AML Fines by Regulator 2024: 2024 Statistics, Trends, and Analysis
Global AML, KYC, and sanctions fines totalled $4.6 billion in 2024, down 30% from $6.57 billion in 2023, per Fenergo's AML Enforcement Action in 2024 report. TD Bank's $3.09 billion US settlement drove 67% of that total. Transaction monitoring failures generated $3.3 billion. North America accounted for 95% of all penalties issued.
Methodology
The $4.6 billion global total comes from Fenergo's "AML Enforcement Action in 2024" report, published in early 2025. The report aggregates enforcement actions against financial institutions for AML, KYC, and sanctions violations across all major jurisdictions, sourcing individual cases from official regulator press releases, court filings, and consent orders published during calendar year 2024.
Per-regulator figures for US agencies are drawn from primary enforcement notices on justice.gov, occ.gov, and ofac.treasury.gov. UK FCA data comes from enforcement notices at fca.org.uk. The Finansinspektionen action against Klarna comes from fi.se. Currency conversions use 2024 average rates: GBP/USD 1.27; SEK/USD 0.094.
Where multiple US agencies coordinated on a single case (TD Bank, October 2024), each agency's claimed penalty is listed separately in the table. The Fenergo global total of $4.6 billion treats the TD Bank case as one aggregated event; the individual agency rows in the table therefore sum to more than $4.6 billion.
Two definitional caveats matter here. The $19.3 billion figure reported by Corlytics for 2024 covers all financial regulation categories, not just AML. Second, the 2023 total of $6.57 billion is heavily inflated by the Binance $4.3 billion settlement in November 2023. Stripping Binance out, the underlying 2023 bank AML enforcement baseline was approximately $2.27 billion, which means the 2024 total represents a real doubling of bank-focused enforcement intensity, not a retreat.
Full data table
| Regulator | Jurisdiction | 2024 AML Fine | Key Case | Source |
|---|---|---|---|---|
| DOJ | United States | ~$1.85B ($1.4B fine + $452M forfeiture) | TD Bank BSA/AML plea | justice.gov |
| FinCEN | United States | $1.3B | TD Bank civil monetary penalty | FinCEN |
| OCC | United States | ~$515M | TD Bank ($450M) + City National Bank ($65M) | occ.gov |
| Federal Reserve | United States | $123.5M | TD Bank civil money penalty + asset cap | Federal Reserve |
| OFAC | United States | ~$48.8M | 12 enforcement actions incl. EFG International AG ($3.74M) | ofac.treasury.gov |
| FCA | United Kingdom | £28.96M (~$37M) | Starling Bank AML control failures | fca.org.uk |
| Finansinspektionen | Sweden | SEK 500M (~$47M) | Klarna Bank AB AML violations | fi.se |
Note: TD Bank's total settlement across all four US agencies was approximately $3.09 billion due to inter-agency crediting arrangements. Sources: Fenergo "AML Enforcement Action in 2024"; justice.gov (October 2024); occ.gov (January and October 2024); ofac.treasury.gov 2024 enforcement page; fca.org.uk (September 2024); fi.se (December 2024).
Key findings
TD Bank's $3.09 billion settlement is the largest Bank Secrecy Act penalty in US history. The October 2024 action involved four US agencies: DOJ took approximately $1.85 billion in fines and forfeitures, FinCEN issued a $1.3 billion civil monetary penalty, OCC levied $450 million, and the Federal Reserve added $123.5 million plus an asset cap. The bank had allowed $18 trillion in transactions to pass without adequate monitoring for over a decade, enabling $670 million in drug trafficking proceeds to move through its accounts (DOJ press release, October 2024). The asset cap is arguably the harshest part; it limits TD's US growth indefinitely until the Fed is satisfied with its remediation.
Transaction monitoring failures drove $3.3 billion, or 72% of the global total. That figure doubled year-over-year, from approximately $1.65 billion in 2023, per Fenergo. The TD Bank case is the biggest contributor, but it's not alone. City National Bank (an RBC subsidiary) received a $65 million OCC penalty in January 2024 for BSA/AML deficiencies that the OCC said had persisted since December 2020. The regulator issued a simultaneous cease-and-desist order.
North America represented 95% of global AML penalties. US regulators issued over $4.3 billion in fines in 2024, with $1.06 billion levied specifically against US-headquartered firms; the rest fell on foreign banks with US operations. Nearly 50 separate enforcement actions were counted, per Fenergo. The Bank Secrecy Act's extraterritorial reach continues to make FinCEN and DOJ the most consequential financial crime enforcers globally.
