MSB Suspicious Activity Indicators: The Complete List
45+ verified suspicious activity indicators specifically for money services businesses. Every indicator traces to FIN-2014-G001, the FFIEC Exam Manual, or a FinCEN advisory.
MSB Suspicious Activity Indicators: What Compliance Officers Need to Know
Money Services Businesses (MSBs) - including check cashers, money transmitters, currency exchangers, and prepaid card providers - are among the most heavily regulated non-bank financial institutions under the Bank Secrecy Act. FinCEN's FIN-2014-G001 advisory and the FFIEC BSA/AML Examination Manual dedicate extensive guidance to MSB-specific red flags.
MSBs face unique money laundering risks due to their high-volume cash transactions, cross-border wire transfers, and customer-facing operations that make them attractive targets for structuring, human trafficking networks, drug trafficking proceeds, and sanctions evasion schemes. The MSB suspicious activity indicators in this guide cover all major risk categories.
This page presents the most critical suspicious activity indicators for MSBs, including customer behavior patterns, transaction monitoring alerts, geographic risk factors, beneficial ownership concerns, and emerging threats like synthetic identity fraud and unemployment insurance benefit fraud.
54+ Verified BSA Red Flags
Customer attempts to split a large cash transaction into multiple smaller transactions below the $3,000 recordkeeping threshold to avoid creating a paper trail.
Multiple customers visit the same location in rapid succession and each conducts a cash transaction just below the reporting threshold, suggesting a coordinated structuring scheme.
Wire transfers sent to or received from high-risk jurisdictions known for money laundering, with no apparent business or family connection to those countries.
Customer provides identification that appears altered, forged, or inconsistent with the person presenting it, including mismatched photos or expired credentials.
Corporate customer sends wires on behalf of undisclosed principals, or the stated beneficial owner is a nominee shareholder with no independent wealth or employment.
Transaction patterns show sudden and significant changes in volume, frequency, or typology that are inconsistent with the customer’s established activity profile.
Politically Exposed Person (PEP) or a close associate conducts large cash transactions that appear disproportionate to their known sources of income or legitimate wealth.
Multiple individuals use the same phone number or address to receive wire transfers, with none able to explain the source or purpose of the funds independently.
Funds are sent to or received from individuals, entities, or charities linked to designated terrorist organizations or individuals on OFAC SDN lists.
Customer uses virtual currency exchanges or mixers to obfuscate the origin or destination of funds, particularly involving sanctioned jurisdictions or SDN-listed individuals.
Customer reports that their online account was compromised and unauthorized wire transfers were initiated, with rapid fund movement to overseas accounts.
Customer receives funds and is instructed to convert them to virtual currency and send to a specific wallet address as part of a job offer, romance scheme, or investment opportunity.
More AML Red Flags by Industry
Common Questions About MSB Suspicious Activity Indicators
What are the top suspicious activity indicators for MSBs?
The top MSB suspicious activity indicators include: customers splitting transactions below the $3,000 threshold to avoid recordkeeping; rapid inflow/outflow of funds with no holding period; wires to or from high-risk jurisdictions; customers who ask about reporting thresholds; PEPs conducting transactions disproportionate to known income; multiple customers using the same phone number or address; and synthetic identity documents that fail verification checks.
Do MSBs have to file SARs for suspicious activity?
Yes. Under 31 CFR § 1022.320, all MSBs must file SARs when they detect suspicious transactions aggregating to $2,000 or more. This includes structuring, money laundering, terrorist financing, human trafficking, elder financial exploitation, and cyber events. MSBs must also file Currency Transaction Reports (CTRs) for cash transactions exceeding $10,000.
What is FIN-2014-G001 and why does it matter for MSBs?
FIN-2014-G001 is FinCEN's guidance titled "Information on Identifying and Reporting Money Laundering Schemes Involving the Use of Money Services Businesses." It provides specific examples of how criminals use MSBs for money laundering, including structuring through multiple locations, use of money mules, and exploitation of agent networks. Every MSB compliance officer should be familiar with this advisory.
How do MSBs detect human trafficking through transactions?
MSBs should look for multiple individuals using the same phone number or address to receive wire transfers, with none able to explain the source of funds independently. Other indicators include incoming wires or prepaid loads from escort services, massage parlors, or short-term rental operations; and young individuals controlled by an older patron who handles all their cash and transactions.
What are the latest synthetic identity red flags for MSBs?
FinCEN's 2024 Deepfake Fraud Advisory (FIN-2024-A001) warns MSBs about AI-generated identification documents that show unnatural facial symmetry, inconsistent lighting, or mismatched security features. MSBs should also watch for biometric verification that fails liveness detection, and voice or video calls for high-value transactions that appear artificially generated.
More BSA Red Flags & Compliance Resources
BSA Red Flags List
427+ verified Bank Secrecy Act red flags covering every compliance category, industry, and risk level. Every flag traces to an official FinC...
FinCEN Red Flags for Fintech Companies
35+ verified BSA red flags for fintech companies under 31 CFR § 1022. Every flag traces to FIN-2021-A003, the 2024 FTA Identity Advisory, or...
AML Red Flags by Industry
427+ verified BSA red flags organized by 13 regulated industries. Every red flag traces to a FinCEN advisory, FFIEC manual, or federal regul...
AML Red Flag Library
Browse all 427+ verified BSA red flags across 13 regulated industries. Searchable by keyword, filter by category, industry, or risk level.
Explore related AML-BSA compliance resources
Browse All 45+ MSB Suspicious Activity Indicators
Access the complete AML Red Flag Library with 427+ verified BSA red flags. Filter by MSB-specific categories, risk levels, and FinCEN source documents.