed for market manipulation in the US**, **(4) foundational case on family office regulation and OTC derivatives**. Hwang already had a history: in 2012, his previous firm Tiger Asia Management pleaded guilty to wire fraud + $44M settlement (insider trading in Chinese stocks).
October 3, 2021 PA confirmed
ICIJ: Pandora Papers Oct 2021 — 11.9M documents + 35 world leaders + Tony Blair + Vladimir Putin + Pakistan PM Khan
On **October 3, 2021**, the International Consortium of Investigative Journalists (ICIJ) published **'Pandora Papers'** — the largest collaborative journalistic investigation in history: **11.9 million leaked documents** (2.94 TB) from **14 global offshore service firms** (Alemán, Cordero & Lee — Panama; Trident Trust Group — multiple jurisdictions; Asiaciti Trust — Cook Islands; Fidelity Corporate Services — BVI; Demara — Seychelles; others), processed over 2 years by **600+ journalists from 150 media in 117 countries**. **Pandora Papers identified >35 world leaders with secret offshore assets** (including: Tony Blair former UK PM + Cherie Blair (Pandora detailed London £6.45M mansion); Mohamed Amersi British Tory consultant; Vladimir Putin (documented intermediaries); Sheikh Mohammed bin Rashid Al Maktoum ruler Dubai; King Abdullah II Jordan; Andrej Babiš former PM Czech Republic; Sebastián Piñera (Chile President, Minera Dominga case forced him to deny offshore); Volodymyr Zelensky (Ukraine, Wakanda offshore disclosed); Hashim Thaçi Kosovo; Uhuru Kenyatta Kenya; Ilham Aliyev Azerbaijan; Aliyev family; Ali Bongo Gabon; Pakistan PM Imran Khan denied + cabinet members; 30+ ex-leaders; 100+ billionaires; 130+ politicians in 91 countries). **Pandora Papers** expanded **'Panama Papers' (2016, 11.5M Mossack Fonseca documents case aml-panama-papers-2024 covered)** and **'Paradise Papers' (2017, 13.4M Appleby/Bahamas documents)**. Criminal/civil investigations **derived from Pandora Papers in >100 countries**, recovering **>$1.5 billion in evaded taxes** according to ICIJ + Tax Justice Network. The **Piñera vs Minera Dominga case** ($2.5B Chile mining project) led to Piñera impeachment trial in November 2021 (survived 24-18). **Sebastian Kurz** (Austrian Chancellor) resigned post-Pandora partly after revelations. ICIJ is **headquartered in Washington DC**, won multiple Pulitzer (Panama 2017, Pandora award) and Walkley.
March 17, 2014 BR confirmed
Brazil: Lava Jato Mar 17 2014 — $13B Petrobras + Lula 12 years (freed 2019) + Dilma impeached + 295+ convictions
On **March 17, 2014**, Brazilian Federal Police arrested money changer **Alberto Youssef** in what appeared to be a routine money laundering investigation — but quickly revealed **the largest corruption network in world history documented to that point**, known as **'Operação Lava Jato' (Car Wash)**. The investigation led by Judge **Sérgio Moro** (Curitiba Federal Court) and prosecutor **Deltan Dallagnol** (Lava Jato Task Force) revealed: **(1) Petrobras corruption scheme** — the Brazilian state oil system paid **systemic 3% overprices on billion-dollar contracts** to construction companies (Odebrecht, OAS, Camargo Corrêa, UTC, Andrade Gutierrez, Mendes Júnior, Galvão Engenharia, Queiroz Galvão, Engevix) that distributed kick-backs to **politicians from ALL major Brazilian parties** (PT, PMDB/MDB, PP, PSDB) during 2003-2014 — total estimated: **$13+ billion USD** in documented money laundering. **(2) Odebrecht 'Departamento de Operações Estruturadas'** — phantom banking system operating $3.5 billion in bribes in **12 countries** (Brazil, Venezuela, Argentina, Colombia, Mexico, Ecuador, Peru, Panama, DR, Guatemala, Mozambique, Angola). **(3) Convicted politicians**: **Lula da Silva** (President 2003-2010) sentenced **9 years + 6 months in July 2017** (Triplex Guarujá case), extended to **12 years in January 2018** by TRF-4 → **released in November 2019** post-change in STF interpretation (Toffoli ruling) on collateral habeas corpus → **annulment of all convictions March 2021** by STF (Fachin ruling, Curitiba declaration without jurisdiction) → **elected President of Brazil October 2022 (49.9% vs Bolsonaro 49.1%, tightest runoff in Brazilian history)**, took office January 1, 2023. **Dilma Rousseff** (President 2011-2016) impeached August 2016 (charged 'pedaladas fiscais', technically not direct Lava Jato). **Eduardo Cunha** (former Câmara Speaker, architect of Dilma impeachment) sentenced 15 years March 2017. **Antonio Palocci** (former Finance Minister Lula+Dilma) sentenced 12 years + cooperation. **Marcelo Odebrecht** (Odebrecht CEO, founders grandson) sentenced 19 years 2016 → cooperation 2017 → freedom 2017. **(4) Sergio Moro** left the judiciary in 2018 to become **Minister of Justice under Bolsonaro 2019-2020**, generating massive controversy about conflict of interest — **Vaza Jato leak (Intercept Brasil June 2019)** revealed improper Moro-Dallagnol communications compromising judicial neutrality → STF annulled multiple convictions. **(5) Odebrecht (rebranded Novonor 2020)** pleaded guilty in **DOJ December 2016 — $3.5 billion settlement, largest FCPA settlement in history**.
March 17, 2014 BR confirmed
Brazil: Operação Lava Jato (2014-2024) — the largest anti-corruption case in world history
On March 17, 2014, the Brazilian Federal Police launched **Operação Lava Jato (Car Wash Operation)** from Curitiba, which became **the broadest anti-corruption case in world history**: 10 years of investigations (2014-2024) that documented $5+ billion in systematic bribes paid by Odebrecht (CEO Marcelo Odebrecht confessed to the DOJ in December 2016), Camargo Corrêa, OAS, Andrade Gutierrez and 15+ other large construction companies to Petrobras executives and Brazilian politicians. **Estimated losses for Petrobras: $13+ billion**. Historic convictions: **Lula da Silva** (former President 2003-2010, sentenced to 12 years and 7 months in July 2017 for the 'Triplex de Guarujá' case, free in November 2019 after STF decision annulling the conviction for partiality of Judge Sergio Moro, elected President again in 2022 for term 2023-2027); **Marcelo Odebrecht** (CEO, 19 years prison, released after plea bargain 2017); **Eduardo Cunha** (former President of the Chamber of Deputies, 15 years); **Marcelo Bahia Odebrecht** (continues cooperating); **Antonio Palocci** (former Lula Finance Minister). In 2021, the Supreme Federal Tribunal (STF) declared Judge Sergio Moro partial and annulled most Lava Jato convictions, restoring Lula's political rights. The COAF (Conselho de Controle de Atividades Financeiras, Brazilian FIU) and SFC supervise the banking sector. Brazil is a GAFILAT member.
February 13, 2018 LV confirmed
Latvia: ABLV Bank collapses post-FinCEN Section 311 in Feb 2018 — DPRK proliferation + Baltic banking crisis
On **February 13, 2018**, **FinCEN designated ABLV Bank** (third largest bank in Latvia) under **Section 311 of the USA PATRIOT Act as 'primary money laundering concern'** — one of the few designations of European banks under Section 311 (along with FBME Bank in Cyprus 2014 and Banca Privada d'Andorra BPA 2015). The action was based on: **(1) ABLV processed transactions for DPRK entities supporting the Korean nuclear program**, in violation of UN Security Council Resolutions, **(2) ABLV facilitated Russian and Ukrainian corruption schemes** via non-resident accounts (foreign customer business represented 70% of the balance sheet), **(3) Extensive bribery to Latvian officials** including the case **Ilmārs Rimšēvičs** (Governor of the Bank of Latvia 2001-2019, arrested on February 17, 2018, 4 days after the FinCEN designation, for accepting €500K in bribes — sentenced in February 2024 to 6 years prison). The case caused the **forced collapse of ABLV Bank in 7 days**: on February 24, 2018, the FCMC (Financial and Capital Market Commission of Latvia) ordered liquidation. ABLV had **€13 billion in assets** (US$14.7 billion) and was one of the pillars of the Latvian banking system. The crisis affected the entire **'Baltic banking ecosystem'** which had grown massively since EU accession 2004 with the attraction of post-Soviet Russian-Ukrainian capital (€100+ billion deposited in Latvia, Estonia, Lithuania between 2004-2018). Other consequences: exit of PNB Banka, stricter regulation by **ECB Single Supervisory Mechanism (SSM)** over Baltic banks, **reform of the Latvian AML Act 2018-2019**. The case is referenced as an example of **'state-captured banking system'** and the **vulnerability of EU peripheral banking** to non-EU infiltration.
