Russia Sanctions and Export Controls Compliance in 2026: Detecting Evasion Networks and Layered Ownership

Multilateral sanctions and export controls targeting Russia have grown into one of the most complex and fast-moving regulatory regimes in modern history. What began more than a decade ago with narrow U.S. restrictions against Russian officials linked to human rights abuses — who had little exposure to cross-border financial flows or international trade — has since evolved into a sprawling and highly complex coordinated effort by global powers to cripple Russia's military-industrial complex and restrict Moscow’s revenues.

The passage of the Magnitsky Act in 2012 marked the first targeted U.S. sanctions on Russian officials for human rights abuses and corruption. After Russia’s 2014 annexation of Crimea, the U.S. and EU restricted trade with Crimea and sanctioned certain individuals and entities, including numerous Russian government officials, business elites linked to the Kremlin, and separatist leaders in eastern Ukraine. The U.S. and EU also introduced sectoral sanctions limiting specific transactions with certain entities in Russia’s finance, energy, and defense sectors, and continued to designate Russian oligarchs and state-owned firms in subsequent years.

Then came the 2022 full-scale invasion of Ukraine. The response was unprecedented: thousands of new designations rolled out at record speed. Oligarchs, state-owned companies, Russian financial institutions, political and military leadership — all targeted. Investment bans and other restrictions followed.
Since then, the focus has shifted. Sanctions and enforcement now target Russia's military-industrial complex and energy revenues. Technology procurement networks, intermediaries, and transshipment routes that sustain the war economy reach far beyond Russia's borders.

This rapid evolution has created a sanctions and export controls ecosystem unlike any other: high-volume, high-velocity, and focused on detecting layered ownership structures and evasion pathways. The current phase of Russia sanctions and export controls enforcement requires a much more sophisticated approach to compliance, including network-level intelligence and continuous monitoring.

The Complexity of the Russia Sanctions and Export Controls Ecosystem

Since the 2022 invasion, the evolution of the Russia-related regulatory landscape has resulted in new compliance challenges stemming not only from the volume of measures but also from their variety: in addition to wide-ranging multilateral sanctions and export controls, the U.S. and allied jurisdictions have imposed sectoral sanctions and services bans, implemented a price cap on Russian crude oil and petroleum products, and developed a Common High Priority List (CHPL) of items that Russia seeks to procure for its war efforts and that thereby pose a heightened risk of diversion, including electronic integrated circuits, semiconductors, and more.

U.S., EU, and U.K. authorities have tightened restrictions on investment in and secondary market trading of certain Russian financial instruments. In the U.S., Executive Order 14071 bans new investment in Russia, prohibiting U.S. persons from purchasing debt and equity securities issued by any entity in Russia. U.S. financial institutions cannot participate in the secondary market for ruble or non-ruble denominated bonds issued after March 1, 2022, by the Central Bank of the Russian Federation, the National Wealth Fund, or the Ministry of Finance. The EU and U.K. have similar but narrower restrictions, including prohibitions on dealing with transferable securities or money market instruments issued after specific dates and on providing certain investment services. For asset managers, these varying rules create a complex regulatory environment: firms can be held liable for prohibited dealings with sanctioned persons or their assets, regardless of knowledge or intent.

In line with these actions, multilateral efforts to impede Russian sanctions evasion and diversion through new designations and enforcement have intensified. For example:

