惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

WordPress大学
WordPress大学
The Register - Security
The Register - Security
Hugging Face - Blog
Hugging Face - Blog
博客园 - 聂微东
GbyAI
GbyAI
Recent Commits to openclaw:main
Recent Commits to openclaw:main
博客园_首页
D
Docker
S
Security @ Cisco Blogs
K
Kaspersky official blog
爱范儿
爱范儿
Simon Willison's Weblog
Simon Willison's Weblog
TaoSecurity Blog
TaoSecurity Blog
V
V2EX
C
CXSECURITY Database RSS Feed - CXSecurity.com
T
Troy Hunt's Blog
Cloudbric
Cloudbric
博客园 - 三生石上(FineUI控件)
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
The Hacker News
The Hacker News
美团技术团队
S
SegmentFault 最新的问题
L
Lohrmann on Cybersecurity
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
宝玉的分享
宝玉的分享
The Last Watchdog
The Last Watchdog
Y
Y Combinator Blog
M
MIT News - Artificial intelligence
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
Martin Fowler
Martin Fowler
Google Online Security Blog
Google Online Security Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
C
Cybersecurity and Infrastructure Security Agency CISA
T
Tor Project blog
Vercel News
Vercel News
The Cloudflare Blog
G
Google Developers Blog
T
Threat Research - Cisco Blogs
AI
AI
Stack Overflow Blog
Stack Overflow Blog
I
InfoQ
Scott Helme
Scott Helme
S
Schneier on Security
大猫的无限游戏
大猫的无限游戏
The GitHub Blog
The GitHub Blog
S
Securelist
IT之家
IT之家
Microsoft Azure Blog
Microsoft Azure Blog

Chainalysis

OFAC Sanctions Iran Central Bank Crypto Wallets, Freezing $131M in Stablecoins - Chainalysis “Stern” Ransomware Operator Sanctioned by EU Chainalysis Supports Stable with Automatic Token Support - Chainalysis Daubert Standard: How Chainalysis Reactor Met the Bar Breadth, Depth, And Quality: Comparing Blockchain Analytics Vendors OFAC Sanctions 100+ ISIS-K Crypto Addresses Chainalysis Supports Robinhood Chain with Automatic Token Support An Ontology for Accountability: Defining What Data Quality Means in Blockchain Analytics - Chainalysis 10 Questions to Ask Your Blockchain Analytics Provider Sandwich Attack: How JaredfromSubway Lost $7.5M - Chainalysis OFAC Sanctions ISIS Financial Facilitators Brazil's Crypto Crime Challenge: How Global Money Laundering Networks Target Latin America's Largest Market Brazil's Crypto Crime Challenge: How Global Money Laundering Networks Target Latin America's Largest Market Pre- and Post-Designation Sanctions Screening What Is Approval Phishing? Detect & Disrupt Crypto Scams at Scale Ghana and the UK Recovered $15 Million via Blockchain Global Law Enforcement Dismantles ‘AudiA6’ Crypto Laundering Network Linked to Ransomware Gangs Chainalysis and the Korean National Police Agency (KNPA) Sign MoU to Strengthen Virtual Asset Investigation Capabilities 체이널리시스와 대한민국 경찰청(KNPA), 디지털 자산 수사 역량 강화를 위한 양해각서(MoU) 체결 The Hidden Code Problem: How Unverified Smart Contracts Are Becoming a Preferred Target for Attackers The $100 Million Crypto “Looksmaxxing” Boom: How Chinese Cartel Suppliers Pivoted to the Gray-Market Peptide Ecosystem Agentic Payments Cross the Threshold: Inside x402’s Path to Meaningful Adoption OFAC Sanctions Nobitex and Major Iranian Cryptocurrency Exchanges in Sweeping Evasion Crackdown The New Compliance Floor: Organizations are Adopting Stronger Than Ever Monitoring Practices U.K. Sanctions 18 Entities and Persons for Evading Russian Trade Blockades OFAC and Crypto Crime: Every OFAC Specially Designated National with Identified Cryptocurrency Addresses OFAC Sanctions Sinaloa Cartel Fentanyl Trafficking and Crypto Laundering Network How Blockchain Intelligence Uncovered a Million-Euro Bitcoin Ordinals Tax Fraud Scheme Crypto Prediction Markets Explained: How the Blockchain Is Reshaping Forecasting Where to Build: A Data-Driven Guide to Blockchain Infrastructure for TradFi Tokenization Australia’s Crypto Crossroads: Regulation is Here, Now Comes the Hard Part OFAC Updates Central Bank of Iran Designation Following Record $344 Million Tether Seizure amid Strait of Hormuz Toll Controversy U.S. Government Unveils Sweeping Enforcement Actions Against Southeast Asian Scam Centers and Crypto Fraud Networks Inside the KelpDAO Bridge Exploit: How ~$292 Million in rsETH Was Released Against a Non-Existent Burn $30 Billion and Counting: How Tokenized RWAs Are Becoming a Mainstream Investment for Institutional Capital Sanctioned Russia-Linked Exchange Grinex Suspends Operations Following Alleged Cyberattack Iran’s Strait of Hormuz Crypto Toll: An Evolution of Tehran’s Expanding Use of Digital Assets Operation Atlantic: How Public-Private Collaboration Is Freezing Millions in Crypto Scam Proceeds The Drift Protocol Hack: How Privileged Access Led to a $285 Million Loss The $100 Trillion Wealth Shift: Stablecoin Utility and the Future of Payments Chainalysis Links NYC 2026: AI Amplification, TradFi Convergence, and the Power of Networked Intelligence Chainalysis、初のブロックチェーン・インテリジェンス・エージェントを発表 Chainalysis Introduces the First Blockchain Intelligence Agents From the Battlefield to the Blockchain: How Cryptocurrency Is Helping Finance the Drone Revolution Chainalysis Supports Tempo with Automatic Token Coverage 英国政府が Xinbi を制裁:中国語圏の暗号資産詐欺を支えるインフラの中核を指定
EU’s 20th Russia Sanctions Package Signals a New Era of Crypto-Specific Enforcement
Chainalysis Team · 2026-04-25 · via Chainalysis

