ACAMS Updated CAMS Exam Questions and Answers by mimi

MSBsarehigh-risk for financial crime, requiringstrict AML controls.

Option D (Correct):Hesitancy to provide beneficiary informationis astrong indicator of illicit financial activity.

Option E (Correct):Using multiple accounts under different namesis aknown money laundering technique.

Option A (Incorrect):Currency exchange is common in MSBs, thoughadditional factors must be assessed.

Option B (Incorrect):Large cash deposits are normal for cash-based businesses, butneed further scrutiny.

Option C (Incorrect):Frequent small remittancesare normal, unless linked tostructuring or smurfing.

The activities that could be considered a potential spear phishing scam are:

A courier delivers a duplicate invoice to a business that contains updated payment details of an existing supplier. This could be a way of diverting funds to a fraudulent account by impersonating a legitimate vendor and exploiting the trust relationship between the business and the supplier1.

Payroll receives an external email from an employee looking to update their bank account information. This could be a way of stealing money from the employee or the employer by pretending to be the employee and requesting a change in the payment method or destination2.

An employee receives an email that asks to download an attachment, but the attachment is a malware. This could be a way of infecting the employee’s computer or network with malicious software that could compromise sensitive data, disrupt operations, or demand ransom3.

The other options are not necessarily spear phishing scams, although they may be other types of fraud or deception. For example:

An employee receives a phone call requesting that money be sent to assist someone in trouble. This could be a vishing scam, which is a form of voice phishing that uses phone calls to solicit personal or financial information or to request money transfers4.

A business sends its employees an email warning that email passwords must be changed to prevent cyber-fraud. This could be a legitimate security measure, or it could be a phishing scam, which is a form of email phishing that targets a broad audience and tries to trick them into revealing their credentials or clicking on malicious links.

Members of a religious organization receive a donation request by email claiming to be from their leader. This could be a genuine appeal, or it could be a social engineering scam, which is a form of manipulation that exploits the human factor and relies on the victim’s emotions, trust, or sympathy.

Thelife insurance industryis vulnerable tomoney laundering and terrorist financing, especially when policies allowpayments to unknown third parties.

Option A (Correct):Allowing policyholders to transfer funds tounknown third partiesincreases therisk of money laundering. FATF andEU AML Directiveshighlight life insurance policies as high-risk products.

Option B (Incorrect):Completing KYC does not eliminate risk. Customers can use legitimate insurance products for illicit purposes.

Option C (Incorrect):While governance violations should be addressed, themain concern here is money laundering risk, not the compliance team’s involvement in product development.

Option D (Incorrect):Fast-tracking approvalwithoutproper risk assessmentcreates regulatory and reputational risks.

Paying a large amount in cash for an art purchase is a typical red flag of potential money laundering, as it may indicate an attempt to avoid traceability and reporting requirements. Cash transactions are often used by criminals to launder illicit funds, as they are difficult to track and verify. According to the FATF guidance on money laundering and terrorist financing risks in the art trade, cash payments above a certain threshold should be subject to enhanced due diligence and reporting obligations by art market participants (AMPs). AMPs should also be wary of customers who provide insufficient or inconsistent information about the source of funds, the purpose of the transaction, or the identity of the beneficial owner.