• In January 2025, a Miami-based real estate company and its owner agreed to pay a settlement of more than $1 million for willfully evading U.S. sanctions by transferring nominal ownership of real estate from two sanctioned Russian oligarchs to non-sanctioned family members and related shell companies and then renting some of the properties to third parties.
• In January 2025, the U.S. Treasury Department sanctioned a Kyrgyz Republic-based financial institution for implementing a sanctions evasion scheme in which the bank would facilitate international money transfers on behalf of a sanctioned Russian bank that finances Russia’s defense industry.
• In December 2025, the Dutch Fiscal Information and Investigation Service (FIOD) conducted searches and arrests related to a company suspected of intentionally circumventing sanctions against Russia.
• In January 2026, the U.K.’s Office of Financial Sanctions Implementation (OFSI) imposed a monetary penalty on a U.K.-registered bank for processing payments for an account held by a sanctioned individual under the U.K.’s Russia regulations.
• In January 2026, the European Anti-Fraud Office (OLAF) announced that it investigated the export of more than 760 transport vehicles to Russia, disrupting an EU sanctions circumvention scheme involving multiple exporters in the EU and declared importers in third countries including Georgia, Kazakhstan, and Moldova.
• In February 2026, German police arrested five men for delivering more than 16,000 shipments to at least 24 Russian arms companies since 2022 as part of a smuggling operation for Russian intelligence, in breach of EU sanctions.

Beyond sanctions evasion, Russia’s military-industrial base relies on the illicit acquisition of restricted goods. Recent enforcement actions highlight how complex procurement networks are actively circumventing export controls to access critical dual-use technologies:

• In September 2024, a Russian citizen residing in Florida was arrested for illegally exporting dual-use microelectronics with drone applications to Russia by transshipping items through intermediary destinations including Hong Kong and Switzerland.

• In December 2024, BIS imposed a penalty of $3.3 million against a California-based company for selling transistors and related products, including CHPL items, to Russian end users without authorization from BIS.

• In April 2025, a Russian national was sentenced to nearly six years in prison for conspiring to violate the Export Control Reform Act and to commit international money laundering. The individual and a co-conspirator led a procurement network that solicited orders for aircraft parts from Russian airline companies and then used Turkish bank accounts and straw-buyer companies to obscure the origin of revenue and misrepresent the true end destination.

• In July 2025, HM Revenue and Customs imposed a penalty of more than £1.16 million on a U.K. exporter that made goods available to Russia, its largest compound settlement to date for a Russia-related sanctions offense.

• In February 2026, the German government arrested five individuals who used shell companies in Germany and elsewhere to export at least €30 million of restricted goods to arms manufacturers in Russia.

The Continued Risks of Russia Sanctions and Export Controls Evasion and Exposure

Compliance failures tied to Russia-related sanctions and export controls carry steep legal, financial, and reputational consequences.

A major point of emphasis for many organizations is the U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) 50 Percent Rule: even if an entity is not explicitly named on a sanctions list, 50% or more ownership, directly or indirectly, individually or in the aggregate, by one or more sanctioned parties causes that entity to be considered automatically blocked. In January 2025, OFAC imposed a civil penalty of more than $1 million on a California-based machine tool manufacturer for providing goods and services to Russian customers that were not on OFAC’s Specially Designated Nationals (SDN) List but were blocked by virtue of being directly or indirectly owned 50% or more by sanctioned parties.

The EU, U.K., Canada, and other jurisdictions have established their own parallel “ownership and control” standards. Unlike the U.S., some jurisdictions also explicitly extend liability to entities controlled by sanctioned persons, even where ownership falls below the 50% threshold. For example, the EU and U.K. regulations outline criteria to be taken into account when assessing whether sanctioned parties may control an entity, including situations where a designated person holds "dominant influence" over an entity or has the right to appoint board majorities, regardless of shareholding. To mitigate risks, multinational companies must implement a compliance framework that accounts for these variations in sanctions regulations across the jurisdictions where they operate.

Beyond ownership, companies face heightened risk related to export controls. Russian diversion networks rely on transshipment through third countries to obtain restricted equipment, parts, and technologies, including dual-use goods critical to its military industrial base. For example, in November 2025, a Belarusian national was arrested for orchestrating a scheme to illegally export U.S.-sourced aviation components to Russia. The individual used companies located in Armenia, the Maldives, and elsewhere to transship the items to Russia without the required licenses.