November 5, 2017 BM confirmed
ICIJ: Paradise Papers Nov 2017 — 13.4M documents Appleby Bermuda + Queen Elizabeth II + Trump cabinet
On **November 5, 2017**, ICIJ published **'Paradise Papers'** — **13.4 million leaked documents** (1.4 TB), majority from **Appleby** (Bermuda offshore firm, founded 1898, one of the world's oldest offshore firms) + Asiaciti Trust + 19 corporate registries from offshore jurisdictions (including Bermuda, Cayman, BVI, Cook Islands, Malta, Marshall Islands, etc.). Processed by **380+ journalists in 96 media in 67 countries** over a year. **Personalities identified with tax avoidance/evasion in Paradise Papers**: **Queen Elizabeth II + Prince Charles** (Duchy of Lancaster $13M investments via offshore Mauritius in BrightHouse rent-to-own retailer + Threshers liquor chain); **multiple Trump cabinet members** (Wilbur Ross — Commerce Secretary, Putin allies connections via Navigator Holdings shipping; Gary Cohn — National Economic Council, former Goldman; Jared Kushner; Rex Tillerson — Secretary of State, former ExxonMobil); **Madonna, Bono (U2), Shakira** ($3M Malta offshore); **Apple Inc** ($248B offshore strategy via Jersey post-Double Irish, tax avoidance that cost US and EU $100B+ taxes 2007-2017); **Nike** (Bermuda subsidiary tax avoidance $3.86B); **Facebook**; **Glencore** (Glasenberg + Beny Steinmetz interactions); **Lewis Hamilton** ($25M tax avoidance Isle of Man); **multiple Russian oligarchs**. Apple, Nike, other corporates reformed structures post-Paradise. **Apple-EU State Aid case** (€13B Ireland back-taxes, ECJ ruling Sep 2024 finally upheld). Paradise followed Panama Papers (2016) and preceded Pandora Papers (2021).
March 19, 2023 CH confirmed
Switzerland: Credit Suisse collapse Mar 2023 — UBS takeover $3.25B + $17B AT1 wipeout + $100B liquidity
On **March 19, 2023**, the Swiss government orchestrated the **emergency UBS acquisition of Credit Suisse for only $3.25 billion** — a fraction of the bank's previous valuation. It is the **largest banking deal since the 2008 crisis**. Swiss authorities provided **$100 billion in liquidity support**. The deal wiped out **$17 billion in AT1 bonds** (subordinated debt), causing global bondholder fury and massive litigation. Credit Suisse, a 167-year-old Swiss bank (one of 30 global 'too big to fail'), collapsed after scandal accumulation: **(1) Spy Scandal 2019**: hired private detectives to surveil Iqbal Kahn (former wealth management head who left for UBS); CEO Tidjane Thiam forced to resign Mar 2020; FINMA ruled CS misled the regulator. **(2) Greensill Capital collapse Mar 2021**: $10B in supply chain finance funds frozen after Greensill (Lex Greensill) bankruptcy, FINMA found 'serious breach of supervisory obligations'. **(3) Archegos default Mar 2021**: $5.5B losses from Bill Hwang's family office collapse (concentrated bets on ViacomCBS and Discovery with total return swaps), combined $10B loss with other banks. FINMA documented 'fundamental management failures' and 100+ ignored internal warnings. **(4) Mozambique TUNA bonds 2021** (case aml-tuna-bonds-credit-suisse-2021 in this tracker): $475M US/UK fines. **(5) Bulgarian Cocaine Trafficking conviction 2022**: Swiss courts found CS guilty of failing to prevent Bulgarian cartel laundering. **(6) U.S. Tax Evasion Scandals (2014-2022)**: $2.6B in fines for helping wealthy clients evade US taxes. **(7) Suisse Secrets 2022**: leak of 18,000+ accounts with $100B in assets to OCCRP. **(8) Chiasso scandal 1977**: CS's first major scandal (undeclared Italians). **(9) Sani Abacha Nigeria 1990s**: $214M from Nigerian military dictator. **(10) Marcos Philippines 1980s**: Filipino dictator fortune. **(11) US Iran sanctions evasion 1995-2007**. **(12) 1MDB Malaysia connections 2017**. The multi-decade trajectory culminated with the March 2023 bank run after SVB and Signature Bank fell in the US. **In August 2023, UBS was fined $387M** by Fed/Swiss FINMA/BoE for Credit Suisse 'misconduct' in Archegos.
December 19, 2003 IT confirmed
Italy: Parmalat $20B collapse Dec 2003 — the 'Italian Enron' + Calisto Tanzi 18 years prison
On **December 19, 2003**, **Parmalat** (the Italian dairy giant, founded in 1961 by Calisto Tanzi in Collecchio, Emilia-Romagna, a multinational with ~36,000 employees in 30 countries) collapsed when it was revealed that **a supposed €3.95 billion account at Bank of America in the Cayman Islands DID NOT EXIST** — the document that 'certified' it was a crude forgery. The investigation revealed a total accounting hole of **€14.3 billion ($20 billion USD)**, hidden for ~15 years through a network of **~260 opaque entities in tax havens** (Cayman, Netherlands, Dutch Antilles, Luxembourg, Uruguay). It was **Europe's largest corporate fraud at the time**, called 'the Italian Enron'. **Calisto Tanzi** (founder and CEO for 40 years) and his family/executive circle had used Parmalat as a piggy bank to finance bankrupt parallel businesses (Parmatour tourism, Parma football) and personal enrichment. **Tanzi was sentenced to 18 years in prison in 2010** (Parma) + 10 additional years (Milan) for fraudulent bankruptcy + market manipulation + criminal association; he died under house arrest in 2022. Dozens of executives were convicted. Bank of America + Citigroup + Deutsche Bank + UBS faced massive lawsuits for their role in the structuring. **135,000 retail Italian investors lost their savings**. The case transformed European accounting regulation + catalyzed the tightening of Consob + audits. Italy is a FATF + MONEYVAL founding member.
August 1, 2014 MD confirmed
Moldova: Russian Laundromat $20B via Moldova (2010-2014) + Theft of the Century $1B in 2014
Between 2010 and 2014, the 'Russian Laundromat' (also called Global Laundromat) laundered approximately **$20 billion** from Russia through the Moldovan banking system, primarily Moldindconbank and 20+ other entities, to Western Europe. The scheme, exposed by OCCRP and Novaya Gazeta in 2014-2017, involved: British shell companies and other front firms signing 'fictitious loans', corrupt Moldovan tribunals issuing fake 'judicial' orders, coordinated transfers via correspondent banking to 5,140 accounts in 96 countries (including HSBC, Deutsche Bank, JP Morgan, RBS, Bank of America, Barclays, Citibank, Standard Chartered, Société Générale, ING). Additionally, in 2014, the 'Theft of the Century' (Furtul Secolului) involved the theft of $1 billion (12% of Moldovan GDP) from Banca de Economii, Banca Socială and Unibank — massive laundering caused the bankruptcy of the 3 banks. Ilan Shor (former CEO of Banca de Economii) was sentenced to 7.5 years in 2017 (then escaped to Israel). Vladimir Filat (former Prime Minister) was sentenced to 9 years for corruption in 2016. Through 2024, investigations continue in the UK, Switzerland, Lithuania, Latvia. The Banca Națională a Moldovei (BNM) and the Service for the Prevention and Combat of Money Laundering (SPCSB) reformed the AML framework post-scandals. Moldova is a MONEYVAL member and obtained EU candidate status in June 2022.
July 5, 1991 LU confirmed
BCCI: the 1991 global coordinated shutdown that originated the modern AML enforcement era
On July 5, 1991, regulators in 62 countries coordinated the shutdown of the Bank of Credit and Commerce International (BCCI), founded in Luxembourg in 1972 by Pakistani banker Agha Hassan Abedi with backing from Abu Dhabi. With 400 branches in 78 countries and assets over $20 billion, BCCI was the world's seventh-largest private bank. Investigations revealed massive money laundering: clients included Manuel Noriega (Panama), Saddam Hussein (Iraq), Ferdinand Marcos (Philippines), Samuel Doe (Nigeria), the Medellín cartel and the Abu Nidal organization. BCCI financed Pakistan's nuclear program and CIA operations in Afghanistan. The shutdown produced $9 billion in civil damages, $14.8 million in officer fines and 12 executives sentenced to prison. It is the foundational case of modern AML regulation; after BCCI came the Annunzio-Wylie Act (US 1992) and the strengthened role of the Basel Committee on cross-border supervision. Direct precursor of the Patriot Act (2001) and the creation of FinCEN.
September 15, 2005 KP confirmed
North Korea: foundational Banco Delta Asia case (2005) + FATF countermeasures + UN Resolutions
On September 15, 2005, FinCEN designated Banco Delta Asia (BDA, Macau) under Section 311 of the USA PATRIOT Act as a 'primary money laundering concern' for processing illicit funds for North Korea (DPRK). The action froze $25M in DPRK accounts in Macau and triggered the largest financial crisis for DPRK pre-Kim Jong-un. It is the **foundational case** of the secondary financial sanctions regime against DPRK. Since then, the Kim Jong-un regime (2011-) has developed a sophisticated financial sanctions evasion ecosystem: Lazarus Group (cyberwarfare unit of the Reconnaissance General Bureau RGB, responsible for the Bangladesh Bank attacks 2016 — $81M, Sony Pictures 2014, WannaCry 2017, $1.5+ billion in crypto-heists 2020-2025 including Ronin Network $620M, Harmony Bridge $100M, Atomic Wallet $35M, Coinex $54M). The **UN Security Council Resolutions 2270 (2016), 2321 (2016), 2371 (2017), 2375 (2017) and 2397 (2017)** are the broadest sanctions in UN history, restricting DPRK exports (coal, minerals, seafood, textiles), prohibiting joint ventures, ordering expulsion of DPRK workers abroad, and prohibiting new oil exports to DPRK beyond strict quotas. **DPRK has been continuously on FATF blacklist since 2008**. OFAC maintains 4 Executive Orders against DPRK (13551, 13687, 13722, 13810). UN Panel of Experts reports (annual 2010-2024, until Russia/China blocked its renewal in March 2024) extensively document evasion techniques: ghost ships, crypto transactions, covert joint ventures with China, commercial document forgery, DPRK IT workers hired as international freelancers (Treasury advisory 2022).
December 8, 2024 SY confirmed
Syria: Assad regime fall Dec 8 2024 + HTS transition → Trump 2.0 partial lifting May 2025
After 14 years of civil war (2011-2024), the Bashar al-Assad regime collapsed on **December 8, 2024** with the takeover of Damascus by Hay'at Tahrir al-Sham (HTS) led by Ahmed al-Sharaa (alias 'al-Jolani'). It is one of the most significant Middle East geopolitical events in decades. OFAC sanctions against Syria had been the world's most extensive (along with DPRK/Iran): Executive Order 13338 (2004) that sanctioned the Assad regime; **Caesar Syria Civilian Protection Act 2019** that extended secondary sanctions to foreign companies supporting the regime (Hezbollah, Iranian IRGC, Russian Wagner); massive designations of Syrian banks (Central Bank of Syria, Commercial Bank of Syria, Real Estate Bank, Industrial Bank). The Assad regime built the 'Captagon Empire' — Syria became the world's largest Captagon producer (synthetic amphetamine), with production estimated at $5.7 billion annually according to Center for Operational Analysis and Research COAR, distributed mainly to the Gulf (Saudi Arabia, UAE, Jordan). On May 6, 2025, OFAC issued General License 25 authorizing most transactions with the 'Syrian provisional government' led by HTS, partially lifting sanctions — the first significant opening in decades. The European Union and United Kingdom followed parallel actions in May-July 2025. The Syrian banking sector is being restructured under HTS. Syria is a MENAFATF member.
December 31, 2024 CN confirmed
China: PBoC + CIPS under scrutiny — SWIFT alternative + Iran/Russia sanctions evasion post-2022
The **People's Bank of China (PBoC, central bank)** and **China Banking and Insurance Regulatory Commission (CBIRC, replaced by NFRA National Financial Regulatory Administration in 2023)** supervise the Chinese banking sector under the framework of **China AML Law 2007** (amended in 2017 and 2023). China operates the **Cross-Border Interbank Payment System (CIPS)** since October 2015 as alternative to SWIFT for yuan/CNY transactions — currently processes **>5 trillion yuan (~$700 billion USD) annually with 1,500+ global participants**. CIPS has grown dramatically post-2022 as **main route for Western sanctions evasion against Russia** (Sberbank and VTB use CIPS post-SWIFT cut), Iran, DPRK, Venezuela. Specific Chinese AML risks: **massive capital flight** (~$1 trillion estimated annually via bitcoin mining, pre-2022 Macau casinos, global real estate, art trade), **Russia sanctions evasion** post-2022 ($30+ billion in transactions documented by OCCRP/CSIS 2024), **DPRK proliferation financing** via Chinese border banks (Dandong Hongxiang Industrial Development sanctioned by OFAC 2016, ZTE $1.2B 2017), **Iran sanctions evasion** via Bank of Kunlun (sanctioned 2012). **The 4 Chinese state mega-banks are the world's largest by assets**: Industrial and Commercial Bank of China (ICBC) $6,300B AUM #1 world, Agricultural Bank of China (ABC) $5,600B, Bank of China (BOC) $4,300B, China Construction Bank (CCB) $5,400B. **Hong Kong (SAR China since 1997)** functions as international financial hub with stricter AML regulation — HKMA + AMLO. China is a member of **APG (Asia/Pacific Group)** and co-founder of **EAG (Eurasian Group)**.
August 9, 2020 BY confirmed
Belarus: OFAC sanctions Lukashenko regime post-2020 electoral fraud + Russia Ukraine 2022 support
After the **fraudulent presidential elections of August 9, 2020** (Lukashenko declared winner with 80% of the vote against Sviatlana Tsikhanouskaya — massive demonstrations repressed with violence, 35,000+ detained, ~6 confirmed deaths), OFAC and Western allies have designated **the Belarusian banking and economic system almost completely**. Key actions: OFAC Executive Order 14038 (August 2021) that sanctioned the financial sector + 30+ individual designations (Alexander Lukashenko, his son Viktor Lukashenko, Andrey Tur, Aleksandr Volfovich); EU Council Decision 2020/1388 (October 2020); UK sanctions; Canada sanctions. The **Ryanair flight 4978 hijacking** (May 2021, Lukashenko forced landing in Minsk to arrest opposition journalist Roman Protasevich) precipitated new rounds. After the **Russian invasion of Ukraine (Feb 24, 2022)**, Belarus was used as a **launching platform for the attack on northern Ukraine** (Russian troops + ammunition + missiles from Belarusian territory), leading to the **expulsion of the Belarusian banking sector from SWIFT system** in March 2022 (similar to Russia). Belarusbank, Belagroprombank, Banco BPS-Sberbank Belarus, Belgazprombank — all designated SDN. The 'wagnerization' policy post-Prigozhin Mutiny (June 2023) moved part of Wagner Group to Belarus (40-50K personnel) after the August 23, 2023 plane accident that killed Yevgeny Prigozhin. The Belarusian banking sector is dominated by state-owned (Belarusbank 25%+ of system). Belarus is an EAG member.
