Anti-money laundering enforcement has replaced securities violations as crypto’s primary regulatory risk. US AML fines reached $1.06 billion in the first half of 2025, while SEC crypto penalties fell 97% year-over-year to $142 million, according to CertiK analysis. The shift reflects a fundamental recalibration of regulatory priorities and signals that compliance infrastructure now matters more to enforcement agencies than token classification debates.
Why AML Enforcement Accelerated
The pivot mirrors a broader US administration policy change and the SEC’s reassessment of its jurisdiction over digital assets. Two major exchange settlements drove the H1 2025 total: OKX agreed to a $504 million AML settlement in February, and KuCoin settled for $297 million in January. Both cases involved failures to detect and block suspicious transactions linked to sanctions evasion and illicit finance.
Sanctions-related crypto volume surged 400% year-over-year, driven largely by Russia-linked networks exploiting stablecoins and decentralized finance. Financial Crimes Enforcement Network and the Department of Justice intensified scrutiny on transaction monitoring systems, customer identification protocols, and beneficial ownership verification. This enforcement wave extends beyond US borders: European AML fines jumped 767% during the same period.
The Penalty Collapse and Its Cause
SEC crypto penalties dropped from $4.9 billion in 2024 to $142 million in 2025, a 97% decline that reflects the agency’s narrowed enforcement scope. The collapse coincides with legal uncertainty around whether most tokens qualify as securities under current frameworks. Rather than pursue aggressive classification arguments, the SEC has reallocated resources toward cases with clearer statutory footing.
This does not mean securities violations have disappeared. Instead, regulators have deprioritized them in favor of AML and sanctions compliance, which carry unambiguous legal authority under the Bank Secrecy Act and International Emergency Economic Powers Act. Exchanges and custodians now face sharper penalties for transaction monitoring failures than for token classification violations.
Basel Rules and the Infrastructure Divide
Incoming prudential standards will deepen this enforcement trajectory. The Basel Committee’s cryptoasset framework, scheduled for January 1, 2026 implementation, mandates 100% capital charges for Group 2 assets including Bitcoin and Ether. Group 1 assets receive standard risk weighting, creating a structural divide that pushes banks toward compliance-heavy infrastructure.
Smart contract audits are shifting from voluntary to mandatory within major jurisdictions. CertiK data shows 80% of exploited protocols were never audited, and unaudited protocols accounted for 89.2% of user losses. This trend accelerates demand for audit infrastructure and creates new compliance checkpoints for custody providers and institutional venues. The European Central Bank’s March 2025 working paper on DeFi governance highlighted persistent concentration risks in protocol decision-making, complicating accountability under emerging Markets in Crypto Assets Regulation standards.
What Comes Next
Exchanges and fintech platforms must now prioritize transaction monitoring and sanctions screening over product innovation. The $1.06 billion in H1 2025 AML fines sets a precedent for aggressive enforcement globally. Basel implementation in early 2026 will force institutional capital allocation decisions that favor compliant infrastructure and established assets. Regulatory divergence between jurisdictions will likely accelerate, with EU, Singapore, and US enforcement continuing to diverge on stablecoin and DeFi oversight.
