“Pig butchering” schemes once seemed like a distant threat. Experts viewed them as niche consumer fraud happening mostly overseas. Today, however, these scams create real legal exposure for U.S. financial institutions. Banks now face lawsuits when they process payments that customers authorize but fraudsters induce.
A high-profile case against HSBC’s U.S. banking arm underscores the stakes. The lawsuit involves an elderly customer who allegedly lost millions. It highlights what can happen when a bank fails to identify and stop such schemes before harm occurs.
How These Scams Work
Pig butchering victims endure prolonged grooming by fraudsters. Scammers typically reach out through social media, dating apps, or messaging platforms. They then build trust over weeks or months, often in a romantic context.
Eventually, the fraudster introduces a fake investment opportunity. Cryptocurrency and foreign exchange schemes appear frequently. After victims make an initial transfer, they see fabricated “returns.” These fake gains encourage them to invest more. Finally, the scammer vanishes with their money.
The Financial Crimes Enforcement Network (FinCEN) now treats this fraud type as a national priority risk. These schemes rely on legitimate U.S. banking channels. Scammers use wires, ACH transfers, and fiat-to-crypto conversions before laundering funds offshore. Unlike account takeovers or identity theft, customers typically authorize these transactions themselves. This complicates both reimbursement and enforcement efforts.
Conservators filed a lawsuit in California federal court that centers on an elderly customer. The victim allegedly lost more than $8 million after two separate romance-based scams. According to the complaint, someone posing as a successful investor first contacted the victim on social media. This individual gradually built trust before introducing a fake overseas investment opportunity.
Early “returns” were allegedly fabrications designed to encourage increasingly large wire transfers. After another bank restricted his ability to send funds, the victim allegedly opened an HSBC account. He then resumed the transfers.
Plaintiffs claim HSBC processed high-dollar, in-person wire transfers despite warning signs. The amounts escalated rapidly. The beneficiaries were foreign. The patterns didn’t match the customer’s prior banking history. Although HSBC reportedly imposed account restrictions, the bank allegedly lifted those controls later. Additional transfers then proceeded.
The complaint asserts negligence, breach of fiduciary duty, and violations of California’s elder financial abuse laws. More broadly, the case advances a developing legal theory. Prolonged inaction despite clear indicators of social engineering fraud may support civil liability. This holds true even when the customer technically authorized the transactions.
As of this writing, HSBC has not yet answered the complaint. The court referred the case to mediation and extended the answer deadline to March 25, 2026.
Federal Law Leaves a Gap
Current federal law offers limited protection for these situations. Consumer protections for fraudulent transfers largely depend on whether a transaction was “unauthorized.” The Electronic Fund Transfer Act and Regulation E generally require reimbursement for unauthorized electronic transfers. However, they don’t address transactions that customers personally authorize under fraudulent pretenses. Pig butchering schemes fall squarely into that gap.
Still, banks carry federal obligations. The Bank Secrecy Act requires financial institutions to maintain anti-money laundering programs. Banks must conduct customer due diligence and file Suspicious Activity Reports when transactions raise red flags. In September 2023, FinCEN issued a specific alert on pig butchering scams. The agency identified behavioral and transactional indicators and directed institutions to tag SARs accordingly.
The BSA doesn’t create a private right of action. Nevertheless, plaintiffs use it indirectly. Their theory argues that failure to act on obvious red flags supports a finding of negligence or actual knowledge. In elder-fraud cases, plaintiffs could argue banks crossed a line. By repeatedly processing suspicious transfers without intervention, banks shifted from passive intermediaries to active facilitators.
Possible Regulatory Changes
In the United States, regulatory change will likely come incrementally rather than all at once. One plausible path involves expanding safe-harbor regimes that both encourage and require intervention. Federal regulators could authorize temporary holds on suspicious wires tied to social-engineering fraud. They could pair this authority with immunity from liability when banks delay transactions in good faith.
Many states already authorize financial institutions to impose temporary holds when they reasonably suspect fraud or financial exploitation. Given the proliferation of scams, there appears to be growing acceptance of short-term, preventive restrictions on account access. This patchwork of state laws may serve as a foundation for more uniform standards.
Another pathway involves clearer federal guidance that ties AML obligations to consumer-protection outcomes. FinCEN’s pig butchering alert already moves in this direction. Over time, such guidance may crystallize into examination standards. This would raise the stakes for noncompliance.
Looking ahead, regulators may also consider a federal rule similar to FINRA Rule 2165. That rule currently permits broker-dealers to place temporary holds on disbursements for “specified adults.” These include individuals aged 65 and older or vulnerable adults when financial exploitation appears likely.
A similar federal rule for banks could formalize authority to impose short-term holds during investigations. Regulators would likely pair that authority with notice requirements, documentation standards, and time limits. Such an approach would build on existing state frameworks and reflect growing acceptance of preventive intervention.
Even without statutory overhaul, courts may grow more receptive to certain arguments. Banks may not be able to ignore prolonged, obvious fraud simply because the customer clicked “send.”
What Banks Should Know
Pig butchering schemes challenge longstanding distinctions between authorized and unauthorized transactions. Regulators have made clear these scams are no longer novel or obscure. Meanwhile, litigation like the HSBC case signals plaintiffs’ growing willingness to pursue civil liability claims. Repeatedly processing transactions with obvious red flags can create legal exposure, particularly when vulnerable customers are involved.
Going forward, compliance frameworks built solely around technical authorization may prove insufficient. Courts and regulators may expect more judgment and intervention when exploitation becomes apparent. As pig butchering schemes proliferate, banks should take note: inaction may become actionable.