Australia’s financial intelligence agency has ordered a forensic audit of Airwallex, the $8 billion fintech darling, over serious concerns about its anti-money laundering controls.
The Australian Transaction Reports and Analysis Centre (AUSTRAC) announced on 22 January 2026 that it would appoint an independent auditor to examine whether the payment platform has been meeting its obligations under national security laws. The move comes barely a week after Airwallex announced its acquisition of South Korean fintech Paynuri.
AUSTRAC suspects the company’s transaction monitoring systems may not be adequately identifying suspicious money flows through its global payments network.
What Triggered the Investigation
The regulator expressed concern that Airwallex Designated Business Group has failed to properly define its customer base or clarify its reporting responsibilities. This creates blind spots that criminals could exploit.
AUSTRAC Chief Executive Brendan Thomas said external audits are deployed when regulators suspect serious non-compliance.
“We take this action where we suspect serious non-compliance, because we expect businesses to be actively managing their AML/CTF obligations,” Thomas stated.
“Our concerns also extend to how well Airwallex identifies and reports on suspicious matters and the effective oversight of these important obligations.”
The audit order specifically targets:
- Whether Airwallex maintains a compliant AML/CTF programme
- The effectiveness of its customer due diligence processes
- Transaction monitoring across international fund transfers
- Suspicious matter reporting procedures
- Internal governance over compliance obligations
AUSTRAC headquarters in Sydney oversees compliance with Australia’s anti-money laundering laws [AUSTRAC]
Section 162 Powers Invoked
The auditor will be appointed under Section 162 of the Anti-Money Laundering and Counter-Terrorism Financing Act 2006. This provision gives AUSTRAC authority to compel independent reviews when it suspects a reporting entity is failing to meet its legal duties.
The audit must be completed within 180 days. Airwallex will foot the bill for the entire examination.
Critically, the findings will determine whether AUSTRAC pursues further enforcement action, which could include civil penalties running into millions of dollars.
This action mirrors regulatory pressure facing traditional banks. Bendigo Bank recently faced a $50 million capital charge after AUSTRAC launched an enforcement investigation into its own AML failures.
Airwallex Responds as Korean Deal Closes
Hours after the AUSTRAC announcement, Airwallex confirmed it acquired South Korea’s Paynuri on 22 January 2026. The acquisition gives Airwallex local payment licences and foreign exchange business registration to operate directly in South Korea.
The company said it would “fully cooperate” with the external auditor review.
An Airwallex spokesperson noted that an independent auditor had validated its Australian programme in 2025, following a previous AUSTRAC audit in 2024. The company did not elaborate on what changes resulted from that earlier review.
The timing is awkward. Airwallex just raised $330 million in December 2025 at an $8 billion valuation, establishing San Francisco as a dual global headquarters alongside Singapore. The funding round attracted blue-chip investors including T. Rowe Price, Addition, and Robinhood Ventures.
The $8 Billion Fintech Under Scrutiny
Founded in Melbourne in 2015, Airwallex processes cross-border payments for over 200,000 businesses worldwide. The platform enables companies to accept payments, issue corporate cards, manage multi-currency accounts, and conduct international money transfers.
Recent performance metrics highlight its rapid growth:
- $1 billion in annualised revenue (October 2025)
- $235 billion in transaction volume
- 90 percent year-on-year revenue growth
- Operations in 200+ countries and territories
- 80 licences held globally
Major clients include Rippling, BILL, Brex, Deel, and Qantas. The company competes directly with Stripe, Wise, and traditional banking payment rails.
Airwallex holds payment licences in multiple jurisdictions including the United States, European Union, United Kingdom, and across Asia-Pacific. It secured a payment institution licence in Brazil and acquired MexPago in Mexico as part of its Latin American expansion.
Airwallex employs over 2,000 people across 26 offices globally [Airwallex]
Regulatory Scrutiny Intensifies Across Fintech
The AUSTRAC action comes as Australia prepares for sweeping reforms to its AML/CTF regime. From 31 March 2026, existing reporting entities face stricter programme requirements with greater emphasis on risk-based controls.
