FATF on Cyber-Enabled Fraud: New AML/CFT Priorities and Virtual Asset Risks

The Financial Action Task Force (FATF) has published its paper “Cyber-Enabled Fraud – Digitalisation and Money Laundering, Terrorist Financing and Proliferation Financing Risks” (24 February 2026), identifying cyber-enabled fraud as a key driver of money laundering (ML), terrorist financing (TF) and proliferation financing (PF) risks.

The paper highlights the scale of the threat and the growing role of virtual assets in the transfer and concealment of illicit proceeds. It also sets out regulatory and operational priorities for financial institutions, FinTechs and VASPs (EU: CASPs).

Key Takeaways from the FATF Paper on Cyber-Enabled Fraud and AML Risks

FATF notes that fraud risk has become mainstream: 156 jurisdictions (around 90% of those assessed) explicitly identify fraud as a major money laundering risk. The paper points out that losses amount to at least tens of billions of USD per year in the United States alone, and that some countries estimate that up to 15% of adults have fallen victim to a successful cyber-enabled fraud attempt.

Growth is rapid. FATF cites Singapore, where reported scam/cyber-enabled fraud cases increased by 61% over two years, and the United Kingdom, where fraud accounts for more than 40% of all crimes. The paper links these trends to service digitalisation, instant and cross-border payments, and increasingly sophisticated social engineering supported by AI tools, including deepfakes.

Speed often beats controls: proceeds can be transferred before detection, particularly where criminals request payment directly in virtual assets or rapidly convert fiat proceeds into crypto to frustrate recovery.

FATF also stresses the organised crime dimension– large-scale schemes are often run via “scam centres/compounds”, which can converge with professional money-laundering services and human trafficking, while laundering mechanisms are frequently embedded from the outset (money-mule networks, nominee accounts, and rapid movement via FinTech platforms).

AML/CFT/CPF Standards and Tools Emphasised by FATF in Combating Cyber-Enabled Fraud

FATF emphasises payment transparency and traceability, including verification mechanisms such as confirmation of payee and measures to reduce the movement of anonymous funds through unregulated intermediaries. It also underlines timely information sharing and partnerships (public-private and private-private) to keep typologies current and enable faster response.

A second pillar is asset recovery: rapid payment suspension/freezing tools, stronger recovery frameworks (including non-conviction-based confiscation where appropriate), and faster international co-operation, aimed at shortening the time window during which proceeds can be moved abroad and dispersed.

On virtual assets, FATF recalls the global standards introduced in 2019 for virtual assets and VASPs, including AML/CFT controls such as customer identification and transaction tracing requirements, and signals a continued push to accelerate implementation.

Alongside beneficial ownership transparency, the paper highlights the growing role of advanced technologies (machine learning, payment risk scoring, and anomaly detection) in identifying suspicious fraud patterns at scale.

Implications of the FATF Report for FinTechs and Obliged Entities – AML/Fraud Recommendations

• Consider refreshing fraud typologies and monitoring scenarios (phishing, BEC, romance/investment scams, fake ads) and incorporating mule/nominee indicators and account trading signals.
• Strengthen near-real-time controls where feasible: beneficiary verification, risk-based limits, high-risk payment holds, and rapid escalation paths.
• Crypto risk management (where relevant): heightened vigilance for stablecoin-heavy flows, instant exchangers and high-risk counterparties; consider enhanced due diligence for on-/off-ramp partners.
• Ensure operational readiness for rapid intervention: clear incident playbooks, freezing/recovery procedures and cooperation channels across the payment chain.

Crypto, Human Trafficking and Scam Centres – Risk Signals from Blockchain Intelligence

FATF notes that scam centres/compounds can be embedded within broader criminal networks that include human trafficking. Chainalysis’ 2026 Crypto Crime Report analysis adds an operational layer: it reports that cryptocurrency flows to suspected human trafficking services increased 85% year-over-year in 2025, reaching “hundreds of millions” in transaction volume across identified services, largely in Southeast Asia.

Covered categories include Telegram-based “international escort” services, “labour placement” agents linked to forced labour for scam compounds, prostitution networks and CSAM vendors; stablecoins feature prominently, alongside integration with Chinese-language money laundering networks and so-called guarantee platforms.

Key Red Flags in Cyber-Enabled Fraud and AML Risk

• High-velocity movement of funds with immediate conversion and dispersal patterns (layering).
• Customers acting under time pressure after contacting a “support desk” or “investment advisor”, especially when payment instructions change repeatedly.
• Exposure to scam ecosystems/guarantee platforms and repeated stablecoin transfers to newly created recipients in amounts inconsistent with the customer profile.

How Should Organisations Prepare for Rising Cyber Fraud Risks and FATF Expectations?

FATF’s findings call for updates to AML/Fraud processes, strengthened payment transparency mechanisms (including confirmation-of-payee-type solutions) and enhanced operational readiness for rapid incident response. For entities operating in the virtual asset sector, particular attention should also be paid to assessing exposure to risks associated with VASPs/CASPs and stablecoins.

If you would like to analyse how the latest FATF paper may affect your compliance framework and risk management systems, we invite you to contact our team.