Firms may also inadvertently violate U.S. Foreign Direct Product (FDP) Rules or de minimis thresholds when reexporting products that were made with or contain controlled U.S. content or technology. Under the FDPR, the U.S. asserts jurisdiction over foreign-made items produced with U.S.-origin technology or software if they are destined for certain restricted entities or jurisdictions, such as Russia, effectively extending the reach of the Export Administration Regulations (EAR) across global supply chains. Furthermore, de minimis regulations dictate that a foreign-made item becomes subject to the EAR if it includes more than a specified percentage of controlled U.S.-origin content. To mitigate these compliance risks, proactive organizations may adopt a posture that includes:

• Tracing technical lineage: Determine if a foreign-produced item is a direct product of U.S.-origin technology or software, as this can trigger licensing requirements regardless of the manufacturing location.
• Calculating content percentages: Conduct de minimis assessments to ensure that the volume of U.S.-controlled components does not exceed regulatory limits for reexport to restricted jurisdictions.
• Vetting intermediaries: Screen resellers and distributors in third countries who may serve as conduits for diverting these sensitive goods to prohibited military end-users.
• Adhering to the BIS “knowledge standard”: If red flags are raised about the end-use of a product, firms have an affirmative duty to check out the suspicious circumstances and inquire about the end-use, end-user, or ultimate country of destination.

Furthermore, the announced BIS Affiliates Rule (briefly implemented in late 2025 and suspended until November 2026), would mark a monumental shift in Russia-related compliance. Previously, export restrictions applied only to the specific legal entities named on lists, creating a diversion loophole. Once the Affiliates Rule goes back into effect, any foreign party owned 50% or more by parties on the BIS Entity List or Military End-User (MEU) List, or by Specially Designated Nationals (SDNs) designated under specific programs – including programs related to Russia’s war in Ukraine – will be automatically subject to the most stringent licensing policy of any of its owners, typically a presumption of denial. BIS also introduced Red Flag 29 in conjunction with the Affiliates Rule, creating an "affirmative duty" for exporters to ascertain ownership if they know a foreign party is owned in part by an entity subject to license requirements, and to obtain a license if majority ownership cannot be determined. Consequently, exporters will need to assess the ownership of unlisted trade counterparties when there are indicators of potential affiliation with listed entities before proceeding with transactions.

A lack of deep visibility into extended commercial networks and ownership structures can lead organizations to inadvertently engage with sanctioned actors or entities subject to export restrictions, and traditional screening tools often miss such vulnerabilities.

Russia’s Sanctions and Export Controls Circumvention Methodologies

Russia and its facilitators are relying on known circumvention patterns to preserve access to goods, capital, and financial channels under sanctions and export controls pressure.

A series of Financial Crimes Enforcement Network (FinCEN) and BIS joint alerts, as well as Tri-Seal Compliance Notes issued by the U.S. Departments of the Treasury, Commerce, and Justice, spotlight these systemic patterns, such as the use of shell and front companies to disguise beneficial ownership and the reliance on third-party intermediaries and transshipment hubs to re-route sensitive goods. These advisories also warn of financial red flags that could be indicative of illicit or suspicious activity, such as transactions involving companies that are physically co-located, or have shared ownership, with listed entities. In July 2025, the U.K.’s National Crime Agency (NCA), Office of Financial Sanctions Implementation (OFSI), and Foreign Commonwealth & Development Office (FCDO) jointly issued a red alert on shadow fleet networks to help financial institutions identify potential sanctions evasion related to the sale of Russian oil and gas. EU Member States have also issued Russia-related guidance in recent years, such as Latvia’s report on sanctions evasion indicators published in 2024.

Understanding these systematic tactics is essential to closing compliance gaps. Evasion strategies may include:

Use of shell and front companies with opaque or complex ownership: Sanctioned individuals and entities may use shell companies and front companies to obscure the true beneficiary of a transaction. These entities may share addresses with sanctioned or trade-restricted parties or operate with a minimal public or web presence. Sometimes, sanctioned parties may appoint nominee owners or directors, create complex trust structures, or divest assets to family members or close associates in an attempt to evade ownership and control regulations.

