InfoBytes Blog
Filter
Subscribe to our InfoBytes Blog weekly newsletter and other publications for news affecting the financial services industry.
FinCEN says wildlife trafficking threatens financial system integrity
On December 20, the Financial Crimes Enforcement Network (FinCEN) issued a Financial Threat Analysis concerning suspicious activity reports (SARs) related to wildlife trafficking trend information identified in Bank Secrecy Act (BSA) data. FinCEN identified wildlife trafficking as a major transnational organized crime involving “the illicit trade of protected animals, animal parts, and derivatives thereof, including procurement, transport, and distribution, in violation of international or domestic law, and money laundering related to this activity.” The proceeds related to wildlife trafficking is estimated to be between $7 and $23 billion annually. According to FinCEN, traffickers damage the integrity of the financial system. FinCEN also stated that financial institutions play a critical role in “identifying wildlife trafficking and protecting the U.S. financial system from associated illicit finance through compliance with their BSA obligations.”
FinCEN stated that the issues with wildlife trafficking are: “(1) its strong association with corruption and transnational criminal organizations, two of FinCEN’s national anti-money laundering and countering the financing of terrorism priorities published in June 2021; (2) a need to enhance reporting and analysis of related illicit financial flows; and, (3) wildlife trafficking’s contribution to biodiversity loss, damage to fragile ecosystems, and the increased likelihood of spreading of zoonotic diseases.”
FinCEN, OCC take action against bank for AML violations
On December 16, FinCEN announced an $8 million civil money penalty against a Texas-based bank for violating the Bank Secrecy Act (BSA) and its implementing regulations from at least 2015 to 2019 by allegedly failing to implement and maintain an effective, reasonably designed anti-money laundering (AML) program. According to the consent order, the bank allegedly failed to report hundreds of suspicious transactions to FinCEN involving illegal financial activity by its customers and continued to knowingly process the transactions after becoming aware that certain customers were subjects of criminal investigations. According to FinCEN, the bank’s violations “caused millions of dollars in suspicious transactions to go unreported to FinCEN in a timely and accurate manner, including transactions connected to tax evasion, illegal gambling, money laundering, and other financial crimes.”
The same day, the OCC announced a $1 million civil money penalty against the bank for “related violations.” According to the OCC’s separate but coordinated investigation with FinCEN, the bank allegedly failed to adopt and implement a BSA/AML system of internal controls to assure ongoing compliance with the BSA and its implementing regulations. According to the consent order, the bank’s alleged internal control deficiencies, and other failures in its BSA/AML compliance program, “resulted in the failure to investigate and disposition alerts and violations of the suspicious activity reporting requirements.” FinCEN's announcement noted that, “[a]s many of the facts and circumstances underlying the OCC’s civil penalty also form the basis of FinCEN’s Consent Order, FinCEN agreed to credit the $1 million civil penalty imposed by the OCC, and “[t]aken together, [the bank] will pay a total of $8 million to the U.S. Treasury as a penalty for its violations, with $7 million representing FinCEN’s penalty and $1 million representing the OCC’s penalty.”
FinCEN seeks comments on updating AML/CFT regime
On December 14, the Financial Crimes Enforcement Network (FinCEN) issued a request for information (RFI) in the Federal Register seeking comments from regulated entities; state, local, and Tribal governments; law enforcement; regulators; and other consumers of Bank Secrecy Act (BSA) data, on ways to redevelop the anti-money laundering and countering the financing of terrorism (AML/CFT) regime in the U.S. According to the announcement, FinCEN intends to collect comments regarding ways to modernize risk-based AML/CFT regulations and guidance so that they protect U.S. national security in a cost-effective and efficient manner. Additionally, the RFI “supports FinCEN’s efforts to conduct a formal review of BSA regulations and related guidance, which is required by Section 6216 of the Anti-Money Laundering Act of 2020.”
