Growing number of suspicious transaction reports
As the scandal continued to gain traction, the political realm reached a consensus to conduct investigations into the cryptocurrency holdings of all lawmakers. Additionally, the National Human Rights Commission of Korea initiated the tracking of all lawmakers’ cryptocurrency holdings last month, a process set to span 90 days.
Data received by lawmaker Yoon Young-deok on October 30 from the FIU reveals that the number of STRs originating from virtual asset service providers (VASPs) has reached 11,646 in the first nine months of this year. This figure has already exceeded last year’s total of 10,797 STRs.
Under the current Act on Reporting and Using Specified Financial Transaction Information, commonly referred to as the Financial Transaction Reporting Act, VASPs are mandated to report to the FIU if they have reasonable grounds to suspect that a customer’s financial transactions are connected to illicit property, money laundering, or terrorist financing. The Act has been in full effect since October 2021.
In 2021, a total of 199 reports were submitted under this Act. The number of reports surged to over 10,000 the following year, and in the current year, it continues to grow at an even faster rate. The FIU reviews and analyzes these STRs in accordance with Article 10 of the Financial Transaction Reporting Act. It forwards the relevant information to law enforcement agencies only when it is deemed necessary for the investigation of a specific criminal case.
Enhanced but varied approaches by exchanges
Crypto exchanges have bolstered their customer verification requirements, especially for customers deemed to have a high risk of involvement in money laundering, in accordance with the Financial Transaction Reporting Act. This entails the need for additional scrutiny of the source of funds and the purpose behind transactions. Notably, if customer verification appears suspicious, exchanges are mandated to confirm the authenticity of the information using reliable documents.
However, it’s important to note that the enforcement decree accompanying this Act grants exchanges the flexibility to verify documents based on their own business guidelines. This autonomy has been provided to assist exchanges in effectively mitigating money laundering risks by taking into account their individual business rights and characteristics.
For instance, Upbit, South Korea’s largest cryptocurrency exchange, has implemented a fraud detection system (FDS) powered by artificial intelligence to continuously monitor and identify fraudulent transactions. This initiative has earned Upbit recognition from the FIU as an outstanding organization for reporting suspicious transactions during the first half of this year.
On the contrary, Bithumb has devised and applies internal guidelines dedicated to anti-money laundering (AML) measures. The exchange has instituted a streamlined customer verification process for customers who are assessed as having a low likelihood of being engaged in money laundering activities. However, this simplified process is not extended to individuals from countries that have not adopted the recommendations of the Financial Action Task Force (FATF).
Korbit monitors information related to customer verification through a dedicated department. It declines transactions for customers who have not undergone sufficient verification and validation procedures.
Coinone’s AML department examines customer transactions comprehensively. It maintains ongoing reviews of customer information, business operations, risk assessments, and the source of funds. If any of these aspects are found to be suspicious or inadequate, the AML department proceeds with additional customer verification, including the disclosure of the source of funds.
Some raise concerns about the inconsistency in customer verification standards for AML and STRs across different exchanges. When one exchange flags a transaction as suspicious, another might see it as routine. Such discrepancies highlight the need for uniform guidelines. Addressing this, the Digital Asset eXchange Association (DAXA), consisting of Korea’s five leading currency exchanges — Upbit, Bithumb, Coinone, Korbit, and Gopax — has set up an AML division to devise standardized rules for STRs.