South Korea Tightens Crypto Withdrawal-Delay Exemptions After Scam Losses

South Korea’s financial watchdog is tightening the rules around withdrawal-delay exemptions offered by crypto exchanges, after data showed that scam-linked accounts granted exemptions were responsible for a large share of voice-phishing losses. The Financial Services Commission (FSC), in coordination with the Financial Supervisory Service (FSS) and the Digital Asset eXchange Alliance (DAXA), unveiled a unified framework designed to standardize when users may bypass withdrawal delays.

Previously, exchanges could apply their own criteria for exemptions with no clear minimum standard, creating openings for bad actors to move funds quickly if a user met basic thresholds such as account age or trading history. The new regime aims to close those gaps by imposing consistent, objective criteria for eligibility and by bolstering ongoing oversight of exemption recipients.

Key takeaways

• Between June and September 2025, accounts granted withdrawal-delay exemptions accounted for 59% of fraudulent accounts and 75.5% of related losses on crypto exchanges in South Korea, according to the FSC.
• The revised framework requires exchanges to assess specific factors, including trading frequency, account history, and deposit/withdrawal amounts, before granting an exemption from withdrawal delays.
• Simulations cited by the FSC project a sharp reduction in eligible exemption recipients—roughly 1% of users—once the new rules are in place, though the regulator did not provide a baseline for comparison.
• In addition to standardizing criteria, the FSC will bolster ongoing monitoring of exemption recipients, including source-of-funds verification and detection of suspicious withdrawal activity.

Unified rules aim to curb misuse of withdrawal-delay exemptions

The FSCsaid the move is part of a broader effort to tighten control over how withdrawal-delay exemptions are used, especially in cases tied to voice-phishing scams. By centralizing the criteria in concert with the FSS and DAXA, the regulator intends to eliminate the previous practice of exchanges applying disparate, non-standard thresholds that could be exploited by criminals.

Under the new guidance, exchanges must apply uniform thresholds and objective evidence when evaluating exemption requests, rather than relying on opaque internal criteria. The objective measures highlighted by the authorities include a user’s trading activity, the history of the account, and typical deposit and withdrawal patterns. The objective aim is to prevent rapid transfers that often accompany phished accounts and other social-engineering frauds.

Fraud data underlines the risk

Data cited by the FSC illuminate why regulators consider withdrawal-delay exemptions a critical control point. The agency reported that the period from June to September 2025 saw a disproportionate share of fraud tied to exemptions. Specifically, accounts with exemptions comprised 59% of fraudulent accounts and 75.5% of related exchange losses. That concentration suggests that the exemptions, if left unstandardized, can amplify the impact of scams on users and on exchange balance sheets.

The figures also underscore the risk that a relatively small subset of users—those granted exemptions—could drive outsized losses if their activity escapes robust monitoring. By codifying eligibility criteria and enhancing oversight, the FSC and its partners aim to make it harder for illicit actors to exploit the exemption framework without detection.

Regulatory momentum and broader safeguards

The withdrawal-delay framework is part of a wider tightening of Korea’s crypto regulatory regime, which has accelerated amid recent incidents and exposure of control gaps. In a related move, the FSC ordered exchanges to reconcile internal ledgers with actual asset holdings at five-minute intervals following an inspection tied to a payout error at Bithumb. The aim is to close gaps in risk management and ensure that reported holdings reflect real, verifiable assets on hand.

Additional steps have been announced as part of a broader licensing and oversight push. On Jan. 29, South Korea expanded crypto-licensing scrutiny to cover not only exchanges but also major shareholders, signaling a more comprehensive approach to market integrity and compliance across the sector. These regulatory actions collectively reflect a deliberate shift toward tighter scrutiny as the domestic market seeks to curb misuse and strengthen ring-fenced protections for investors and users.

In this context, the FSC emphasized that it will continue reviewing the rule set to identify new circumvention methods and to adjust the framework as needed. The agency signaled willingness to iterate policy in response to evolving fraud tactics, with the objective of preserving legitimate access to crypto services while raising the bar for security and compliance.

Stakeholders should also watch how exchanges implement the new criteria in practice. While the rule changes aim to reduce the number of users eligible for withdrawal-delay exemptions, they may also affect users who rely on legitimate, time-sensitive access to funds. Balancing fraud prevention with user usability will be a key test as the regime rolls out across the market.

For readers tracking regulatory developments, the convergence of standardization efforts with enhanced surveillance signals a durable shift in South Korea’s crypto governance. The question now is how quickly exchanges can translate the policy into operational changes—especially regarding real-time monitoring, source-of-funds verification, and the ongoing audits of exemption recipients—and what this implies for the pace of legitimate deposits, withdrawals, and broader market liquidity in the months ahead.