March 16, 2008 US confirmed
US: Bear Stearns collapse Mar 2008 — JPM forced acquisition (first domino of the crisis)
On **March 16, 2008**, **Bear Stearns** — the fifth-largest US investment bank, founded in 1923, with 14,000 employees — was **forced to sell to JPMorgan Chase at $10 per share** (later revised to $10, originally just $2 — versus $172 it was worth a year earlier) in an emergency operation orchestrated by the New York Fed to prevent disorderly collapse and systemic contagion. The Fed provided a **$29 billion 'backstop'** guaranteeing the toxic assets. It was **the first 'domino' of the 2008 financial crisis**, occurring 6 months before Lehman. Bear Stearns's downfall accelerated when **two of its hedge funds (High-Grade Structured Credit Strategies + Enhanced Leverage)** collapsed in July 2007 with ~$1.6B in losses from subprime CDO exposure. The fund managers **Ralph Cioffi and Matthew Tannin** were criminally charged by EDNY with fraud — the first criminal trial of Wall Street figures from the 2008 crisis — but **both were ACQUITTED in 2009** (defenses successfully argued losses were due to unforeseeable market conditions, not intentional fraud). The result was a blow to the DOJ + foreshadowed the later pattern of mass non-prosecution in the crisis. CEO **James Cayne** (a professional bridge player, present at the national tournament during the crisis) resigned. CFO **Sam Molinaro + Alan Schwartz** were discredited. Bear Stearns is referenced as **the first ignored warning of 2008** + the foundational case of the 'no individual accountability' that defined crisis enforcement. Case connected to Lehman (Sept 2008) and AIG (Sept 2008).
September 18, 2015 DE confirmed
Volkswagen: Dieselgate 11M emissions-cheating vehicles — $33B+ global settlements (Sep 2015)
On **September 18, 2015**, the US Environmental Protection Agency (EPA) issued a **'Notice of Violation' against Volkswagen AG** revealing the **'Dieselgate scandal'** — the largest corporate fraud mechanic in automotive history: VW had **installed 'defeat devices' (cheating software)** in **~11 million diesel vehicles worldwide** (~600K in US) of Volkswagen, Audi, Porsche, SEAT, Skoda brands between 2009-2015. The software detected when the vehicle was being tested in lab (rolling rolls, no steering wheel movement) and activated low-emissions mode; in normal operation, vehicles emitted **NOx up to 40x over EPA limits**. Total global settlements: **$33+ billion USD accumulated 2015-2024**: $25B US (criminal + civil + buyback + state attorneys general + class actions, EPA $4.3B Jan 2017 DOJ DPA + $4.7B environmental remediation Volkswagen Group of America); $4.3B DOJ criminal fine; $3.5B Bosch settlement (software supplier, paid $327M US class action 2017); €25B+ Europe (Germany €1B Braunschweig 2018 settlement + €1.5B German criminal trial 2024+ + UK class actions); $14.7B US class action settlement October 2016 (largest class settlement US history pre-Sandy). **Martin Winterkorn** (VW CEO 2007-2015) forced resignation September 2015. **German criminal charges** since 2018 — trial began September 2024 in Braunschweig but suspended after Winterkorn's 78-year-old health complications. **Rupert Stadler** (Audi CEO 2010-2018) sentenced **21 months suspended + €1.1M fine in June 2023** (first VW Group executive convicted in Germany). **Oliver Schmidt** (VW exec, head of US Engineering Office) sentenced **7 years federal prison in US December 2017**. The case destroyed VW market value (~€30B lost first month, partial recovery). It is **referenced as the most expensive corporate case in history post-Enron**.
May 9, 2022 KR confirmed
South Korea: Terra/Luna $40B collapse May 2022 — Do Kwon extradited to US Dec 2024 + crypto winter
On **May 9, 2022**, the **Terra/Luna** ecosystem catastrophically collapsed in one of the most destructive events in cryptocurrency history: **~$40 billion USD in market value evaporated in days**. **TerraUSD (UST)** was an 'algorithmic stablecoin' supposedly pegged to the dollar through an arbitrage mechanism with its sister token **LUNA** — when UST lost the peg (depeg from $1.00 to $0.10), the mechanism entered a hyperinflationary 'death spiral' (LUNA went from $80 to $0.0001, supply from 350M to 6.5 TRILLION tokens). **Do Kwon** ('Kwon Do-hyung', South Korean co-founder of Terraform Labs with Daniel Shin) had promised **20% APY returns via Anchor Protocol** (unsustainable Ponzi-like yield). The collapse triggered the **2022 'crypto winter'**: direct contagion to **Three Arrows Capital (3AC, $10B insolvent hedge fund)**, **Celsius Network ($4.7B bankruptcy)**, **Voyager Digital (bankruptcy)**, **BlockFi**, and eventually **FTX (November 2022)**. **Do Kwon fled** — Interpol Red Notice September 2022, **arrested in Montenegro March 2023** (fake Costa Rican passport), Montenegro extradition battle between South Korea vs US, **finally extradited to US in December 2024**. SEC settlement with Terraform Labs **$4.47 billion in June 2024** (one of the largest crypto SEC settlements). Do Kwon faces charges in SDNY (fraud, conspiracy) + South Korea. **Daniel Shin** (co-founder) faces charges in Korea. The case is referenced as **the trigger of the 2022 crypto winter + paradigm of algorithmic stablecoin risk**. Bank of Korea + FSC (Financial Services Commission) + FSS supervise Korea. South Korea is an APG member.
April 11, 2024 VN confirmed
Vietnam: Truong My Lan death sentence (Apr 2024) — largest bank fraud case in Asian history $44B
On April 11, 2024, **Truong My Lan** (Chairwoman of Van Thinh Phat Group, Vietnamese real estate conglomerate) was **sentenced to death by lethal injection** by the Ho Chi Minh City People's Court in what is **the largest bank fraud case in Asian history and one of the largest in the world**: **$44 billion USD diverted** from Saigon Commercial Bank (SCB, Vietnam's 5th largest bank) over 11 years (2012-2022), equivalent to **6% of Vietnam's GDP** ($430 billion). The scheme: Truong My Lan, although legally she could not own >5% of SCB under Vietnamese banking law, controlled **91.5% of the bank via 27 shell companies and nominees** documented during trial. SCB made **2,500+ loans to companies connected to Lan** through false documentation, without real collateral, without recovery. **The death sentence was commuted to life imprisonment on September 4, 2024** after Lan accepted to pay partial restitution and 8 additional executions (subordinates) were confirmed without reduction. **The case triggered the largest bank run in Vietnamese history** in October 2022 (when the investigation became public) — SCB needed **$24 billion of emergency liquidity from SBV** ($24B = 8% of GDP) to avoid collapse. The case is **inevitable comparison with Bernie Madoff $65B Ponzi (2008)** and FTX $8B (2022). 86+ officials and bankers were prosecuted. Vietnam's Anti-Corruption Steering Committee (chaired by Secretary General Nguyễn Phú Trọng† until Jul 2024 + To Lam since Aug 2024) led the 'Blazing Furnace' anti-corruption campaign of which Lan is the largest case. The Vietnamese banking sector is supervised by the State Bank of Vietnam (SBV).
October 25, 2003 RU confirmed
Russia: Yukos-Khodorkovsky case (2003) — Putin kleptocracy foundational + $50B arbitral award
On **October 25, 2003**, **Mikhail Khodorkovsky**, then Russia's richest man (Yukos Oil Company, Russia's 2nd largest oil company post-1995 privatization) and open Putin critic (co-founder of Open Russia Foundation, opposition financier), was arrested by Russian Federation Tax Service in Novosibirsk during his private plane's refueling. It is the **foundational event of Putin's consolidated kleptocracy** and end of the 'independent oligarch' era post-Soviet. Khodorkovsky and his partner **Platon Lebedev** were accused of massive tax evasion and fraud, sentenced to 8 years prison each in May 2005. Yukos faced **$28 billion in retroactive tax claims** (qualified as 'arbitrary' by ECHR), was forced into bankruptcy in August 2006, and its main assets (Yuganskneftegaz) were acquired in **secret December 2004 auction** by shell company Baikal Finance Group for $9.35 billion (subsequently revealed controlled by Rosneft, now state). In 2010, Khodorkovsky was sentenced to 8 additional years for fraud/embezzlement (sentence extended to 14 years total). Released on December 20, 2013 by Putin amnesty pre-Sochi 2014 Olympics, lives in London/Switzerland since then. **On July 18, 2014, the Permanent Court of Arbitration (PCA) in The Hague** sentenced Russia to pay **$50 billion in damages** to Yukos majority shareholders (Group Menatep Limited) — one of the **largest arbitrations in history**. Russia refused to pay; the case continues in international courts. The **ECHR** also condemned Russia in September 2011 ('Khodorkovsky v Russia' case) for violation of Article 5 (liberty). The Russian banking system (CBR Centrobank, Sberbank, VTB Bank) fully cooperated in the forced nationalization. The case set precedent for the subsequent wave of oligarchs (Boris Berezovsky † 2013, Roman Abramovich post-2022 sanctions, Oleg Deripaska, etc.).
