Questions for the CCAS were updated on : Dec 01 ,2025
Why should firms monitor “dusting” attacks?
B
Explanation:
Dusting involves sending tiny amounts of crypto to many addresses to later analyze transaction
patterns, potentially deanonymizing users — a privacy and AML concern.
Which scenario most likely indicates active involvement of a customer in scam activities?
C
Explanation:
Directly sending to a scam cluster is a strong indicator of active participation rather than passive
exposure, triggering SAR obligations.
What is “hash rate” in blockchain?
B
Explanation:
Hash rate measures computational power in Proof-of-Work blockchains; higher hash rates mean
more secure networks against 51% attacks.
Which is a core component of customer due diligence (CDD)?
B
Explanation:
CDD includes verifying the customer’s identity using reliable, independent documentation before or
during onboarding.
Which first step should a VASP take upon detecting repeated transactions to a high-risk wallet?
B
Explanation:
EDD and internal review determine whether the activity is suspicious before regulatory reporting or
freezing actions.
Which privacy-enhancing feature hides both the sender and receiver in a transaction?
A
Explanation:
Ring signatures, used in Monero, blend a sender’s transaction with others to obscure sender identity,
increasing AML risk.
Which is an example of “structuring” in crypto transactions?
A
Explanation:
Structuring (smurfing) involves breaking transactions into smaller amounts to evade AML reporting
thresholds, a classic ML tactic.
In sanctions screening, a “fuzzy match” occurs when:
B
Explanation:
Fuzzy matches require further review to confirm whether the match is a true hit or a false positive,
ensuring compliance accuracy.
What is a “smart contract”?
B
Explanation:
Smart contracts execute predetermined conditions automatically on blockchain, enabling
decentralized applications and services.
A politically exposed person (PEP) opens a crypto account. What is the required action?
B
Explanation:
PEPs require enhanced scrutiny under FATF Recommendation 12, including senior management
approval and source of funds verification.
Which governance function is ultimately responsible for approving AML/CFT policies?
B
Explanation:
The Board holds ultimate responsibility for policy approval under DFSA and FSRA AML rules, ensuring
senior-level oversight.
Which is a primary benefit of blockchain transparency for AML compliance?
B
Explanation:
Blockchain’s transparent ledger enables investigators to trace transaction histories indefinitely,
aiding ML/TF detection.
Under FATF guidance, “unhosted wallets” are:
B
Explanation:
Unhosted wallets are self-custody wallets controlled directly by the user without third-party
oversight, posing higher anonymity and AML risks.
Which type of blockchain is jointly operated by multiple pre-approved organizations?
B
Explanation:
Consortium blockchains are semi-private networks where governance is shared among authorized
participants, offering a balance between decentralization and access control.
Which metric is most relevant for assessing liquidity risk in a cryptoasset exchange?
B
Explanation:
Liquidity risk assessment focuses on the ability to execute trades without large price swings, which is
reflected in order book depth and bid-ask spreads.