FinCEN Red Flags for Mortgage Lenders & Originators
35+ verified BSA red flags for mortgage companies under 31 CFR § 1029. Every flag traces to FIN-2012-A002 or the FFIEC Mortgage Examination Manual.
FinCEN Red Flags for Mortgage Companies: What Compliance Officers Need to Know
Non-bank residential mortgage lenders and originators are required to maintain AML programs under 31 CFR § 1029.210, implemented by FinCEN in 2012. The mortgage industry faces unique money laundering risks involving down payment structuring, source of funds concealment, appraisal fraud, straw buyer arrangements, and rapid property flipping schemes.
FinCEN's FIN-2012-A002 advisory on mortgage fraud provides specific guidance on suspicious patterns including fabricated income documentation, Social Security number fraud, inflated appraisals, and third-party funding with no documented relationship. The FFIEC BSA/AML Examination Manual's mortgage section provides additional red flags for examiner review.
This page covers the most critical FinCEN red flags for mortgage companies, including cash structuring for down payments, wire transfers from cryptocurrency exchanges, elder financial exploitation through refinance coercion, and business entity funding that does not match GSE or FHA guidelines.
36+ Verified BSA Red Flags
Borrower provides a large down payment in cash without a documented source of funds, or the funds are traced to a shell company or nominee account.
Borrower’s closing funds are wired from an account in the name of a third party with no familial or documented gift letter relationship to the borrower.
Loan application contains fabricated or altered documents, including fake pay stubs, forged bank statements, or manipulated tax returns submitted to support the borrower’s qualification.
Real estate purchase is financed through a nominee borrower or straw buyer, where the true purchaser is a foreign PEP or sanctioned individual attempting to conceal their identity.
Property transaction involves a massage parlor, nail salon, or residential rental where the listed occupants match patterns of forced labor, including restricted movement and shared living quarters.
Closing instructions are altered via compromised email, redirecting wire transfer of closing funds to a fraudulent account controlled by an attacker, with the change appearing subtly different from the original.
Property is purchased with a mortgage, then immediately listed for sale at a significantly higher price without any improvements, suggesting the transaction was used to inflate the property value for a subsequent fraud.
PEP or family member purchases luxury real estate with funds that cannot be traced to legitimate salary, business income, or documented gifts from known sources.
Borrower is the subject of a prior SAR filed by another financial institution for suspicious activity, and the new application does not disclose this history or explain the prior findings.
Down payment funds are sourced from multiple recent cash deposits into the borrower’s account, each below the $10,000 CTR threshold, with no legitimate income documentation.
Borrower brings a large sum of cash to closing that smells of marijuana, has unusual markings, or is wrapped in rubber bands and stored in a duffel bag rather than a bank envelope.
Business entity provides funds for a residential mortgage closing but is not a documented employer, investor, or permissible funding source under GSE or FHA guidelines.
More AML Red Flags by Industry
Common Questions About FinCEN Red Flags for Mortgage Companies
What FinCEN red flags apply to mortgage companies?
Mortgage companies must watch for: large down payments in cash with no documented source; down payment funds traced to shell companies or nominee accounts; multiple recent cash deposits each below the CTR threshold; wires from cryptocurrency exchanges with no prior trading history; stated income significantly higher than industry norms; fabricated or altered tax returns and pay stubs; inflated appraisals ordered by interested parties; and elderly borrowers coerced into refinancing by caregivers.
Do mortgage companies have to file SARs?
Yes. Under 31 CFR § 1029.320, mortgage lenders and originators must file SARs for suspicious transactions aggregating to $5,000 or more. This includes suspicious loan applications, down payment anomalies, wire fraud, identity fraud, and transactions involving PEPs or sanctioned individuals. SAR filing has been mandatory for mortgage companies since 2012.
What is mortgage fraud vs. money laundering?
Mortgage fraud involves misrepresentation or deception in the mortgage application process - such as fabricated income, inflated appraisals, or straw buyers. Money laundering involves making illicit proceeds appear legitimate. The two often overlap: a drug trafficker may use a straw buyer and fraudulent income documentation to purchase real estate with drug proceeds, committing both mortgage fraud and money laundering simultaneously. FinCEN's FIN-2012-A002 covers both types of red flags.
How do criminals use mortgage companies to launder money?
Criminals launder money through mortgages by: providing cash down payments from drug proceeds; using shell companies to fund residential purchases; inflating property values to extract equity; refinancing repeatedly to strip equity with no legitimate purpose; and using non-performing loans as a facade to move illicit funds into the U.S. financial system. PEPs may use mortgages to acquire U.S. real estate with government bank account funds.
What are the latest cyber fraud red flags in mortgage transactions?
Cyber fraud red flags in mortgages include: closing instructions altered via compromised email (BEC attacks); title companies receiving wires from accounts with slightly different names; borrowers' email accounts compromised with wire instructions changed to fraudulent accounts; and deepfake video calls used to verify identity for loan applications. The 2024 Deepfake Fraud Advisory (FIN-2024-A001) warns about AI-generated borrower verification videos.
More BSA Red Flags & Compliance Resources
AML Red Flags for Title Companies
30+ verified BSA red flags specifically for title companies, escrow agents, and closing attorneys. Every red flag traces to a FinCEN advisor...
FinCEN Red Flags for Real Estate
25+ verified BSA red flags for real estate under FinCEN RRE Advisory and GTO Orders. Every flag traces to 31 CFR § 1010.370 or FinCEN reside...
AML Red Flags by Industry
427+ verified BSA red flags organized by 13 regulated industries. Every red flag traces to a FinCEN advisory, FFIEC manual, or federal regul...
AML Red Flag Library
Browse all 427+ verified BSA red flags across 13 regulated industries. Searchable by keyword, filter by category, industry, or risk level.
Explore related AML-BSA compliance resources
Browse All 35+ Mortgage Red Flags
Access the complete AML Red Flag Library. Filter by mortgage-specific categories, risk levels, and FinCEN source documents.