December 11, 2008 US confirmed
US: Bernie Madoff sentenced 150 years prison June 2009 — Largest Ponzi in history ($65B)
On **December 11, 2008**, **Bernard 'Bernie' Madoff** (former NASDAQ Stock Market Chairman 1990-1993, founder of Bernard L. Madoff Investment Securities LLC in 1960) was **arrested by the FBI in Manhattan** after confessing to his sons Mark and Andrew (who reported him) that his firm was **'one big lie'**. The scheme, operational from at least the 1970s (estimated 1991+ according to trustee), was the **largest Ponzi scheme in human history**: **$65 billion USD** in claims (notional, what investors thought they had), of which **$19 billion were real lost funds** (investors contributed this amount; the rest were fictitious profits). The scheme affected **38,000+ victims** including: celebrities (Steven Spielberg, Kevin Bacon, Larry King, Sandy Koufax), foundations (Elie Wiesel Foundation, Mort Zuckerman foundations), European banks (Banco Santander €2.3B, BNP Paribas €350M, Royal Bank of Scotland £400M, Nomura), hedge funds (Fairfield Greenwich Group $7.5B feeder, Tremont Capital, Kingate). On **June 15, 2009**, Madoff was **sentenced to 150 years federal prison** (maximum possible sentence under US federal law) by Judge Denny Chin. Madoff died in Butner federal prison on **April 14, 2021** at age 82. **Trustee Irving Picard** (Baker & Hostetler LLP) has recovered **$19+ billion** via massive litigation against clawback of profit transferred to other investors (third parties, beneficiaries, feeders). **JPMorgan Chase paid $2.6 billion in January 2014** in settlement with DOJ + SEC + OCC for being Madoff's main bank (account 703) for 22 years without reporting SARs (Suspicious Activity Reports) — a fundamental case that showed the limitations of pre-2014 AML supervision. The case drove the **Dodd-Frank Wall Street Reform Act (2010)**, the **SEC and CFTC Whistleblower Programs**, and the creation of the **SEC's Office of the Whistleblower (2010)**.
February 26, 2011 LY confirmed
Libya: Gaddafi fall 2011 + $67B LIA frozen + 2 parallel governments GNU vs HoR (Tripoli vs Bayda)
On February 26, 2011, the UN Security Council approved Resolution 1970 (Chapter VII) which imposed sanctions against the Muammar Gaddafi regime after the start of the Libyan civil war. On March 17, 2011, Resolution 1973 authorized the 'no-fly zone' that led to NATO intervention (Operation Unified Protector). Gaddafi was captured and executed on October 20, 2011. Sanctions froze **$67 billion in Libyan Investment Authority (LIA) assets** deposited internationally (Belgium $16 billion, UK $12 billion, US $34 billion, Italy, Switzerland, etc.). The scheme was massively looted during the Gaddafi regime and subsequent civil war. Libya has lived in continuous civil war since 2014 with two parallel governments: **Government of National Unity (GNU)** led by Abdul Hamid Dbeibeh in Tripoli (west), recognized by the UN, and **House of Representatives (HoR)** led by Aguila Saleh in Tobruk + General Khalifa Haftar of Libyan National Army (LNA) in Bayda (east). There are **two Central Bank of Libya** in dispute (institutional chaos). Libyan oil (revenues ~$30 billion/year when producing normally) is the main dispute: the National Oil Corporation (NOC) is divided. Specific Libyan AML risks: massive migrant smuggling (~600,000 migrants annually cross Libya to Italy, $2 billion criminal industry), arms trafficking (Libya is the largest unregulated arms market in the Mediterranean since 2011), Wagner/Africa Corps active in Cyrenaica, ISIS-Libya cells, gold and antiquities trafficking. Libya is a MENAFATF member.
September 3, 2024 LB confirmed
Lebanon: BDL collapse 2019+ — Riad Salameh 30 years governor, arrested Sep 2024 + Bartlett v 12 banks
Lebanon experienced the most devastating economic collapse in the world since 1850 according to the World Bank (Oct 2021): the Lebanese banking system completely collapsed between Oct 2019 (social revolution after WhatsApp rates) and the present, with hyperinflation (+1,000% accumulated 2019-2024), 98% loss of Lebanese lira (LBP) value, sovereign default (March 2020 — first sovereign default in Lebanese history), massive restrictions on banking withdrawals ('Haircut' informal 80%+, depositors have lost ~$70 billion in total assets). The Banque du Liban (BDL) Governor Riad Salameh (in office 1993-2023, 30 years — one of the world's longest-serving governors), faces multiple criminal investigations in Lebanon, France, Germany, Switzerland and US for money laundering and illicit enrichment. France issued Interpol Red Notice May 2023 + French charges; Germany froze €120M; Switzerland froze $400M. Salameh was arrested in Beirut September 2024. Bartlett v. 12 Lebanese Banks case: class action in US Federal Court (SDNY since 2020), American victims of Hezbollah terrorist attacks in Israel sued 12 Lebanese banks for processing Hezbollah financial flow payments ($700M-1 billion/year). Bank of Beirut fined £2.1M by UK FCA March 2015. Jammal Trust Bank designated SDN by OFAC August 2019 + closed by BDL — first Lebanese bank SDN for Hezbollah links.
October 9, 2008 IS confirmed
Iceland: 2008 banking collapse ($85B, 10x GDP) — only country that jailed bankers + Panama Papers PM 2016
On **October 9, 2008**, Iceland (370,000 inhabitants, North Atlantic island, capital Reykjavik) suffered **one of the most dramatic banking collapses in history relative to the size of its economy**: its 3 largest banks — **Kaupthing Bank, Landsbanki and Glitnir** — collapsed simultaneously in one week, with combined assets of **~$85 billion USD = ~10x Icelandic GDP ($13B)** — the largest relative banking collapse in history. The 3 banks had grown explosively 2003-2008 (to 10x GDP) through aggressive foreign expansion: **Landsbanki 'Icesave' online savings accounts** (UK + Netherlands, 400,000 depositors), **Kaupthing 'Kaupthing Edge'** (10 countries). When they collapsed, the **UK government invoked terrorism legislation (Anti-Terrorism, Crime and Security Act 2001)** to freeze Landsbanki UK assets — Iceland-UK 'Icesave dispute' (resolved via EFTA Court 2013). Iceland became **the only country in the world to jail senior bankers after the 2008 global financial crisis**: the **Special Prosecutor (Ólafur Þór Hauksson)** achieved **convictions of 26+ bankers 2013-2016**, including: **Hreiðar Már Sigurðsson** (Kaupthing CEO, 5.5 years), **Sigurður Einarsson** (Kaupthing Chairman, 5 years), **Ólafur Ólafsson** (Kaupthing major shareholder, 4.5 years), **Lárus Welding** (Glitnir CEO, multiple convictions). Iceland **let the banks fail (no bailout) + imposed capital controls + devalued the króna (ISK) + IMF $2.1B program** — recovery considered an alternative model to the bailout approach. **Panama Papers (2016) connection**: Prime Minister **Sigmundur Davíð Gunnlaugsson** (Progressive Party, PM 2013-2016) was **forced to resign on April 5, 2016** — first world leader to fall due to Panama Papers — after revelations he + wife had an offshore shell company (Wintris Inc, BVI) with claims against the 3 collapsed banks (massive conflict of interest). The Icelandic banking sector post-2008 is concentrated in: Landsbankinn (state-owned post-nationalization), Íslandsbanki, Arion Bank. Iceland is a FATF member (was briefly grey-listed 2019-2020).
