Coinbase Europe Limited, the European affiliate of the US exchange, has reached a 21.5 million euro ($24.7 million) settlement with the Central Bank of Ireland. The penalty follows the detection of serious technical failures in its transaction monitoring system between 2021 and 2022. The Coinbase Ireland fine for AML failures highlights software deficiencies that compromised its regulatory obligations.
The problem originated from coding errors in Coinbase’s internal compliance software. These errors caused the system to only partially screen some transactions for suspicious activity. Although Coinbase detected the issue through internal testing and fixed it within “a few weeks,” the scale of the breach was significant. According to a report by the Irish Independent, the value of affected transactions exceeded $202 billion, representing 31% of Coinbase Europe’s total volume during that period. Following the review, Coinbase filed 2,700 suspicious transaction reports (STRs) totaling $15 million, although these reports do not confirm illicit activity.
The central bank based the fine on Coinbase’s average annual revenue in Ireland between 2021 and 2024, estimated at $480 million. As a registered Virtual Asset Service Provider (VASP), Coinbase must maintain robust Anti-Money Laundering (AML) systems. The flaw was specific: three coding errors in five of the 21 monitoring “scenarios” failed to screen certain crypto addresses separated by special characters.
Are Coinbase’s new measures sufficient for its European MiCA hub?
The fine comes at a critical time, as Coinbase officially selected Ireland in 2023 as its European Union operations hub. This headquarters will be key to operating under the new MiCA regulation across all 27 member states. Following the fine, Coinbase stated it has enhanced oversight and compliance testing. This includes stricter pre-deployment reviews and expanded scenario testing to detect evolving high-risk activity.
The $24.7 million settlement closes a costly incident for the platform. The Coinbase Ireland fine for AML failures underscores the critical importance of software integrity in the era of regulated blockchain. Although self-detection was a mitigating factor, the scale of the failure ($202B) demonstrates the severity of operational risk that the Irish regulator is unwilling to overlook.