New “Tranche 2” regulations from 1 July 2026 will bring accountants, lawyers, real estate agents, and trust service providers under AUSTRAC oversight for the first time. This expands the regulatory net to over 80,000 additional businesses.
The reforms shift focus from compliance-based approaches to outcomes-oriented frameworks. Companies must identify and assess money laundering, terrorism financing, and proliferation financing risks specific to their operations.
Financial services companies facilitating international payments face heightened scrutiny. Cross-border money flows create exposure to sanctions evasion, trade-based money laundering, and terrorism financing networks.
AUSTRAC has made clear it expects payment platforms to maintain robust transaction monitoring systems that can detect suspicious patterns in real time. The regulator wants companies to clearly define customer segments and tailor due diligence procedures accordingly.
What Happens Next
The independent auditor will examine Airwallex’s policies, procedures, systems, and controls across its Australian operations. This includes reviewing:
- Customer onboarding and identification processes
- Ongoing due diligence on existing accounts
- Transaction monitoring rules and thresholds
- Suspicious matter reporting workflows
- Staff training and awareness programmes
- Governance structures for AML/CTF oversight
The auditor must report findings directly to AUSTRAC within six months. Based on those findings, the regulator will determine whether Airwallex has breached the AML/CTF Act and what sanctions may apply.
Civil penalties for serious contraventions can reach tens of millions of dollars. In 2018, Commonwealth Bank paid $700 million to settle AUSTRAC allegations over 53,000 compliance failures.
Airwallex’s cooperation with the audit will likely influence any enforcement decision. Companies that demonstrate genuine commitment to fixing deficiencies typically receive more lenient treatment than those that resist regulatory oversight.
Industry Context and Implications
Payment platforms have become critical nodes in the global financial system. They process trillions of dollars in cross-border transactions annually, making them attractive targets for criminal networks seeking to move illicit funds.
Regulators worldwide are tightening supervision of fintech payment providers. The Financial Action Task Force, the global AML standard-setter, has identified virtual asset service providers and cross-border payment platforms as higher-risk sectors requiring enhanced oversight.
For Airwallex, demonstrating robust compliance is essential to maintaining its expanding licence portfolio. Any finding of serious non-compliance could trigger reviews by overseas regulators and jeopardise its ability to operate in multiple markets.
The company’s rapid growth strategy depends on regulatory trust. Losing licences in major markets would severely constrain its business model, which relies on direct integration with local payment systems rather than correspondent banking relationships.
Competitors will watch the audit outcome closely. Any enforcement action could reshape compliance expectations across the fintech payments sector and force all players to invest more heavily in AML infrastructure.
Also Read: EU Parliament Suspends US Trade Deal Over Trump’s Greenland Tariff Threats
Investor Outlook
The AUSTRAC audit introduces regulatory uncertainty at a pivotal moment for Airwallex. The company recently signalled intentions to prepare for a public listing, potentially as early as 2026.
Any material findings from the audit could delay IPO plans and impact the company’s valuation. Institutional investors typically demand clarity on regulatory matters before committing to public market offerings.
Airwallex’s December 2025 funding round valued the company at $8 billion, reflecting 30 per cent growth from its Series F round six months earlier. That premium valuation assumes continued regulatory approval for expansion plans.
The company has weathered controversy before. In late 2025, Airwallex faced scrutiny over alleged data sharing with Chinese government officials, prompting it to dilute major Chinese shareholders and establish a US headquarters to address concerns.
For now, the compliance audit represents a test of Airwallex’s operational maturity. Successfully navigating the examination while maintaining business momentum will determine whether the company can sustain its trajectory toward becoming a dominant force in global business payments.
As Australia’s financial regulators demonstrate zero tolerance for AML failures, payment platforms must prove they can scale responsibly while maintaining the controls that keep the financial system safe from criminal exploitation.