As previously covered by InfoBytes, the Anti-Money Laundering Act of 2020 made numerous changes to the BSA, including amendments to the definition of “financial institution” to include a “person engaged in the trade of antiquities, including an advisor, consultant, or any other person who engages as a business in the solicitation or the sale of antiquities.” According to FinCEN, this “review will help FinCEN ensure that BSA regulations and guidance continue to safeguard the U.S. financial system from threats to national security posed by various forms of financial crime, and that BSA reporting and recordkeeping requirements continue to be highly useful in countering financial crime.” This review will also permit the agency “to identify regulations and guidance that are outdated, redundant, or otherwise do not promote a risk-based AML/CFT compliance regime for financial institutions, or that do not conform with U.S. commitments to meet international AML/CFT standards.” The findings of the review will be reported to Congress, and will include administrative and legislative recommendations. Comments are due by February 14, 2022.
FinCEN extends FBAR filing deadline for certain individuals
On December 9, the Financial Crimes Enforcement Network (FinCEN) issued Notice 2021-1 to further extend the time for certain Report of Foreign Bank and Financial Accounts (FBAR) filings in light of the agency’s March 2016 notice of proposed rulemaking, which proposed to revise the Bank Secrecy Act’s implementing regulations regarding FBARs. (See previous InfoBytes coverage on the 2016 NPR here.) Specifically, one of the proposed amendments seeks to “expand and clarify the exemptions for certain U.S. persons with signature or other authority over foreign financial accounts,” but with no financial interest, as outlined in FinCEN Notice 2020-1 issued December 9, 2020. FinCEN noted that because the proposal has not been finalized, it is extending the filing due date to April 15, 2023, for individuals who previously qualified for a filing due date extension under Notice 2020-1. All other individuals must submit FBAR filings by April 15, 2022.
FinCEN issues ANPRM to curb real estate-related illicit finance
On December 6, the Financial Crimes Enforcement Network (FinCEN) issued an advanced notice of proposed rulemaking (ANPRM) seeking comments on potential requirements under the Bank Secrecy Act (BSA) to address vulnerabilities in the U.S. real estate market to money laundering and other illicit activity. Systemic money laundering vulnerabilities in this space, FinCEN cautioned, present opportunities for corrupt officials and illicit actors to launder criminal proceeds through the purchase of real estate and threaten U.S. national security and the integrity of the U.S. financial system. FinCEN stressed that, because of the real estate market’s opacity and gaps in industry regulation, “the U.S. real estate market continues to be used as a vehicle for money laundering and can involve businesses and professions that facilitate (even if unwittingly) acquisitions of real estate in the money laundering process.” Regulated financial institutions, such as banks that provide real estate transactions, are subject to federal anti-money laundering rules and are not as susceptible to money laundering because they must report suspicious activity to FinCEN, the agency stated. However, FinCEN reported that when real estate is purchased in other ways, beneficial ownership can be extremely difficult to trace. Currently FinCEN does not impose the BSA’s general recordkeeping and reporting requirements on persons involved in all-cash real estate transactions (although title insurance companies are subject to specific transaction reporting requirements through Geographic Targeting Orders—covered by InfoBytes here). To address these issues, the ANPRM seeks comments on ways to enhance the transparency of the U.S. residential and commercial real estate market on a nationwide basis while minimizing the burden on businesses. Comments are due within 60 days of publication in the Federal Register.
FinCEN hosts exchange on SAR reporting
On November 9, the Financial Crimes Enforcement Network (FinCEN) held a virtual “FinCEN Exchange” with members of the financial industry and law enforcement “to discuss FinCEN’s analysis of suspicious activity reporting (SAR) with a transactional nexus to Alabama, Florida, Georgia, Mississippi, and South Carolina.” As previously covered by InfoBytes, SAR Stats—formerly called By the Numbers—is an annual compilation of numerical data gathered from SARs filed by financial institutions using FinCEN’s new unified SAR form and e-filing process. According to FinCEN, analysis of certain Bank Secrecy Act filing statistics for SARs and an analysis of SAR filings related to recent FinCEN advisories were among the topics discussed. FinCEN also noted that this FinCEN Exchange “supports one of FinCEN’s highest priorities—to strengthen public-private partnerships to identify and mitigate threats in order to safeguard our national security and protect communities and citizens from harm.”