Summary

  • The EU’s 20th Russia sanctions package introduces a total sectoral ban on Russia-based crypto service providers and decentralized platforms, marking the most crypto-specific enforcement action in the bloc’s history and targeting entire categories of evasion infrastructure rather than individual named entities.
  • As part of the overall sanctions package, state-backed crypto instruments — the RUBx stablecoin and the digital ruble CBDC — will be explicitly prohibited effective 24 May, reflecting the EU’s recognition that Russia has industrialized sanctions evasion through purpose-built blockchain infrastructure processing tens of billions in cross-border trade.
  • Third-country VASPs, particularly those in Central Asia, the Caucasus, and the UAE, face clear, direct designation exposure, illustrated by the sanctioning of Meer, a Kyrgyzstani exchange offering A7A5 trading pairs. This includes a ban on netting transactions.
  • The package pairs its crypto measures with the largest individual listings in two years — 120 further individual designations — plus expanded shadow fleet vessel bans (632 total), mandatory tanker due diligence, LNG service prohibitions, and tightened dual-use export controls targeting re-export corridors through Kyrgyzstan, China, Türkiye, and the UAE. Mirroring Russia’s crypto and trade restrictions, Belarus-specific measures are extended through February 2027, and have designated a Chinese state-owned entity under the Belarus regime for the first time.
  • The first-ever activation of the EU’s anti-circumvention tool signals a paradigm shift: the EU is now treating evasion architecture itself as sanctionable, meaning VASPs must expand screening beyond named SDNs to assess entire settlement ecosystems, counterparty networks, and jurisdictional exposure.

The European Union’s 20th sanctions package against Russia, adopted yesterday, represents a significant doctrinal shift: for the first time, crypto assets are not a footnote to financial sanctions, but rather a primary target. Due to sweeping sanctions on Russia’s financial sector, Russia is becoming increasingly reliant on cryptocurrencies for international transactions. As we have detailed, this trajectory was set in motion when Russia legalized cryptocurrency for cross-border payments in 2024, a move that has now fully crystallized into operational reality.

The EU has responded with a layered, multi-vector approach designed to close the on-ramps, off-ramps, and state-sponsored instruments that have emerged as Russia’s financial lifelines. The package includes a total sectoral ban on transacting with any Russian centralized or decentralized crypto asset trading platforms because of their use in circumvention. This is no longer a warning shot; it’s a structural prohibition on the entire Russian crypto services ecosystem, and compliance teams globally need to treat it accordingly for EU nationals wherever they are, EU-established entities wherever they operate, and to any person in respect of activities in whole or in part within EU territory.

