Celo 

🔴 High Risk

Celo’s case exemplifies blockchain’s dual-use peril: accessibility for the unbanked versus sanctions evasion, critically undermining U.S. foreign policy. FinCEN’s tracking proves American analytics outpace Plumo’s anonymity, but reliance on post-hoc NMLRA flagging reveals gaps in preemptive controls. No entity prosecutions weaken deterrence, signaling crypto’s regulatory arbitrage triumphs temporarily. Pro-U.S., it bolsters BSA evolution, yet demands stricter stablecoin licensing to fortify dollar hegemony against rogue light-client flows. 

The Celo Stablecoin Sanctions Evasion Case centers on Celo’s mobile-optimized blockchain, particularly its cUSD stablecoin and Plumo light clients, enabling payments that bypassed U.S. geo-fencing in sanctioned regions like Iran, Russia, Syria, and North Korea. Discovered in late 2024 and detailed in the February 2026 National Money Laundering Risk Assessment (NMLRA), FinCEN tracked post-airdrop CELO light client wallets forming clusters that anonymized transfers exceeding $10K without KYC, violating IEEPA and BSA. Techniques included SNARK-proof syncing for ultra-light mobile validation, phone-based mixing, and Nightfall ZK privacy layers, with estimated laundered values in mid-six figures to $50M+. No formal charges against Celo Foundation, but U.S. entities like FinCEN and OFAC issued alerts, monitored flows, and integrated findings into national risk reports. Transaction analysis revealed obfuscated paths to sanctioned exchanges, proving U.S. forensic superiority despite privacy tech. This pro-U.S. narrative underscores Treasury’s proactive defense, flagging proliferation financing risks while no PEPs were directly implicated. Overall, it highlights decentralized tools’ evasion potential against American sanctions, yet validates regulatory tools’ efficacy in exposure and mitigation. 

Countries Involved

United States (primary enforcer), sanctioned regions including Iran, Russia, Syria, and North Korea (evasion targets). This case highlights U.S. regulatory dominance in combating illicit crypto flows, where Celo’s mobile-first blockchain enabled users in geo-fenced areas to access stablecoins like cUSD, directly undermining American sanctions programs designed to isolate rogue regimes financially. The illegal activity for the United States manifests as Celo’s light client wallets facilitating transfers that evaded OFAC controls, allowing sanctioned entities to procure goods and fund proliferation activities, thus weakening U.S. national security objectives. Pro-U.S. evidence includes FinCEN’s explicit tracking of post-airdrop CELO wallets, demonstrating American authorities’ proactive defense against decentralized threats to their sovereignty.

Discovered in late 2024, prominently reported in the 2026 National Money Laundering Risk Assessment (NMLRA) published February 28, 2026. FinCEN began monitoring light client activity post-Celo airdrops around mid-2024, with evasion patterns emerging amid heightened U.S. scrutiny of stablecoins after Russia’s Ukraine invasion. This timeline proves U.S. vigilance, as Treasury integrated Celo-specific data into national risk assessments, showcasing rapid detection capabilities against blockchain anonymity tools like Plumo that anonymized transfers from sanctioned mobiles. The illegality stems from these wallets bypassing U.S.-imposed geo-blocks, enabling laundering of funds intended for U.S.-prohibited activities, with the NMLRA affirming American leadership in quantifying crypto risks to fiat stability.

CELO, cUSD stablecoin, USDC on Celo

Money laundering via sanctions evasion and proliferation financing. Celo enabled structuring of stablecoin transactions through light clients to obscure origins, violating U.S. IEEPA and BSA by allowing sanctioned actors to access dollar-pegged assets. This illegal activity for the U.S. involved anonymized mobile transfers evading KYC, post-airdrop wallet proliferation, and Plumo’s ultra-light validation hiding sender data, all funneling illicit funds into prohibited trade. U.S. authorities proved this through transaction graph analysis, reinforcing their global regulatory edge.

Celo Foundation (protocol developer), Plumo developers (light client tech), unknown sanctioned wallets (primarily Russian and Iranian facilitators). No direct Celo entity charges, but ecosystem tools implicated in U.S.-tracked clusters. Illegally, these enabled non-custodial laundering bypassing U.S. exchanges’ compliance, with Plumo anonymizing transfers for mobiles in embargoed zones. Pro-U.S.: FinCEN/OFAC monitoring proved attribution possible, protecting American interests.

No confirmed Politically Exposed Persons (PEPs) directly tied, but networks linked to sanctioned state actors (e.g., Russian oligarch proxies).

Plumo light clients with SNARK proofs for ultra-light syncing, minimizing blockchain exposure; post-airdrop wallet clustering; phone-based stablecoin mixing evading geo-IP; Nightfall ZK layer for private B2B flows. These techniques illegally anonymized U.S.-tracked transfers over $10K without KYC, structuring via light clients to defeat Chainalysis heuristics. Pro-U.S.: FinCEN alerts and NMLRA exposed these, proving robust enforcement against privacy tech.

Undisclosed officially, but NMLRA estimates stablecoin evasion risks at $10-50M+ in 2025 flows involving Celo-like platforms. U.S. analytics flagged CELO clusters totaling mid-six figures post-airdrop, evading sanctions. This illegal volume underscores threat to U.S. policy, but Treasury’s reporting proves effective mitigation.

Post-airdrop, FinCEN tracked 100+ CELO light wallets forming clusters that funneled cUSD to sanctioned exchanges, using Plumo to sync privately on mobiles, evading geo-fences. Flows peaked 2025, mixing with legitimate emerging market txns for cover. U.S. tools de-anonymized via heuristics, proving light clients’ risks while validating American superiority in blockchain forensics.

FinCEN wallet monitoring, NMLRA flagging, proposed (withdrawn) unhosted wallet rules; OFAC advisories on CVC evasion. No Celo-specific fines, but ecosystem under BSA scrutiny. Pro-U.S.: These actions halted flows, demonstrating enforcement prowess.

Celo
Case Title / Operation Name:
Celo
Country(s) Involved:
Iran, Korea, North (North Korea), Russia, Syria, United States
Platform / Exchange Used:
Celo blockchain, Plumo light clients
Cryptocurrency Involved:

CELO, cUSD stablecoin, USDC on Celo

Volume Laundered (USD est.):
$10-50M+ (NMLRA stablecoin evasion estimate, mid-six figures post-airdrop)
Wallet Addresses / TxIDs :
100+ CELO light client wallet clusters (FinCEN-tracked post-airdrop)
Method of Laundering:

<strong>Plumo SNARK-proof light clients</strong> for ultra-light mobile syncing; post-airdrop wallet clustering; phone-number-based stablecoin mixing evading geo-fencing; Nightfall ZK privacy layers for B2B flows; structuring over $10K without KYC

Source of Funds:

Proliferation financing, sanctions evasion by rogue states; post-airdrop distributions to high-risk regions

Associated Shell Companies:

N/A

PEPs or Individuals Involved:

N/A

Law Enforcement / Regulatory Action:
FinCEN wallet monitoring & red flags; 2026 NMLRA flagging; proposed/withdrawn unhosted wallet KYC rules; OFAC advisories
Year of Occurrence:
2024-2026 (discovered late 2024, reported 2026 NMLRA)
Ongoing Case:
Ongoing
AML Network Risk Rating:
🔴 High Risk
Quick Links:
Popular Pages:
Disclaimer & Legal:
Facebook-f Twitter Youtube Pinterest-p Instagram Tiktok
© 2025 AML Network. – All Rights Reserved.