On June 5, 2026, the U.S. Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN), together with the Federal Deposit Insurance Corporation, Office of the Comptroller of the Currency, and National Credit Union Administration (collectively, the “Agencies”) issued an advisory titled “Joint Advisory on Non-Work Authorized Populations and their Employers and Risks to the Integrity of the U.S. Financial System” (FIN-2026-A002, the “Advisory”). The Advisory urges financial institutions to be vigilant against risks presented by illicit activity involving the employment of non-work authorized populations.
The Advisory arises from President Trump’s May 19, 2026, Executive Order (E.O.) 14406, Restoring Integrity to America’s Financial System, which directed the Secretary of the Treasury to issue an advisory to financial institutions to address risks associated with exploitation of the U.S. financial system by non-work authorized populations and their employers.
The Advisory focuses on two interconnected categories of illicit activity:
Identity Theft. The Advisory notes that “complicit” employers knowingly accept fraudulent identification documents, and unlawful aliens illicitly obtain Social Security numbers (SSNs) and other personally identifiable information of U.S. citizens and lawful permanent residents in order to work in the United States. According to the Agencies, this information is used to pass Form I-9 verification, gain unlawful employment and wages, obtain healthcare benefits, and—based on FinCEN’s analysis of Bank Secrecy Act (“BSA”) reporting—fraudulently access financial services and credit products such as automobile loans. Victims of these identity theft schemes can face higher taxes and denial of healthcare, disability, and tuition benefits.
Payroll Fraud. According to the Agencies, complicit employers conceal Immigration Reform and Control Act (“IRCA”) violations by making off-the-books payments to undocumented workers, thereby evading payroll taxes. FinCEN has observed a significant amount of BSA reporting involving these schemes, with financial institutions reporting over $2.5 billion in suspicious activity associated with these schemes in 2025.
According to FinCEN, these schemes often involve complicit labor brokers who set up shell companies—frequently unregistered money services businesses (“MSBs”)—to provide off‑the-books payroll or payment processor services for complicit employers. Based on FinCEN’s analysis of BSA reporting, complicit labor brokers may also use the shell company to engage in other illicit transactions, such as money laundering for drug trafficking organizations and transnational criminal organizations.
Under existing customer identification program (“CIP”) requirements, financial institutions are required to identify and verify each customer to the extent reasonable and practicable. For non-U.S. persons, one acceptable identifier has been a taxpayer identification number (e.g., ITIN). However, ITINs do not provide evidence of legal status in the United States, authorize recipients to work legally, or serve as identification outside of the Federal tax system. Consistent with the E.O., the Advisory states that the use of an ITIN in lieu of an SSN or valid employment authorization document may constitute a risk factor warranting enhanced due diligence at customer onboarding to ensure that the account is not being used to facilitate unlawful employment. Financial institutions are also encouraged to consider the use of an ITIN as a relevant risk factor, among others, in understanding the nature and purpose of customer relationships, developing customer risk profiles, and conducting ongoing transaction monitoring for suspicious activity.
The Agencies are further concerned by the use of an ITIN to obtain credit products or open depository accounts where the applicant lacks verified legal presence.
Importantly, the Advisory does not impose a blanket prohibition on ITIN-based accounts but signals that regulators will likely expect financial institutions to apply enhanced risk-based procedures when ITINs are used.
In addition to two cases studies, the Advisory identifies 18 risk indicators, or “red flags,” to help financial institutions detect, prevent, and report suspicious activity connected to fraud schemes involving the unlawful employment of undocumented workers. The Advisory includes categories of red flags for (i) customers, (ii) large companies and (iii) small companies in agriculture, construction, domestic service, hospitality, or staffing industries (Specified Industries). Among the most notable:
No single red flag is determinative. Financial institutions should consider the surrounding facts and circumstances—including historical financial activity, whether transactions align with prevailing business practices, and whether multiple red flags are present—before determining that a behavior or transaction is suspicious.
In the Advisory, FinCEN requests that financial institutions filing SARs related to these activities include the key term “FINANCIALINTEGRITY-2026-A002” in SAR field 2 (Filing Institution Note to FinCEN) and in the narrative. In addition, FinCEN encourages financial institutions and the public to report any tips or complaints about employers that knowingly use unauthorized workers to ICE.
The Advisory signals a meaningful escalation in regulatory expectations around the monitoring of unlawful employment-related financial activity. Financial institutions should consider the following practical steps: