AUSTRAC timelines matter: obligations started 1 July 2026 and enrolment for newly regulated entities is due by 29 July 2026.
Get practical help
AGAMLGURU

AUSTRAC Enforcement Case Studies

Why Acting Early on AML/CTF Compliance Matters

Australia's AML/CTF regulator, AUSTRAC, has taken significant enforcement action against businesses that failed to meet their obligations.

These real-world cases highlight the financial, operational, and reputational consequences of non-compliance โ€” and why newly regulated businesses must act early.

Case Study 1: Commonwealth Bank of Australia (CBA)

Outcome: Civil penalty of $700 million (2018)

What happened: AUSTRAC action against Commonwealth Bank of Australia identified:

  • Failure to report over 53,000 threshold transactions
  • Delays in suspicious matter reporting
  • Inadequate transaction monitoring systems
  • Exposure to serious criminal activity risks

Official AUSTRAC reference

What this means for your business (Tranche 2):

Even if you are a smaller business, the expectation is the same โ€” you must have systems to identify and report transactions, ensure reporting is timely and accurate, and not rely on manual or inconsistent processes.

๐Ÿ‘‰ Key takeaway: Weak systems = high regulatory risk

Case Study 2: Westpac Banking Corporation

Outcome: Civil penalty of $1.3 billion (2020)

What happened: AUSTRAC found serious breaches by Westpac Banking Corporation, including:

  • Failure to report 23 million international transfers
  • Weak risk assessment of correspondent banking
  • Delays in reporting suspicious matters
  • Transactions linked to child exploitation risks

Official AUSTRAC reference

What this means for your business (Tranche 2):

You may not process millions of transactions, but missing reporting obligations (even at small scale) is still a breach. High-risk scenarios (e.g. complex ownership, overseas links) must be assessed. Ignoring risks can lead to severe consequences.

๐Ÿ‘‰ Key takeaway: Scale doesnโ€™t matter โ€” failure to report is a breach

Case Study 3: Crown Resorts (Crown Melbourne & Crown Perth)

Outcome: Civil penalty of $450 million (2023)

What happened: AUSTRAC action against Crown Resorts identified:

  • Failure to assess money laundering risks properly
  • Inadequate ongoing customer due diligence
  • Poor monitoring of high-risk customers
  • Weak governance and oversight

Official AUSTRAC reference

What this means for your business (Tranche 2):

For real estate agents, lawyers, and accountants: You must understand who your customer really is, monitor ongoing relationships, not just onboarding, and give High-risk clients (e.g. complex trusts, foreign buyers) extra scrutiny.

๐Ÿ‘‰ Key takeaway: Poor customer due diligence = major exposure

Case Study 4: Star Entertainment Group

Outcome: Civil penalty of $100 million (2024)

What happened: AUSTRAC proceedings against Star Entertainment Group found:

  • Serious AML/CTF program failures
  • Ineffective transaction monitoring
  • Failure to manage high-risk customers
  • Governance breakdowns

Official AUSTRAC reference

What this means for your business (Tranche 2):

Your AML/CTF program must be documented and implemented (not just a policy document), actively used in day-to-day operations, and supported by clear accountability and oversight.

๐Ÿ‘‰ Key takeaway: A โ€œpaper programโ€ is not enough

Case Study 5: Tabcorp Holdings Limited

Outcome: Civil penalty of $45 million (2017)

What happened: AUSTRAC found that Tabcorp Holdings Limited:

  • Failed to report suspicious matters over several years
  • Had inadequate AML/CTF controls
  • Did not properly assess risks

Official AUSTRAC reference

What this means for your business (Tranche 2):

For professional service firms: You must identify suspicious behaviour early, have clear escalation processes, and staff must know when and how to report.

๐Ÿ‘‰ Key takeaway: Failure to report suspicious activity is a core breach

Key Patterns Across All Cases

Across all enforcement actions, AUSTRAC consistently identified:

  • No effective AML/CTF program
  • Poor customer due diligence
  • Failure to report suspicious matters
  • Weak governance and accountability
  • Delays in fixing known issues

What This Means for Your Business (Tranche 2 Entities)

If you are a Real estate agent, Accountant, Lawyer or conveyancer you are entering a regulated environment for the first time. You will be expected to:

  • Understand whether you provide designated services
  • Identify your customers and beneficial owners
  • Assess risk (low, medium, high)
  • Apply appropriate customer due diligence
  • Monitor transactions and relationships
  • Report suspicious matters on time

Why You Should Act Now

These cases show that AML/CTF compliance is not optional. Delaying action can lead to regulatory penalties, business disruption, reputational damage, and increased scrutiny from banks and partners.

Starting early allows you to build a compliant framework gradually, train staff properly, avoid rushed implementation close to deadlines, and reduce long-term compliance costs.

Not sure how these scenarios apply to your business? Get a tailored AML/CTF readiness assessment for your firm.

Book a Consultation