Coinone slapped with $3.5M fine and 3‑month ban as South Korea tightens crypto grip
South Korea has intensified its regulatory offensive on the digital asset industry, handing local exchange Coinone a multimillion-dollar penalty and a temporary shutdown over anti-money laundering (AML) failures.
The country’s Financial Intelligence Unit (FIU), the agency in charge of enforcing AML rules and operating under the Financial Services Commission (FSC), fined Coinone 5.2 billion won (around $3.5 million). Alongside the fine, regulators ordered a three‑month suspension of parts of the exchange’s business, effectively halting core operations for a quarter of the year.
Coinone faulted for massive KYC and transaction lapses
The FIU’s investigation concluded that Coinone had failed to properly verify customer identities in roughly 70,000 instances. In a jurisdiction where “real-name” verification and strict know‑your‑customer (KYC) controls are mandatory for digital asset platforms, that scale of non‑compliance is seen as a major red flag.
Authorities also alleged that Coinone facilitated some 10,000 transactions connected to 16 overseas virtual asset service providers that were not registered with South Korean regulators. Under current rules, domestic exchanges are expected to avoid transacting with unregistered foreign platforms in order to reduce the risk of money laundering, sanctions evasion, and other illicit flows.
South Korean AML guidelines require exchanges to:
– Verify the real identities of users before enabling trading or withdrawals
– Monitor and report transactions above specified thresholds
– Flag and report any activity that appears suspicious or inconsistent with a user’s profile
According to regulators, Coinone fell short on multiple fronts, triggering not just financial penalties but also operational restrictions designed to force a reset of its compliance procedures.
A smaller fine than rivals, but a loud warning
While a $3.5 million fine and three‑month suspension are serious measures, Coinone’s punishment is actually modest compared to actions taken against its larger competitors.
In January 2026, the FIU levied a 35.2 billion won (about $24 million) fine on Upbit, South Korea’s largest crypto exchange, for a series of AML breaches. Upbit was found to have:
– Accepted photocopies of identity documents instead of original or properly verified IDs
– Processed over 3 million transactions without sufficient KYC verification
– Failed to report certain suspicious dealings to authorities
Upbit was also hit with a three‑month operational suspension, underscoring that even market leaders are not shielded from aggressive enforcement.
Bithumb’s costly mistake and stricter internal control demands
The regulatory clampdown escalated further in March, when Bithumb, another major Korean exchange, suffered a high‑profile operational mishap. The platform accidentally transferred the equivalent of $43 billion in Bitcoin-around 14 times the BTC it actually held in reserves.
Although the incident did not imply that Bithumb possessed that volume of Bitcoin, the error exposed serious weaknesses in the company’s internal controls and risk management systems. Regulators seized on the event to conduct a deeper probe into Bithumb’s processes, including its AML framework.
The outcome was a 36.5 billion won (roughly $24.5 million) fine and a six‑month suspension of operations, making Bithumb’s punishment one of the harshest in the local industry to date.
In the aftermath, the government instructed all licensed exchanges to implement near‑real‑time verification of user asset balances-specifically, checks every five minutes. This requirement aims to prevent misreporting of reserves, reduce operational errors at scale, and ensure that customer holdings are accurately accounted for at all times.
The FSC has also floated the idea of an additional penalty mechanism: a 10% revenue-based fine for exchanges that experience security breaches. If adopted, this would tie penalties directly to platform size, making the cost of data leaks or hacks particularly painful for large, profitable players.
South Korea’s crypto market: huge, but heavily policed
Despite the increasingly strict regulatory climate, South Korea remains one of the world’s most significant digital asset hubs. Analytics firm Chainalysis ranks the country as the second-largest crypto market in the Asia-Pacific (APAC) region, behind only India.
A key factor behind this growth is the Virtual Asset User Protection Act, implemented in 2024. The law introduced a clearer framework for:
– Licensing and supervising exchanges
– Protecting customer deposits and segregating client funds from company assets
– Establishing minimum standards for cybersecurity and internal controls
– Defining obligations around AML, KYC, and transaction monitoring
The act has helped legitimize crypto as a regulated financial product category in South Korea, attracting both retail traders and institutional participants. However, it has also raised the bar for compliance. Platforms that fail to align with the new expectations are quickly discovering that fines, suspensions and reputational damage are now the norm, not the exception.
Why regulators are zeroing in on AML failures
South Korea’s focus on AML within the crypto sector isn’t happening in a vacuum. Policymakers are concerned about:
– The potential use of crypto for cross‑border money laundering
– Links between digital assets and North Korean hacking or sanctions evasion
– Retail investors being drawn into fraudulent schemes masked as legitimate trading activity
By vigorously enforcing AML standards, authorities are trying to close loopholes that could be exploited by bad actors and, at the same time, demonstrate to global partners that South Korea is aligned with international norms such as those promoted by the Financial Action Task Force (FATF).
In that context, Coinone’s incomplete identity checks and transfers routed through unregistered foreign exchanges look particularly problematic. Regulators see such gaps as systemic vulnerabilities, not just technical oversights.
What Coinone’s suspension means for users and the industry
A three‑month suspension can have several knock‑on effects:
– User disruption: Customers may face restrictions on deposits, withdrawals, or trading, depending on the scope of the suspension order and any grace periods regulators allow.
– Market share shifts: Traders often migrate to competing platforms when an exchange is under sanction, potentially reshaping market dominance among local players.
– Liquidity concerns: Reduced activity on one platform can temporarily affect liquidity and spreads for certain pairs, especially those heavily concentrated on that venue.
At the same time, other exchanges will likely use this episode as a cautionary tale, accelerating improvements in their monitoring tools, onboarding processes, and automated compliance checks to avoid a similar fate.
Compliance as a competitive edge
In a maturing market like South Korea’s, regulatory compliance is no longer just a defensive necessity-it is quickly becoming a competitive differentiator. Exchanges that can demonstrate robust controls, transparent operations, and strong AML performance may enjoy:
– Easier access to banking and payment partners
– Better standing with institutional investors
– Greater trust from retail users wary of sudden suspensions or platform failures
Coinone’s case reinforces this message. While the monetary fine is significant, the longer‑term impact on user trust, partnerships, and future growth could be even more costly if the exchange fails to convincingly overhaul its controls.
The broader trend: from “light-touch” to “bank‑grade” regulation
What is unfolding in South Korea mirrors a global shift. As digital asset markets move from a speculative niche to a mainstream financial segment, regulators are increasingly demanding:
– Bank‑grade KYC onboarding
– Real‑time AML transaction surveillance
– Detailed audit trails and record‑keeping
– Clear accountability for compliance failures at the executive level
For exchanges operating in South Korea, the message is especially clear: the days of minimal oversight are over. The authorities are prepared to temporarily shut down even the largest and most established platforms to send a strong signal.
What exchanges need to do next
To navigate this environment and avoid the fate of Coinone, Upbit, and Bithumb, crypto platforms in South Korea will need to:
– Invest heavily in AML and KYC technologies, including AI‑driven monitoring tools
– Regularly audit their own compliance procedures and internal controls
– Maintain ongoing training for staff dealing with high‑risk transactions and customer vetting
– Establish clear lines of governance so that compliance responsibilities are not siloed or ambiguous
The Coinone enforcement action serves as another milestone in South Korea’s attempt to reconcile the rapid growth of its crypto market with the need for investor protection and financial integrity. Exchanges that fail to adapt are likely to face escalating penalties, while those that embrace the new standards may emerge as the long‑term winners in one of the world’s most dynamic digital asset ecosystems.