State-backed stablecoins and the digital Ruble: new designated instruments

Two state-adjacent crypto instruments are now explicitly in scope. After sanctioning the A7A5 ecosystem in 2025, the EU’s new measures also prohibit the use and support of the RUBx ruble-backed stablecoin, as well as the digital ruble, a central bank digital currency (CBDC) under development by the Central Bank of Russia for the explicit purpose of sanctions circumvention. These designations signal that the EU is not just targeting permissionless networks or self-hosted wallets, but rather is directly naming instruments that Russia has been developing as SWIFT alternatives. A similar framework extends to Belarus: the package mirrors Russia’s crypto restrictions within the Belarus sanctions regime, which has been extended until 28 February 2027.

The EU is designating Kyrgyzstani exchange TengriCoin (doing business as Meer.kg), where significant amounts of the government-backed stablecoin A7A5 are traded. This move follows years of escalating enforcement against the broader Garantex-Grinex-A7A5 ecosystem that we have tracked extensively. As we have documented, A7A5 has been prolific, processing $119.7 billion to date and functioning as a purpose-built settlement rail designed to bridge sanctioned Russian businesses into the global financial system. In our 2026 Crypto Crime Report, we found that figure exceeded $93.3 billion in less than a year.

The Kyrgyzstani exchange designation is a landmark moment: it demonstrates that third-country virtual asset service providers (VASPs) facilitating Russian state-adjacent crypto instruments are firmly in scope of European sanctions, regardless of where they are incorporated. For VASPs operating in Central Asia, the Caucasus, or the Middle East — jurisdictions that have increasingly absorbed Russian capital flows — this is a direct regulatory signal that facilitating these instruments creates designation exposure.

Anti-circumvention at scale: third-country banks, netting transactions, and the SPFS Network

The financial architecture of sanctions evasion gets equally aggressive treatment. A transaction ban is imposed on 20 Russian banks, and four third-country financial institutions are banned for sanctions circumvention or ties to Russia’s SWIFT-equivalent, the System for Transfer of Financial Messages (SPFS) messaging network. Netting transactions with Russian agents are now forbidden to avoid the circumvention of EU sanctions. This is particularly consequential for crypto compliance: netting arrangements — where offsetting obligations between parties are settled on a net basis rather than gross — have been identified as a structural vehicle for obscuring the true counterparties of Russia-linked transactions.

This prohibition directly targets layering techniques commonly observed in blockchain transaction flows routed through intermediary jurisdictions. It also arrives in a timely context: as we reported last week, Russia’s shadow crypto infrastructure has been under sustained pressure, with Grinex, Garantex’s direct successor, halting operations in April 2026 following a possible false-flag cyberattack. VASPs, OTC desks, and payment processors that maintain correspondent or liquidity relationships with entities in Russia-adjacent jurisdictions must now conduct enhanced due diligence (EDD) not just on direct counterparties, but also on the netting mechanics of their settlement infrastructure. Compliance teams must take this into account when examining direct and indirect exposure.

Systemic pressure on Russia’s war economy

Beyond crypto, the 20th package also targets the physical infrastructure sustaining Russia’s war machine. An additional 46 vessels are now subject to a port access ban and a ban on a broad range of maritime transport services, bringing the total number of designated vessels to 632 — targeting non-EU tankers that are part of Russia’s shadow fleet, or that transport military equipment for Russia or stolen Ukrainian grain. Mandatory due diligence is now required for tanker sales, and maintenance and services for Russian LNG tankers and icebreakers are banned, with LNG terminal services for Russian entities prohibited beginning January 2027.

On the trade side, export controls have been expanded to include computer numerical control (CNC) machines and certain radios to Kyrgyzstan given high re-export risk to Russia, and 60 new entities face tighter controls on technology that enhances Russia’s defense sector, including entities in China, Hong Kong, Türkiye, the UAE, and Belarus — with a Chinese state-owned entity designated for the first time under the Belarus sanctions regime for its role in producing Belarusian military goods.

For compliance professionals, these measures underscore that sanctions evasion is a multi-modal problem, with crypto rails, shadow fleet logistics, and dual-use trade networks operating as an integrated system. The same jurisdictional corridors — Kyrgyzstan, UAE, China — that we have flagged in our sanctions analysis are the same corridors now being targeted by the EU in trade and maritime contexts, reflecting a maturation in the EU’s holistic enforcement approach.

