http://blog.cryptsy.com/We do, however, fully comply with our Federal MSB requirements. This includes filing SAR (Suspicous Activity Reports) and CTR (Currency Transaction Reports). We also have one of the most extensive KYC programs in the industry, scrub accounts against the OFAC list, and perform Transaction Monitoring. At a federal level, we are compliant.
https://en.wikipedia.org/wiki/Suspicious_activity_reportIn the United States, FinCEN requires that an SAR be filed by a financial institution when the financial institution suspects insider abuse by an employee; violations of law aggregating over $5,000 where a subject can be identified;[clarification needed] violations of law aggregating over $25,000 regardless of a potential subject; transactions aggregating $5,000 or more that involve potential money laundering or violations of the Bank Secrecy Act; computer intrusion; or when a financial institution knows that a customer is operating as an unlicensed money services business.
Each SAR must be filed within 30 days of the date of the initial determination for the necessity of filing the report. An extension of 30 days can be obtained if the identity of the person conducting the suspicious activity is not known. At no time, however, should the filing of an SAR be delayed longer than 60 days. The Bank Secrecy Act specifies that each firm must maintain records of its SARs for a period of five years from the date of filing.
http://blog.cryptsy.com/Some may ask why we didn’t report this to the authorities when this occurred, and the answer is that we just didn’t know what happened, didn’t want to cause panic, and were unsure who exactly we should be contacting.
Paul Vernon: Deposit on Cryptsy, Cryptsy is fun, come right now, don't walk - run!
Paul Vernon: Safe? Darn tootin'! We filing SAR (Suspicous Activity Reports) reports.
Paul Vernon: A year and half ago, over thirteen million dollars worth of cryptocurrencies was stolen from Cryptsy.
Paul Vernon: Why we didn’t report this to the authorities when this occurred? To be Marshall Long et al. honest, we were unsure who exactly we should be contacting.
Paul Vernon: We're reaching out to those of the community we haven't hammer-banned to help us hunt down the person(s) responsible for the
event leaning to
reduction of my... I mean ours... I mean your funds, offering up a reward of 1000 BTC coming out of mine... I mean ours... I mean our clients' pockets, their moneys on account.
http://www.anti-moneylaundering.com/pdf/Example_Fines_and_Penalties.pdfMoney transmitter with 7,500 agents. San Fernando, California. Failure to establish and implement an anti-money laundering program. Structuring. Failure to control and supervise agents. Failure to report Suspicious Transactions (SARs). Fine $12,000,000.
$13,000,000 - $12,000,000 =
? 
"Don't know! Mongo only pawn in game of life.