Transshipment through high-risk jurisdictions: For export controls evasion, a common tactic is reliance on third-country transhipment hubs. Goods restricted for direct export to Russia, such as microelectronics and aerospace components, can be rerouted through countries with less stringent oversight, then quietly re-exported into Russia. These indirect pathways often involve multiple stops to disguise the true end-user. Red flags include sudden changes to shipping routes, payments from third-party countries not listed on end-user forms, customers unwilling to disclose final use, and shell companies conducting wire transfers through banks in unrelated jurisdictions.

Falsification of documentation: Bad actors may misclassify goods using incorrect Harmonized System (HS) codes to bypass screening for CHPL items. They may also provide vague or false declarations regarding the end-use and end-user, often claiming "civilian" use for items destined for military research or production.

Deceptive shipping practices: In the oil trade, evasion networks may disable vessel tracking systems and conduct ship-to-ship transfers in international waters to obscure the origin of Russian crude. More broadly, bad actors may use multiple freight forwarders for a single transaction to complicate tracing.

Building a Comprehensive Russia Sanctions Compliance Program

Effectively countering Russia sanctions evasion requires organizations to build more proactive, comprehensive compliance programs. The foundation is network analysis, which can uncover ownership, control, and trade webs that link counterparties back to sanctioned entities. This capability is critical for identifying both direct and indirect risks. Ownership and control mapping solutions should be integrated into the compliance workflow to address 50% rules and broader "control" standards, especially to surface aggregation cases and indicators of influence. Equally critical is monitoring for transshipment risks by implementing enhanced vigilance for transactions involving third-country hubs where Russian procurement networks frequently use intermediaries or front companies to mask the ultimate destination of restricted goods. And for asset managers, successful compliance programs supplement robust Know Your Customer (KYC) protocols with continuous screening of investments and financial products to identify sanctioned securities exposure – through direct holding and fund structures.

Crucially, sanctions evasion detection frameworks must be adaptive. The differences between global enforcement approaches on Russia sanctions highlight the need for a flexible, data-driven framework.

Compliance teams that regularly update policies, train staff, and align with the latest guidance are better positioned to reduce enforcement risk. Finally, cross-functional collaboration across compliance, legal, and business teams creates the holistic visibility necessary to manage complex Russia sanctions exposure.

How Kharon Helps Organizations Stay Ahead of Russia Sanctions and Export Controls Evasion

Kharon is the system of record for risk intelligence. Leading financial institutions, manufacturers, and other exporters rely on Kharon as their authoritative source for sanctions, export controls, and KYC risk — including the most complex Russia-related compliance challenges. Our AI-enhanced research and expert analysis help compliance teams implement the comprehensive programs today's enforcement environment demands.

• Uncover hidden ownership networks: Kharon maps the full ownership and control structures of sanctioned and trade-restricted parties to help identify entities that might otherwise escape notice.
• Ongoing monitoring: Ongoing, continuous monitoring of new designations, trade controls, and investment restrictions ensures that clients stay ahead of regulatory changes as they happen.
• Securities screening: Kharon provides screening capabilities that identify exposure to sanctioned Russian securities buried within ETFs, indexes, and other funds and structured products.
• Trade and transshipment insights: Kharon identifies not only military end-users, but also intermediaries around the world that have facilitated the diversion of restricted goods to Russia.

Unlike conventional list screening, Kharon’s curated datasets help reduce false positives while enhancing detection accuracy, which in turn allows compliance teams to allocate resources more effectively.

Navigate Global Compliance Risks with Kharon

Sanctions and export controls targeting Russia have created one of the most complex compliance challenges in recent history. From opaque ownership webs and transshipment schemes to securities exposure and evolving enforcement by the U.S., EU, U.K., and other regimes, organizations must stay ahead of risks that traditional tools often miss.

By combining advanced data science and AI with expert analysis, Kharon provides the depth, context, and monitoring needed to help organizations detect risk and strengthen compliance frameworks.

Learn more about Kharon’s Russia sanctions and export controls intelligence to see how our solutions can help your organization stay ahead of global enforcement. Request a demo today