What this means for VASPs and the compliance ecosystem

Since Russia’s full-scale invasion of Ukraine in 2022, the US, UK, and EU have built an increasingly dense multilateral enforcement architecture — designating numerous crypto-linked entities and driving OFAC’s Executive Order (EO) 14024 program to become its most active sanctions program — all while sanctioned entities’ illicit on-chain volume surged 694% to $104 billion in 2025. The 20th package is the latest and sharpest expression of that pressure. It is the biggest individual listings package in two years, with 120 further individual listings, and represents one of the most comprehensive and technically specific sanctions actions the EU has undertaken against the Russian crypto sector.

It also activates for the first time the EU’s “anti-circumvention” tool — a structural escalation that signals Brussels intends to treat evasion architectures, not merely the underlying violations, as sanctionable in their own right. For compliance teams, the operational implications will be felt effective 24 May. The sectoral ban on Russian crypto providers, including decentralized platforms, expands the screening perimeter beyond named entities to cover entire categories of service infrastructure.

These developments also need to be read alongside the new EU Anti-Money Laundering Regulation (AMLR), which entered into force in 2024 and will apply from 10 July (with a longer phase-in for some sectors). For EU-regulated CASPs, the designation of a Kyrgyz A7A5 exchange, the focus on Russia-adjacent financial institutions, and the first use of the anti-circumvention tool are all strong signals that supervisors will expect sanctions-evasion risk to be built into AMLR-driven, harmonized CDD/EDD frameworks by the time the rules bite. While many supervisors already expect EDD on higher-risk non-EU CASPs under the current AMLD5 plus TFR framework, AMLR will harmonize those expectations and make the link between sanctions-evasion risk and CDD/EDD for CASPs much more explicit and uniform across the EU from 10 July.

Taken together, the new measures now create an ecosystem-wide crypto restriction on both Russia and Belarus: EU persons are prohibited from transacting with CASPs and DeFi platforms established in Russia, and from providing MiCA-defined crypto-asset services to Belarusian nationals or Belarus-established entities — a framing that also captures Belarus-linked DeFi front-ends or platforms where they function as regulated service providers.

In practice, that means treating certain corridors — for example parts of Central Asia, the Caucasus, and the Gulf — as higher-risk from a sanctions-evasion perspective; applying EDD to third-country CASPs and OTCs in those jurisdictions (ownership and control, regulatory status, sanctions controls, use of A7A5/RUBx/digital ruble rails); and scrutinizing “correspondent” and nesting arrangements between EU CASPs and third-country platforms with a Russia nexus. AMLR does not itself create new sanctions prohibitions, but from 2027 it does make sanctions-evasion risk a core input into risk assessment, customer due diligence, ongoing monitoring, and governance for VASPs.

VASPs processing transactions that touch Russian blockchain addresses, Russia-linked stablecoin instruments, or counterparties in high-risk jurisdictions with a documented Russia nexus should treat this package as a prompt to re-evaluate their transaction monitoring thresholds and counterparty due diligence frameworks. Tools like Chainalysis VASP Risking and KYT-based red flag monitoring are purpose-built for exactly this operating environment — one where the compliance perimeter is defined not just by named SDNs, but by an entire ecosystem of services, settlement rails, and jurisdictional intermediaries that keep sanctioned value in motion. The message to the global crypto compliance community is clear: the permissive operating environment for Russia-linked crypto activity is shrinking, and the enforcement infrastructure to back that up is firmly in place.

This website contains links to third-party sites that are not under the control of Chainalysis, Inc. or its affiliates (collectively “Chainalysis”). Access to such information does not imply association with, endorsement of, approval of, or recommendation by Chainalysis of the site or its operators, and Chainalysis is not responsible for the products, services, or other content hosted therein. 

This material is for informational purposes only, and is not intended to provide legal, tax, financial, or investment advice. Recipients should consult their own advisors before making these types of decisions. Chainalysis has no responsibility or liability for any decision made or any other acts or omissions in connection with Recipient’s use of this material.

Chainalysis does not guarantee or warrant the accuracy, completeness, timeliness, suitability or validity of the information in this report and will not be responsible for any claim attributable to errors, omissions, or other inaccuracies of any part of such material.