Treasury and DOJ announce sanctions and charges in ransomware attacks, FinCEN updates ransomware guidance
On November 8, the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) announced sanctions pursuant to Executive Order 13694 as amended against two ransomware operators and a virtual currency exchange network. According to OFAC, the virtual currency exchange, and its associated support network, are being designated for allegedly facilitating financial transactions for ransomware actors. OFAC is also designating two individuals allegedly associated with perpetuating ransomware incidents against the U.S., and who are part of a cybercriminal group that has engaged in ransomware activities and has received over $200 million in ransom payments. As a result of the sanctions, “all property and interests in property of the designated targets that are subject to U.S. jurisdiction are blocked, and U.S. persons are generally prohibited from engaging in transactions with them” and “any entities 50 percent or more owned by one or more designated persons are also blocked.” According to OFAC, the sanctions are a part of a set of actions focused on disrupting criminal ransomware actors and virtual currency exchanges that launder the proceeds of ransomware, which “advance the Biden Administration’s counter-ransomware efforts to disrupt ransomware infrastructure and actors and address abuse of the virtual currency ecosystem to launder ransom payments.” Additionally, the DOJ announced charges against the sanctioned individuals under OFACs designations, seizing approximately $6.1 million in alleged ransomware payments.
The same day, FinCEN issued an advisory, which updated and replaced its October 1, 2020 Advisory on Ransomware and the Use of the Financial System to Facilitate Ransom Payments (covered by InfoBytes here). The updated advisory is in response to the recent increase in ransomware attacks against critical U.S. infrastructure. The updated advisory also reflects information released by FinCEN in its Financial Trend Analysis Report, which discusses ransomware trends and includes information on current trends and typologies of ransomware and associated payments as well as recent examples of ransomware incidents. Additionally, the updated advisory describes financial red flag indicators of ransomware-related illicit activity to assist financial institutions in identifying and reporting suspicious transactions related to ransomware payments, consistent with obligations under the Bank Secrecy Act.
Agencies announce new measures to combat ransomware
On October 15, the U.S. Treasury Department announced additional steps to help the virtual currency industry combat ransomware and prevent exploitation by illicit actors. The guidance builds upon recent “whole-of-government” actions focused on confronting “criminal networks and virtual currency exchanges responsible for laundering ransoms, encouraging improved cyber security across the private sector, and increasing incident and ransomware payment reporting to U.S. government agencies, including both Treasury and law enforcement.” (Covered by InfoBytes here.) The newest industry-specific guidance—part of the Biden administration’s efforts to counter ransomware threats—outlines sanctions compliance best practices tailored to the unique risks associated with this space. According to Treasury, there is a “need for a collaborative approach to counter ransomware attacks, including public-private partnerships and close relationships with international partners.”
The same day, the Financial Crimes Enforcement Network (FinCEN) released new data analyzing ransomware trends in Bank Secrecy Act reporting filed between January 2021 and June 2021. The report follows FinCEN’s government-wide priorities for anti-money laundering and countering the financing of terrorism priorities released in July (covered by InfoBytes here). Issued pursuant to the Anti-Money Laundering Act of 2020, the report flags “ransomware as a particularly acute cybercrime concern,” and states that in the first half of 2021, FinCEN identified $590 million in ransomware-related suspicious activity reports (SARs)—an amount exceeding the entirety of the value report in 2020 ($416 million). If this trends continues, FinCEN warns that ransomware-related SARs submitted in 2021 will have a higher transaction value than similar SARs filed in the previous 10 years combined. FinCEN attributes this uptick in activity to several factors, including an increasing overall prevalence of ransomware-related incidents, improved detection and incident reporting, and an increased awareness of reporting obligations and willingness to report by financial institutions.
