Most breaches concerned failures in buyer due diligence and id verification processes.
The motion coincides with stories of a possible majority acquisition by Mirae Asset.
The case reinforces stricter regulatory expectations throughout South Korea’s crypto sector.
South Korea’s year-end transfer in opposition to Korbit marks a decisive second for the nation’s digital asset trade, as regulators sign that gaps in compliance will carry actual penalties.
On December 31, the Monetary Intelligence Unit closed an on-site investigation into one of many nation’s longest-operating exchanges with a big monetary penalty and management-level sanctions.
The motion, primarily based on findings from an October inspection, locations renewed concentrate on how exchanges confirm customers, handle threat, and develop companies.
It additionally lands at a delicate time for Korbit, underscoring how regulatory self-discipline is shaping the way forward for South Korea’s crypto market.
The FIU introduced a 2.73 billion received ($1.88 million) high quality after figuring out practically 22,000 breaches linked to anti-money laundering and buyer verification obligations.
The violations have been uncovered throughout an inspection carried out between October 16 and 29, 2024, with the outcomes later reviewed by the Sanctions Assessment Committee.
Alongside the high quality, the regulator issued an institutional warning and imposed particular person accountability measures on senior executives.
Inspection findings
A big share of the violations stemmed from failures in buyer due diligence.
The FIU discovered roughly 12,800 circumstances the place id checks weren’t correctly carried out.
These included the acceptance of unclear or unverifiable identification paperwork, incomplete deal with data, and lapses in obligatory re-verification processes.
In a number of cases, customers have been allowed to proceed buying and selling even after their threat profiles elevated, with out further checks being utilized.
Such practices run counter to necessities that higher-risk prospects be topic to enhanced scrutiny fairly than normal monitoring.
The overview additionally recognized about 9,100 circumstances the place prospects have been permitted to commerce earlier than id verification was absolutely accomplished.
South Korean guidelines limit transactions by unverified customers, making these circumstances a direct breach of core compliance requirements.
Accountability on the high
Past operational failures, the enforcement motion prolonged duty to management.
The FIU issued an institutional warning to Korbit, whereas the alternate’s chief government acquired a warning, and its reporting officer was reprimanded.
This method displays a broader regulatory emphasis on governance and inside controls, the place accountability doesn’t cease at automated techniques or compliance groups.
As an alternative, senior administration is predicted to make sure that regulatory necessities are embedded throughout day-to-day operations and decision-making processes.
Abroad transfers and new companies
Regulators additionally highlighted weaknesses past buyer onboarding.
Inspectors flagged 19 digital asset transfers involving three abroad digital asset service suppliers that weren’t correctly reported.
South Korean guidelines require exchanges to reveal dealings with international entities and limit transactions with unregistered suppliers.
As well as, the FIU recognized 655 circumstances the place Korbit failed to hold out obligatory cash laundering threat assessments earlier than introducing new transaction varieties.
These included companies linked to non-fungible tokens, an space of speedy development that is still topic to the identical compliance obligations as different digital asset merchandise.
Timing and sector influence
The enforcement motion comes simply days after stories that Mirae Asset is alleged to be contemplating buying 92% of Korbit for as much as 140 billion received ($97 million).
Korbit presently ranks because the fourth-largest alternate amongst South Korea’s six integrated crypto platforms, putting it firmly inside the regulator’s line of sight.
The FIU stated full particulars of the sanctions shall be disclosed after a minimal 10-day interval for opinion submissions.
