Estonia AML Risk Report 2025: Key Money Laundering Threats, Crypto Risks, Fraud Trends, and Compliance Priorities

Estonia’s AML Landscape in 2025: What Compliance Leaders Need to Know

The Estonian Financial Intelligence Unit (FIU) Yearbook 2025 presents one of the clearest regulatory warnings currently emerging from Europe’s anti-money laundering ecosystem. Estonia’s Financial Intelligence Unit identifies fraud, sanctions circumvention, crypto-assets, gambling, shell company abuse, and cross-border laundering as the primary financial crime threats shaping the country’s AML environment in 2025.

For AML compliance leaders, MLROs, sanctions professionals, financial institutions, crypto-asset service providers, gambling operators, fintech firms, and regulators, the report provides critical insights into how modern money laundering networks operate and how supervisory expectations are evolving ahead of the next MONEYVAL evaluation cycle.

The FIU concludes that Estonia’s overall money laundering risk remains “medium,” but the complexity, internationalisation, and speed of laundering activity continue to increase significantly.

Estonia’s Money Laundering Risk Profile in 2025

The Estonian FIU states that the country’s primary money laundering threat continues to stem from the layering of proceeds originating from predicate offences committed abroad. Criminal networks increasingly use Estonian entities, bank accounts, crypto infrastructure, and intermediaries to move illicit funds across jurisdictions before integrating them into the legitimate economy.

The report highlights three core stages of laundering activity:

• Placement

• Layering

• Integration.

According to the FIU, laundering methods have evolved considerably over the last five years. Criminals now routinely:

• Use up to ten bank accounts across multiple countries

• Employ unrelated individuals and straw persons

• Layer transactions through virtual assets

• Split large transfers into smaller structured amounts

• Move funds through complex international transaction chains.

The FIU warns that money laundering increasingly operates as a professionalised service industry, involving specialised laundering facilitators linked to crypto-assets, online gambling, trade-based schemes, and shell company structures.

Estonia’s National AML/CFT Risk Assessment

On 30 September 2025, Estonia’s AML/CFT Governmental Committee approved a three-part national risk assessment covering money laundering, terrorist financing, and proliferation financing risks.

The assessment involved:

• Nearly 120 experts from public and private sectors

• Almost 20 FIU officials

• Multiple supervisory and investigative authorities.

The assessment found that the sectors with the highest AML vulnerabilities were:

• Gambling operators

• Virtual currency service providers

• Company service providers

• Credit institutions

• Payment institutions

• Management companies.

Highest-Risk Sectors

Gambling Operators

The gambling sector received the highest residual risk assessment in the report, with:

• Medium-high threat level

• Medium-high vulnerability

• High residual risk.

The FIU specifically warned about remote gambling operators managed abroad but registered in Estonia. Many transactions involve non-residents and counterparties located in high-risk jurisdictions.

Virtual Currency Service Providers (VASPs)

Crypto-assets remain a central money laundering concern despite Estonia dramatically reducing the number of licensed providers:

• Mid-2021: 641 authorised VASPs

• 2025: only 36 active providers remain.

The FIU explains that crypto-related risks remain elevated because of:

• High transaction volumes

• Non-resident customers

• Weak international KYC controls

• Nested service relationships

• Weak monitoring capabilities globally.

The report also identifies increasing “transaction nesting” risks where:

• VASPs provide services to other VASPs

• Crypto firms service payment intermediaries

• Crypto platforms support remote gambling operators.

The FIU notes that responsibility for crypto supervision will transfer to Estonia’s Financial Supervision Authority from July 2026 under the EU’s broader crypto regulatory framework.

Company Service Providers

The FIU identifies company service providers as one of the country’s most vulnerable AML sectors due to weak understanding of gatekeeper obligations and beneficial ownership risks.

Key concerns include:

• Concealment of beneficial owners

• Use of fictitious addresses

• Nominee directors

• Weak due diligence procedures

• Poor risk awareness.

Fraud Has Become Estonia’s Biggest AML Threat

One of the strongest warnings in the FIU Yearbook concerns the explosion of fraud-related crime.

The report states that in 2025:

• Fraud losses doubled compared to 2024

• Known fraud losses reached €29 million

• Actual losses are believed to be significantly higher.

The FIU describes fraud as operating at “epidemic” levels and notes that fraud networks are becoming more widespread and sophisticated than traditional organised crime structures.

The report explains that Estonian individuals and companies are frequently used as intermediary laundering channels for fraud committed abroad. Criminal proceeds are rapidly transferred internationally before victims report the crimes.

Fraud-related laundering often involves:

• Cross-border payment networks

• Crypto-assets

• Fast-payment systems

• Shell companies

• Straw persons

• Layered transaction chains.

To strengthen national response capabilities, Estonia established a fraud prevention steering group involving the Police and Border Guard Board and the FIU.

Main Predicate Offences Driving Money Laundering

The FIU identified the following predicate offences behind laundering cases analysed in 2025:

• Fraud: 20%

• Tax offences: 12%

• Circumvention of sanctions: 8%

• Embezzlement: 6%

• Drug-related offences: 4%

• Corruption: 4%

• Human trafficking: 1%

• Illegal economic activities: 3%

• Terrorist financing suspicions: 3%

• Other offences: 6%

• Unidentified predicate crimes: 33%.

The report also notes growing concern regarding:

• E-commerce VAT fraud

• Intra-community VAT fraud

• Tax evasion using Estonian companies

• International sanctions evasion schemes.

Reporting Trends and STR Statistics in 2025

In 2025, Estonia’s FIU received:

• 14,323 total reports

• Including 10,443 suspicious or unusual transaction reports.