In conjunction with the “growing prevalence of virtual currency as a payment method,” Treasury’s Office of Foreign Assets Control (OFAC) issued sanctions compliance guidance for companies in the virtual currency industry, including technology companies, exchangers, administrators, miners, wallet providers, and financial institutions. OFAC warned that “sanctions compliance obligations apply equally to transactions involving virtual currencies and those involving traditional fiat currencies,” and that participants “are responsible for ensuring that they do not engage, directly or indirectly, in transactions prohibited by OFAC sanctions, such as dealings with blocked persons or property, or engaging in prohibited trade- or investment-related transactions.” Among other things, the guidance will assist participants on ways to evaluate risks and build a risk-based sanctions compliance program. OFAC also updated related FAQs 559 and 646.
FINRA advises firms to incorporate FinCEN’s AML/CFT priorities
On October 8, the Financial Industry Regulatory Authority (FINRA) encouraged member firms to consider ways to incorporate recently issued anti-money laundering and countering the financing of terrorism priorities (AML/CFT Priorities) into their risk-based compliance programs. As previously covered by InfoBytes, the Financial Crimes Enforcement Network’s (FinCEN) AML/CFT Priorities—issued pursuant to the Anti-Money Laundering Act of 2020—highlighted key threat trends and provided informational resources to help covered institutions manage their risks and meet their obligations under laws and regulations designed to combat money laundering and counter terrorist financing.
FINRA reminded member firms that FINRA Rule 3310 requires the development and implementation of a written AML program to achieve compliance with the Bank Secrecy Act (BSA). While FinCEN’s issuance of the AML/CFT Priorities “does not trigger an immediate change in the BSA requirements or supervisory expectations for member firms,” FINRA advised member firms to evaluate how they plan to incorporate these priorities into their risk-based AML programs. Among other things, FINRA advised member firms to: (i) review red flags based on potential risks presented by their business activities, size, geographic location, and types of accounts and transactions; and (ii) consider potential technical changes, including those used to monitor and investigate suspicious activity.
FinCEN seeks comments on antiquities trading
On September 23, the Financial Crimes Enforcement Network (FinCEN) issued an Advance Notice of Proposed Rulemaking (ANPRM) to solicit public comments on implementing Section 6110 of the Anti-Money Laundering Act of 2020 (Act) regarding the trade in antiquities. FinCEN noted that this is the first of several regulatory actions that the agency intends to undertake to implement Section 6110. As previously covered by InfoBytes, the Act made numerous changes to the Bank Secrecy Act (BSA), including amendments to the definition of “financial institution” to include a “person engaged in the trade of antiquities, including an advisor, consultant, or any other person who engages as a business in the solicitation or the sale of antiquities.” FinCEN explained that crimes related to the trade in antiquities may include money laundering and sanctions violations, and may also be exploited by terrorist financiers seeking to evade detection when laundering illicit funds through the U.S. financial system. In March, FinCEN issued an advisory notice (covered by InfoBytes here) alerting financial institutions with existing BSA obligations about illicit activity associated with trade in antiquities and art. According to FinCEN, the ANPRM “is an important step in strengthening U.S. national security by protecting the U.S. financial system from money launderers and terrorist financiers that seek to exploit the antiquities trade.”
In developing the ANPRM, FinCEN coordinated with the FBI, the Attorney General, and Homeland Security Investigations to consider several factors, including “the degree to which the regulations should focus on high-value trade in antiquities, and on the need to identify the actual purchasers of such antiquities, in addition to the agents or intermediaries acting for or on behalf of such purchasers,” whether thresholds should apply when determining persons to regulate, and what exemptions, if any, should apply to the regulations. The ANPRM seeks comments regarding, among other things: (i) “the potential for money laundering, financing of terrorism, and other illicit financial activity in the antiquities industry”; (ii) “the existence of any safeguards in the industry to guard against this potential”; (iii) “the effect that compliance with BSA requirements could have on the antiquities industry”; (iv) “what additional steps may be necessary to protect the industry from abuse by money launderers and other malign actors”; and (v) “which actors within the antiquities trade should be subject to BSA requirements.” Comments are due October 25.