Banks accounted for 80% of all fines ($3.65 billion). The non-bank share was $0.92 billion, spanning fintechs and money services businesses. This reverses the 2023 pattern, when Binance's $4.3 billion settlement made the crypto sector the dominant enforcement target.
OFAC enforcement fell sharply. The sanctions body issued 12 public actions in 2024 totalling approximately $48.8 million, against 17 actions and $1.5 billion in 2023. The 2023 spike was driven by Binance's OFAC component (~$968 million). The 2024 figure is more representative of OFAC's baseline enforcement rhythm.
Year-over-year trends
The headline 30% decline from 2023 to 2024 is misleading without context.
2023's $6.57 billion was dominated by one outlier: Binance's $4.3 billion settlement in November 2023, which the US Treasury called the largest in its history. Strip Binance out, and the underlying 2023 bank enforcement base was roughly $2.27 billion. Against that baseline, 2024's $4.6 billion represents a doubling of enforcement against traditional financial institutions.
The H1 data tells the same story. Fenergo's mid-year analysis found global AML penalties up 31% in H1 2024 versus H1 2023. The apparent full-year decline exists only because H2 2023 included Binance ($4.3B, November 2023), and TD Bank's $3.09 billion, though massive, is smaller than Binance.
For transaction monitoring specifically, the direction is clear and steep. Penalties for monitoring failures rose 100% year-over-year: from approximately $1.65 billion in 2023 to $3.3 billion in 2024. Regulators have been explicit that static rule sets and inadequately staffed monitoring functions are no longer tolerable.
OFAC's sharp drop from $1.5 billion to $48.8 million signals that the first wave of large-scale crypto sanctions enforcement has largely concluded. New targets in 2025 are likely to come from different sectors.
The long-run trajectory is one-way. The Financial Crime News database records $45.68 billion in major AML and sanctions fines exceeding $10 million from 2000 to 2024. The pace has accelerated significantly in the last decade. Fenergo's early 2025 data already shows penalties surging 417% in H1 2025 versus H1 2024, driven by EMEA regulators closing long-running probes. The 2024 figure is a floor, not a ceiling.
What this means for compliance teams
The TD Bank settlement changes the reference frame for every compliance officer. Four federal agencies coordinated the action. The Federal Reserve imposed an asset cap that restricts TD's US growth until remediation satisfies all four. A deficient transaction monitoring program is no longer just a fine risk; it's an operational constraint that can last years and cost more in foregone revenue than the original penalty.
The 95% North American concentration won't hold. Fenergo's 2025 data already shows EMEA driving a growing share of global enforcement as regulators close long-running probes. UK firms should study the FCA's Starling Bank action closely. The £28.96 million fine came with a direct finding that growth was permitted to outpace customer due diligence infrastructure. Starling opened more than 54,000 accounts for high-risk customers during a period when the FCA had explicitly restricted it from doing so. The compliance lesson isn't subtle.
Transaction monitoring failures driving 72% of global fines tells compliance leaders exactly where the regulatory heat is. Calibrated, tiered alert logic aligned with FATF Recommendation 10 on customer due diligence is now a baseline expectation, not a differentiator. The TD Bank case involved the specific absence of alerts on accounts later linked to drug cartels, with three employees convicted of colluding with launderers. That's not a tuning problem; it's a governance failure.
Institutions that invest in regulatory compliance automation are better positioned to demonstrate an active, evidence-based process to examiners rather than a static rule set. The OCC's 2024 guidance on model risk management increasingly expects documentation that monitoring calibration is ongoing and risk-responsive.
The Klarna and Starling cases confirm fintechs don't get a pass. Both were fined for opening accounts for high-risk customers in direct contravention of regulator orders. Any institution whose enhanced due diligence processes haven't kept pace with onboarding volume should treat 2024's enforcement record as a direct signal, not a background statistic.
Sources
- Fenergo, "AML Enforcement Action in 2024"
- Fenergo, "Regulatory Penalties in North America Account for 95% of Global Financial Penalties in 2024"
- Banking Dive, "TD hit with asset cap, $3B in penalties over AML woes" (October 2024)
- ABA Banking Journal, "TD Bank agrees to pay $3.1 billion to resolve AML allegations" (2024)
- OCC, "OCC Assesses $65 Million Penalty Against City National Bank" (January 2024)
- FCA, "FCA fines Starling Bank £29m for failings in their financial crime systems and controls" (2024)
- OFAC, "2024 Civil Penalties and Enforcement Information"
- Miller & Chevalier, "OFAC Year in Review 2024"
Turn these numbers into fewer of your own
FluxForce AI agents cut false positives, clear SAR backlogs, and keep audit-ready evidence, so the next statistics report cites the industry, not you.