January 28, 2019 VE confirmed
Venezuela: OFAC sanctions PDVSA in Jan 2019 — 500+ Maduro regime designations 2014-2025
On January 28, 2019, OFAC designated Petróleos de Venezuela S.A. (PDVSA) under Executive Order 13850 — one of the broadest designations in OFAC history against a state oil company. The action followed initial sanctions against the Maduro regime since March 2015 (OFAC: Executive Order 13692 against 7 individuals), increased with financial sanctions in August 2017 (Executive Order 13808 against Venezuelan debt) and secondary sanctions against the oil sector in 2019. Accompanied by parallel sanctions from the EU (since November 2017), UK, Canada, Switzerland and 50+ countries. **More than 500 individuals of the Maduro regime were designated SDN between 2014-2025**, including: Nicolás Maduro (President), Diosdado Cabello (former PSUV Vice President), Vladimir Padrino López (Defense Minister), Tarek El Aissami (Vice President, justice fugitive with $10M State Dept reward), Cilia Flores (First Lady). Allegations include: massive PDVSA corruption with estimated diversion of $100-300 billion (Center for Public Integrity 2010-2020), drug trafficking (Cartel of the Suns), Hezbollah connections (Tarek El Aissami especially), human rights violations (extrajudicial killings by FAES, political prisoners), constitutional order violations (fraudulent National Constituent Assembly 2017, fraudulent presidential elections 2018, 2024). The Venezuelan banking sector (BCV, BANDES, BNC Banco Nacional de Crédito, Bancaribe, Mercantil) is supervised by the Superintendency of Banking Sector Institutions (SUDEBAN). Chronic hyperinflation (5,000,000% in 2018-2019) has led to informal dollarization of 70%+ of transactions. Venezuela is a GAFILAT member.
November 4, 2017 SA confirmed
Saudi Arabia: Crown Prince MBS Ritz-Carlton crackdown Nov 2017 — $100B+ recovered + 200+ princes/officials detained
On **November 4, 2017**, Saudi Crown Prince **Mohammed bin Salman (MBS)** ordered the largest anti-corruption purge of the Saudi Kingdom in modern history: **>200 princes, ministers, businessmen and military officials were detained at the Ritz-Carlton Hotel Riyadh** (luxury hotel converted into temporary detention center). Detainees included: **Prince Alwaleed bin Talal** (KHC, Kingdom Holding Company magnate, major Twitter shareholder pre-Musk, Citigroup, Apple — one of world's richest men, $30B Forbes 2017), **Bakr bin Laden** (Saudi Binladin Group, Saudi's largest construction company), **Walid al-Ibrahim** (MBC media), **Saleh Kamel** (Dallah Albaraka holding), **Prince Mutaib bin Abdullah** (former Minister of National Guard, son of King Abdullah), multiple ministers. The official justification: **'investigation of corruption'**. Detention lasted **3-15 months for most**, with reported conditions of release: **transferring assets to PIF (Public Investment Fund — Saudi sovereign wealth fund)** and signing non-disclosure agreements. **The government officially recovered $100+ billion USD in assets** (independent Reuters/FT estimates: $100-200B). Sources said **Prince Alwaleed** paid **$1+ billion** for release; **Saleh Kamel** paid undisclosed amounts. The move was part of **MBS power consolidation** post-his appointment as Crown Prince in June 2017 (removing Mohammed bin Nayef MBN). MBS subsequently launched **Vision 2030** (economic diversification), **NEOM mega-project** ($500B futuristic city), social reforms (women driving 2018, cinemas 2018, entertainment), but also the **assassination of journalist Jamal Khashoggi at Saudi consulate in Istanbul on October 2, 2018** — US Senate Intel Committee case determined MBS direct responsibility (Khashoggi Maryland pre-resident, Washington Post columnist). Saudi banking is mainly governed by SAMA. Sectors: Saudi National Bank (NCB-Samba merger 2021, largest), Al Rajhi Bank, Riyad Bank, Saudi British Bank (SABB-Alawwal merger). Saudi Aramco IPO December 2019 valued the company at $1.7T (largest IPO in history). Saudi is a MENAFATF founding member.
December 31, 2024 IT confirmed
Italy: organized crime €100B+ annual laundering — Messina Denaro arrested Jan 2023 (30 years fugitive)
On **January 16, 2023**, **Matteo Messina Denaro** ('U Siccu, 'the Skinny One') — the last major boss of **Sicilian Cosa Nostra** and **fugitive since 1993 (30 years on the run, one of the longest in mafia history)** — was **arrested by Carabinieri ROS at La Maddalena private clinic in Palermo** where he was receiving treatment for colon cancer under alias 'Andrea Bonafede'. Messina Denaro was **sentenced in absentia in 2002 to life imprisonment** for his role in: 1992 bomb attacks (Capaci murder of Giovanni Falcone anti-mafia judge + 5 escorts; Via D'Amelio murder of Paolo Borsellino + 5 escorts — the 2 most devastating anti-judicial attacks in post-WWII Italy); 1993 Milano-Firenze-Roma bombings; 1996 murder of child **Giuseppe Di Matteo** (11 years old, kidnapped for 779 days + strangled + dissolved in acid in revenge against his cooperator father) — Cosa Nostra's most symbolic case of brutality. **Messina Denaro died in custody on September 25, 2023** in L'Aquila hospital. Italian organized crime continues to be **one of the most significant global AML threats** with estimates (DIA + Bank of Italy + Eurojust): **€100+ billion annually laundered** mainly by: **(1) Calabrian 'Ndrangheta** — currently the most powerful and rich Italian organization, **controlling ~80% of cocaine entering Europe** via Calabria ports (Gioia Tauro, etc), with ramifications in Germany, Netherlands, Switzerland, Canada, Australia, US; **(2) Sicilian Cosa Nostra** — weakened post-Riina (Salvatore 'Toto Riina' arrested 1993, died 2017) + Provenzano (Bernardo 'U Tratturi' arrested 2006, died 2016) + Messina Denaro; **(3) Neapolitan Camorra** — Casalesi clan (Walter Schiavone, Casal di Principe), Stolder/Mazzarella; **(4) Apulian Sacra Corona Unita** — operates Albania-Italy drug corridor. Banca d'Italia + UIF + DIA + National Anti-Mafia Prosecutor's Office (DNA) supervise AML. Massive asset seizures (ANBSC Agency manages €40B+ in seized mafia assets). Italy is a founding member of FATF (G-7) + MONEYVAL.
December 31, 2024 IQ confirmed
Iraq: OFAC sanctions Al-Huda Bank (Jan 2024) + fight against Iranian sanctions evasion via Iraqi banking
Iraq, after the 2003 US invasion that overthrew Saddam Hussein, has faced **one of the world's largest corruption epidemics**: UN, IMF and Transparency International estimate accumulated losses at $100-150 billion (variable). The Central Bank of Iraq (CBI) and the AML Office (Maktab Mukafaha Ghaslat al-Amwal) supervise the banking sector under the framework of the Anti-Money Laundering and Combating Financing of Terrorism Law 39/2015. Iraqi banks have historically been a vector for **Iran sanctions evasion**: many private Iraqi banks are controlled by Iranian interests or Hashd al-Shaabi Militias (Popular Mobilization Forces, designated SDGT by OFAC). **On January 30, 2024, OFAC designated Al-Huda Bank** (private Iraqi bank in Baghdad) under Executive Order 13224 for facilitating US dollar transfers to Iranian IRGC Quds Force and Hezbollah. The Federal Reserve NY maintains a weekly **'electronic auction'** to distribute US dollars to CBI; the typical ratio was $250M/day, but after OFAC designations, it fell dramatically. In October 2023, OFAC designated Iraq Wallet for crypto use for Iran sanctions evasion. The ISIS legacy connection: although ISIS was militarily defeated in 2017-2019, its post-defeat financing is done via 'sleeper cells' in Iraq and Syria with hawala networks. Iraq is a MENAFATF member.
February 21, 2020 IR confirmed
Iran: FATF adds to blacklist in Feb 2020 — broadest sanctions against any country alongside DPRK
On February 21, 2020, FATF added Iran to its blacklist ('High-Risk Jurisdictions subject to a Call for Action') after failing to implement its FATF action plan (did not ratify the Palermo Convention against Transnational Organized Crime or the Terrorist Financing Convention). Iran joined North Korea as the second country on the blacklist. These are **the broadest financial sanctions ever imposed on a country by a Western coalition**: Executive Order 13599 (OFAC, February 2012) froze the Central Bank of Iran (CBI) assets and all Iranian government entities; OFAC maintains 30+ Executive Orders on Iran accumulated since 1995. Under Trump 1.0 (2017-2021), sanctions were reinforced with the JCPOA exit (Joint Comprehensive Plan of Action, May 2018) and the 'maximum pressure campaign' that included: re-imposition of all secondary sanctions, designation of the IRGC (Islamic Revolutionary Guard Corps) as a Foreign Terrorist Organization (FTO) in April 2019 (historic case — first time a state military is designated FTO). Under Biden (2021-2025): maintenance without significant relief. Under Trump 2.0 (2025+): re-tightening. Key banking designations: Central Bank of Iran (CBI), Bank Melli (largest Iranian bank), Bank Sepah (military bank), Bank Saderat, Bank Mellat, Bank Pasargad. Specific Iranian AML risks: Hezbollah financing ($700M-1 billion/year estimated according to Reuters), Hamas, Houthis, Assad, attacks against Israel (October 7 2023 + 2024 retaliations), Quds Force operations globally.
