The Monetary Authority of Singapore announced on Thursday that it has imposed financial penalties totalling S$4.8 million on three licensed digital payment token service providers for deficiencies in their anti-money-laundering and counter-terrorism financing controls, following examinations conducted by MAS supervisory teams in the fourth quarter of 2025. The MAS declined to name the firms in its public statement, citing ongoing supervisory engagement, but confirmed that all three hold Major Payment Institution licences under the Payment Services Act and that none has had its licence suspended or revoked as a result of the findings. The aggregate penalty is the largest ever imposed by the MAS on entities in the digital assets sector.
The statement identifies three categories of control failure, each of which has a direct parallel in the traditional banking sector's AML obligations and each of which suggests a compliance function that was not scaled commensurate with the growth in customer activity and transaction volumes. The first is transaction monitoring: the MAS found that all three firms had rule sets that did not adequately detect transactions with attributes — velocity, counterparty profile, jurisdictional pattern — that should trigger enhanced scrutiny under Singapore's Notice PSN02 on Prevention of Money Laundering and Countering the Financing of Terrorism. The second is customer due diligence: the firms had onboarded customers under procedures that did not satisfy the requirements for source of wealth verification applicable to customers transacting above the designated thresholds. The third is suspicious transaction reporting: the firms had identified internally transactions that warranted consideration as potentially suspicious but had not filed Suspicious Transaction Reports with the Suspicious Activity Reporting Office within the required time frame.
The structure of these failures is instructive. They are not exotic or technology-specific: they are the same failures that regional banks and smaller financial institutions have been fined for repeatedly by the MAS and other supervisors over the past decade, now replicated in a sector that received its formal licensing framework only in 2020 and where the compliance culture and institutional muscle memory for financial crime controls is correspondingly less developed. The DPT sector in Singapore grew rapidly between 2021 and 2024, with many of the licensed entities scaling their customer bases faster than their back-office and compliance infrastructure. The MAS had signalled in its 2024 supervisory priorities that AML compliance in the DPT sector would receive increased examination attention; Thursday's announcement represents the output of that commitment.
The broader significance of the action is its precedent for the approximately 37 Major Payment Institution licensees currently operating in Singapore and the larger universe of entities that have applied for but not yet received a licence. The MAS has now demonstrated that DPT licence holders will be held to the same AML standards as traditional payment service providers, that failure to meet those standards results in financial penalties rather than informal supervisory guidance, and that the examination process can identify control failures at a level of specificity that creates direct liability for compliance officers as well as institutions. Singapore has staked a considerable portion of its financial centre ambitions on becoming the pre-eminent regulated digital asset hub in Asia; Thursday's action is a message to the sector that the regulatory compact that underlies that ambition requires genuine compliance — not compliance-adjacent posture — from the institutions operating within it.