Breakdown of Reports

The FIU received:

• 8,035 Suspicious Transaction Reports (STRs)

• 1,696 Unusual Activity Reports

• 712 Unusual Transaction Reports

• 138 Terrorist Financing Reports

• 455 International Sanctions Reports

• 621 Inquiries

• 2,666 Cash Transaction Reports.

Reporting Performance by Sector

Credit Institutions

Banks demonstrated the strongest reporting culture:

• 13 of 14 banks submitted reports

• Banks accounted for over 40% of all reports.

Virtual Asset Service Providers

• 60% of VASPs submitted reports.

Gambling Operators

• 40% of operators submitted reports.

Company Service Providers

The FIU expressed serious concern that

• Only 6% of company service providers submitted reports.

FIU’s Biggest Concern: Late Reporting

The report repeatedly highlights delayed detection and delayed reporting as one of the biggest operational failures within Estonia’s AML ecosystem.

The FIU states that many suspicious activities are detected only after

• Funds have already left accounts

• Layering has completed

• Assets have been dissipated

• International transfers have occurred.

The authority stresses that timely reporting is essential to the following:

• Freeze assets

• Disrupt laundering chains

• Enable criminal confiscation

• Support operational investigations.

FIU Enforcement and Intelligence Statistics

The Estonian FIU disclosed:

• 147 analysed disclosures involving 311 reports

• 1,109 disclosures linked to 2,058 reports and cross-border information

• 232 outgoing foreign inquiries/disclosures

• 589 incoming foreign inquiries/disclosures.

Criminal Proceedings Initiated

Based on FIU intelligence:

• 15 criminal proceedings were initiated in 2025

• Compared to 10 in 2024.

The FIU states that:

• 75% of disclosures contained intelligence previously unknown to investigative authorities

• Nearly one-quarter directly supported criminal proceedings.

Asset Freezing and Administrative Confiscation

The FIU imposed:

• 6 thirty-day restrictions involving approximately €124,000

• 2 sixty-day restrictions involving approximately €14,000

• No 365-day restrictions.

The report notes:

• €18,200 transferred to state revenue through compliance notices

• €1.24 million attached in criminal proceedings.

However, the FIU openly acknowledges that Estonia’s confiscation performance remains weak compared to regional peers.

The report contrasts Estonia’s annual confiscation levels of roughly €4–6 million with Latvia’s €320 million confiscated over five years.

International Cooperation and Cross-Border Risks

The FIU emphasises that money laundering is overwhelmingly international in nature.

The countries most involved in operational cooperation with Estonia included:

• United States

• Malta

• Latvia

• Finland

• Lithuania

• Belgium

• Germany

• Poland

• Ukraine

• Spain.

Foreign FIUs repeatedly identified:

• Estonian companies linked to tax fraud

• Fraud proceeds entering Estonian accounts

• E-commerce VAT fraud

• Cross-border sanctions evasion schemes.

Sanctions Evasion and Russia-Linked Risks

The report places strong emphasis on sanctions circumvention connected to Russia.

Key developments included:

• EU 16th sanctions package

• EU 17th sanctions package

• EU 18th sanctions package

• EU 19th sanctions package.

The FIU highlighted the addition of crypto exchange Garantex to EU sanctions lists and noted that Garantex Europe OÜ previously held Estonian authorisation.

The report also described a major laundering case involving:

• Sanctioned goods sold to Russia

• Hong Kong entities

• Montenegro banking channels

• Straw persons

• Real estate integration

• Layered international transfers.

MONEYVAL, FATF, and Grey List Concerns

The FIU warns that Estonia narrowly avoided FATF grey-listing during previous evaluation cycles.

The report cites IMF estimates that FATF grey-listing can reduce GDP by:

• 4.6% to 10.6%.

The FIU warns of additional consequences:

• Higher borrowing costs

• Reduced correspondent banking access

• Reduced foreign investment

• Difficulties opening international accounts.

Estonia’s next MONEYVAL evaluation is expected around:

• 2030–2031.

Key AML Compliance Lessons for Financial Institutions and Regulated Entities

The Estonian FIU Yearbook 2025 provides several critical lessons for AML compliance professionals globally.

1. Fraud Is Now a Core AML Threat

Fraud-related laundering is growing faster than traditional organised crime and increasingly depends on international financial infrastructure.

2. Crypto Risks Remain Systemic

Even with licensing reforms, crypto-assets continue to present major laundering and sanctions evasion risks.

3. Reporting Must Become Faster

Delayed STR submissions significantly reduce opportunities for intervention and confiscation.

4. Company Formation Risks Remain High

Weak beneficial ownership controls continue enabling cross-border criminal abuse.

5. Remote Gambling Requires Enhanced Oversight

Cross-border online gambling structures present growing AML vulnerabilities.

6. International Cooperation Is Essential

Modern laundering networks operate across multiple jurisdictions simultaneously, making FIU cooperation indispensable.

7. AML and Sanctions Compliance Are Converging

The report repeatedly demonstrates how sanctions evasion and money laundering increasingly overlap operationally.

Final Thoughts

The Estonian FIU Yearbook 2025 reflects the reality of modern financial crime: fast-moving, international, digitally enabled, and deeply interconnected with fraud, sanctions evasion, crypto-assets, and shell company abuse.

For AML compliance leaders, the report reinforces the need for:

• Real-time transaction monitoring

• Better beneficial ownership verification

• Stronger sanctions screening

• Cross-border intelligence sharing

• Enhanced crypto risk controls

• Earlier suspicious activity detection

• Faster escalation and reporting frameworks.

As Europe moves toward the AMLA era and tighter supervisory convergence, the themes identified in Estonia’s AML environment are likely to become increasingly relevant across the broader global financial system.