February 8, 2015 CH confirmed
ICIJ: SwissLeaks Feb 2015 — HSBC Switzerland 100K accounts $122B assets + Hervé Falciani whistleblower
On **February 8, 2015**, ICIJ published **'SwissLeaks'** ('Falciani List' or 'HSBC Files') — massive exposure of **HSBC Private Bank (Suisse) SA** in Geneva, based on data stolen by **Hervé Falciani** (Italian-French, former HSBC IT employee 2006-2008). Falciani stole **data of ~100,000 international accounts** (holders from 200 countries) with **$122+ billion USD in assets**. The data was initially sold to Lebanon 2008 (rejected), then delivered to French authorities (Christine Lagarde — then French Finance Minister, the 'Lagarde List' leaked to Greece, Italy, Spain, Argentina and other countries from 2010). In 2015, Le Monde + ICIJ + 154 journalists from 45 countries published it simultaneously. **Documented details**: HSBC Suisse actively helped clients evade taxes, laundering money from drug traffickers, dictators, arms traffickers, tax evaders. Clients included: Mohamed VI of Morocco, Joaquín 'El Chapo' Guzmán, multiple Bin Laden family members (including Mohammed Salem Mohammed bin Laden — Osama's brother), Hosni Mubarak, Bashar al-Assad family, multiple FIFA-related (including Joao Havelange former FIFA president), drug traffickers documented by DEA. **HSBC Holdings plc was fined**: **UK FCA £67M in 2017 + UK HMRC £135M** + **Swiss tax authorities CHF 40M settlement 2015** + **French financial parquet €300M settlement January 2018** + **US DOJ $1.9B settlement December 2012 (separate case aml-hsbc-mexico-2012 covered, Mexico cartels)**. **Hervé Falciani was arrested in Spain 2018 in Madrid + 5 years suspended by Swiss Federal Court** in absentia 2015 — lives in exile in Spain, protected by Spain post-2017 after Spain rejected extradition to Switzerland. Total global HSBC settlements **2012-2024: $5+ billion combined** (multiple parallel case).
June 28, 2024 MC confirmed
Monaco: FATF grey list Jun 2024 — Russian oligarchs pre-2022 + €150B AUM wealth management
Monaco was included in the FATF grey list on June 28, 2024 — surprise for the principality due to its reputation for compliance. Inclusion motivated by: deficient supervisory and enforcement actions, beneficial ownership transparency deficient, inconsistent AML/CFT supervision, late suspicious transaction reporting. CCAF + SICCFIN + AMSF supervise the sector under Law 1.362 (2009, amended 2018, 2022, 2024). Monaco (38K, 2.02 km² — world's second smallest country, ~7,000 millionaires = highest millionaire concentration worldwide), operates the euro via France agreement. Prince Albert II (since 2005). Monegasque banking sector operates €150B+ AUM mainly wealth management. Risks: Russian oligarchs pre-2022 (Potanin, Usmanov yachts in Port Hercule), real estate $65K/m² average — one of world's most expensive. Casino de Monte-Carlo (SBM since 1863). MONEYVAL member.
October 16, 2001 US confirmed
Enron+WorldCom: $181B combined corporate fraud 2001-2002 — birth of Sarbanes-Oxley Act 2002
The **Enron Corporation and WorldCom Inc** cases represent **the two largest corporate fraud cases in US history pre-Madoff**, with combined losses of **$181+ billion USD** and direct catalysts of the **Sarbanes-Oxley Act of 2002 (Pub.L. 107–204)** — the largest US securities law reform since 1933-1934 Acts. **(1) Enron Corporation** (Houston, Texas, energy/commodities trading), peak market cap $77B in August 2000, was revealed as massive accounting fraud scheme via **'mark-to-market accounting' manipulation + Special Purpose Entities (SPEs)** that hid debt — **'Raptor' SPEs** designed by **Andrew Fastow** (CFO Enron 1998-2001) with Whitewing, JEDI Investments, LJM/LJM2 Partnership Funds (Cayman Islands). The whistleblower **Sherron Watkins** (Enron VP) wrote memo August 2001 to CEO Kenneth Lay warning of problems. **October 16, 2001**: Enron announced $1.2B equity write-down (initial revelation). **December 2, 2001**: Enron declared Chapter 11 bankruptcy — then the largest in US history ($63.4B in assets). **Convictions**: **Kenneth Lay** (founder + CEO) found guilty May 2006 → **died July 5, 2006** before sentencing (heart attack); **Jeffrey Skilling** (CEO 2001) sentenced **24 years + 4 months October 2006**, reduced to **14 years in 2013** for cooperation, released **February 2019**; **Andrew Fastow** (CFO) plea bargain January 2004, **6 years cooperator**, released 2011. **Arthur Andersen LLP** (Enron auditor, one of Big 5 then) destroyed **2 tons of Enron documents after subpoena** → **obstruction of justice conviction June 2002** → **complete firm dissolution** (85,000 employees lost jobs). The conviction was **annulled by SCOTUS in 2005 (Arthur Andersen LLP v. US)** unanimously, but the firm was already destroyed. **(2) WorldCom Inc** (Clinton, Mississippi, telecommunications), revealed June 2002 massive accounting fraud: $107 billion in fictitious assets + capitalized operating costs $3.8B revenue substitution. **Bernard Ebbers** (CEO 1985-2002, founder) sentenced **25 years in July 2005** — the longest corporate fraud sentence pre-Madoff. **Died on conditional release February 2020** post-release December 2019 (cancer). WorldCom Chapter 11 July 2002 ($107B assets, second largest pre-Lehman 2008). The **Sarbanes-Oxley Act of 2002 (SOX)** was signed by Bush July 30, 2002 — includes Section 302 (CEO/CFO certify accuracy), Section 404 (internal controls), Section 906 (criminal penalties), establishment of PCAOB (Public Company Accounting Oversight Board), prohibition of auditor-consulting conflicts. SOX cost companies $25+ billion initial compliance.
September 16, 2008 US confirmed
US: AIG $182B bailout Sep 2008 — largest corporate bailout in history (Joseph Cassano's CDS)
On **September 16, 2008**, the day after Lehman's collapse, the US federal government announced an **$85 billion emergency bailout of American International Group (AIG)** — the world's largest insurer — which eventually grew to **$182 billion USD, becoming the largest single corporate bailout in world financial history**. AIG collapsed due to the **AIG Financial Products (AIG-FP)** unit, led by **Joseph Cassano** from London, which had sold **~$2.7 trillion in credit default swaps (CDS)** on subprime mortgage CDOs without adequate reserves — betting that the CDOs would never default. When CDOs began to fail massively in 2007-2008, AIG-FP faced **~$43 billion in margin calls** that the parent couldn't cover. The government bailout (via NY Fed + Treasury) took **79.9% of AIG's shares**, controversial because the bailout payments flowed 100% to the CDS counterparties — **Goldman Sachs ($12.9B), Société Générale ($11.9B), Deutsche Bank ($11.8B), Merrill Lynch ($6.8B)** — a 'backdoor bailout' of the big banks via AIG. Notably: **Cassano was NEVER prosecuted** (DOJ + SEC closed investigations in 2010 without charges, citing insufficient evidence of intentional fraud). The government EVENTUALLY recovered all bailout funds + earned ~$22.7B in profits when it sold AIG shares (2012-2013). CEO **Edward Liddy** (appointed during the rescue) testified for a symbolic $1 salary. AIG continues operating. The case is referenced as **the other pillar of 2008's 'too big to fail/jail'** + an example of OTC derivatives systemic risk + catalyst for the Dodd-Frank Act 2010.
March 10, 2023 US confirmed
US: SVB + Signature + Silvergate collapse Mar 2023 — $330B assets + Systemic Risk Exception
Between **March 8 and 12, 2023**, three US banks collapsed in what's known as the '2023 regional banking crisis': **Silvergate Bank** (Mar 8, voluntary wind-down, $11B assets), **Silicon Valley Bank** (Mar 10, FDIC receivership, $209B assets — second largest bank failure in US history after Washington Mutual 2008), **Signature Bank** (Mar 12, FDIC takeover, $110B assets). On March 12, Treasury Department, FDIC and Federal Reserve invoked the **Systemic Risk Exception** to guarantee all deposits (including uninsured, normal FDIC cap = $250K). **First Republic Bank** collapsed on May 1, 2023 ($229B assets) and was acquired by JPMorgan Chase. Total losses for FDIC Deposit Insurance Fund were $20-30B. Causes: (1) **Interest rate mismanagement**: SVB had $90B in long-duration treasuries that lost value from Fed 2022-2023 rate hikes, sold with $1.8B loss on Mar 9. (2) **Customer concentration**: SVB was the bank of 50%+ of VC-funded US startups, creating massive concentration. (3) **Twitter/X bank run**: in less than 48h, $42B deposits withdrawn via mobile apps (vs 1-2 days in pre-digital crises). (4) **Crypto exposure**: Silvergate and Signature had massive exposure to crypto sector (Genesis Trading, Gemini Earn, etc.). The case is not specifically AML, but impacted massively: collapsed Credit Suisse confidence (case aml-credit-suisse-collapse-2023), led to introduction of Basel Endgame in US, total revision of Fed bank supervision (Vice Chair Barr review Jul 2023). USDC (Circle) had $3.3 billion reserves at SVB, causing temporary depegging on Mar 11, 2023.
December 31, 2024 GR confirmed
Greece: BoG tightens AML — Lagarde List 2,000 evaders + Siemens Hellas Olympics + €289B debt crisis bailouts
The Bank of Greece (BoG) and the Greek FIU supervise the Greek banking sector under the framework of AML Law 4557/2018 (transposition of EU's 4th+5th AMLD). Greece (10.4M inhabitants, capital Athens) lived through the Eurozone's largest sovereign debt crisis (2010-2018): after revealing real fiscal deficit (12.7% GDP vs 6% reported in 2009), Greece received **3 Troika bailouts (EU+ECB+IMF) totaling €289 billion ($310B)** — the largest sovereign rescue in history — in exchange for massive austerity, privatizations, and fiscal reform. The most prominent AML/corruption cases: **(1) Lagarde List** — in 2010, Christine Lagarde (then French Finance Minister) gave Greece a list of **~2,000 Greek citizens with HSBC Switzerland accounts (SwissLeaks data, case aml-swissleaks-hsbc-2015)** suspected of tax evasion — the list was **scandalously ignored/lost by successive Greek governments** (PASOK + New Democracy), causing political scandal; **Giorgos Papakonstantinou** (former Finance Minister) convicted 2015 for tampering with the list (removed relatives' names); **(2) Siemens Hellas** — Siemens paid massive bribes to Greek politicians for Athens 2004 Olympics + OTE telecom contracts (case aml-siemens-fcpa-2008 connection) — €70M+ bribes, **Michalis Christoforakos** (Siemens Hellas CEO) fled to Germany; **(3) Novartis Greece scandal** — bribes to doctors + politicians; **(4) Cum-Ex / Cum-Cum** German dividend tax fraud touched Greek banks. The crisis caused **Grexit fears** (2012, 2015 — Tsipras/SYRIZA referendum July 2015 'OXI' vs austerity, then accepted bailout). The Greek banking sector consolidated massively: 4 systemic banks post-crisis (National Bank of Greece NBG, Piraeus Bank, Alpha Bank, Eurobank) after HFSF recapitalizations. Greece is a FATF + MONEYVAL founding member.
February 24, 2022 RU confirmed
Russia: post-Ukraine invasion Feb 2022 — $300B Central Bank reserves frozen + SWIFT cuts + 1000+ designations
On **February 24, 2022**, Russia launched the full-scale invasion of Ukraine, triggering the most extensive sanctions package in modern economic history. Combined measures of US + EU + UK + Switzerland + Japan + Australia + Canada + Singapore + South Korea + 38+ countries have included: **(1) Russian Central Bank (CBR) reserves freeze**: **~$300+ billion USD of 49% of Russian international reserves** (out of $639.2B total pre-Feb 2022) frozen in Western jurisdictions — the largest action against sovereign central bank reserves in history. **(2) SWIFT cuts**: Sberbank, VTB Bank, Gazprombank, Otkritie Bank, Promsvyazbank, Sovcombank, VEB, Rosselkhozbank, Novikombank, Russian Central Bank and other Russian banks cut from SWIFT messaging system (March 2022) — first cuts to Russian banks. **(3) Oligarch designations**: 1,000+ Russian individuals and entities designated SDN/EU sanctions: Roman Abramovich, Alisher Usmanov, Mikhail Fridman, Petr Aven, German Khan, Andrey Kostin (VTB CEO), Igor Sechin (Rosneft), Alexei Mordashov (Severstal), Vladimir Potanin (Norilsk Nickel), Suleyman Kerimov, Oleg Deripaska, Gennady Timchenko (Volga Group), Yuri Kovalchuk (Bank Rossiya), Putin family/allies. **(4) Sector sanctions**: oil price cap ($60/barrel EU + G7 since December 2022, reduced to $47 in June 2025), full ban on Russian oil/gas/coal (EU Jan 2024 implementation), tech exports restricted, financial services cut, luxury goods ban. **(5) Yacht seizures**: $2-5B in oligarchs' yachts seized (Eclipse, My Solaris Abramovich; Amadea Kerimov; Dilbar Usmanov), 200+ yachts tracked by C4ADS + DEFENDS task forces. **(6) US Repo Task Force / Russia and Belarus Sanctions Office (Treasury)**. **(7) Frozen Russian reserves**: G7 declared June 2024 that **$50B annual interest generated by frozen reserves** would be used for Ukraine reconstruction, ERA Loan agreement — this generated extensive legal controversy. Russia has responded with counter-sanctions, partial dedollarization (BRICS+ alternative SWIFT 'CIPS' China + 'SPFS' Russia), tradeflows with China (yuan settlements rose to 70% bilateral 2024), India, Turkey, UAE. The **ruble** collapsed to 130 RUB/USD March 2022, recovered to 60 RUB/USD Jun 2022 due to draconian capital controls, fluctuated 90-100 RUB/USD 2025-2026. **Wagner Group** (PMC) designated FTO + Yevgeny Prigozhin killed in plane crash Aug 23, 2023 post-mutiny June 2023.
September 15, 2008 US confirmed
US: Lehman Brothers bankruptcy Sep 2008 — $691B + Repo 105 + the catalyst of the global crisis
On **September 15, 2008**, **Lehman Brothers Holdings** — the fourth-largest US investment bank, founded in 1850, with 25,000 employees and **$691 billion USD in assets** — declared the **largest bankruptcy in world financial history**, catalyzing the most acute moment of the 2008 global financial crisis. The **bankruptcy examiner, Anton Valukas**, published a 2,200-page report in 2010 that revealed the **'Repo 105'** scheme: Lehman had used a deceptive accounting technique (classifying short-term repos as sales rather than financing) to **move up to $50 billion off-balance sheet** quarterly, hiding its true leverage (~30:1 actual vs ~12:1 reported) from investors and regulators. CEO **Richard 'Dick' Fuld** (nicknamed 'the Gorilla' for his aggressiveness) and other senior executives knew of and approved Repo 105. Notably: **NO Lehman executive was criminally prosecuted** — the case is referenced as the **DOJ's biggest failure in the 2008 crisis** (former US Attorney Mary Jo White, later SEC chair, defended the decision). The SEC didn't even collect civil fines. Fuld testified to Congress claiming to be 'the only one responsible... but responsible for doing everything right'. Ernst & Young's audit also faced lawsuits (NY AG settlement of $99M in 2015). The collapse unleashed: AIG/Citigroup/Bank of America bailouts, $700B TARP, unprecedented Fed liquidity programs, global recession. It is the paradigmatic 'too big to jail' case. The US supervises via SEC + FRB + OCC + DOJ. The US is a FATF founding member.
