From the journal

UK Applies Russia Sanctions to Crypto Exchanges Under Regulation 17A, 26 May 2026

On 26 May 2026, the UK Office of Financial Sanctions Implementation applied Regulation 17A(2) of the Russia (Sanctions) (EU Exit) Regulations 2019 to designated crypto-asset exchanges for the first time, sanctioning 18 entities including HTX (formerly Huobi). UK financial institutions and virtual asset service providers are prohibited from processing transfers with designated exchanges. HTX is alleged to have channeled over USD 1.5 billion to Russian counterparties.

2 min read

On 26 May 2026, the UK government published its 26th Russia sanctions package, designating 18 entities under the Russia (Sanctions) (EU Exit) Regulations 2019 and applying Regulation 17A(2) to designated crypto-asset exchanges for the first time. Regulation 17A had previously been applied only to correspondent banking relationships with sanctioned Russian banks; this package extends the instrument to virtual asset service providers, marking a shift in UK sanctions enforcement toward the crypto sector.

Regulation 17A(2) of the Russia (Sanctions) (EU Exit) Regulations 2019 prohibits UK credit institutions, financial institutions, and virtual asset service providers from processing inbound or outbound transfers with any entity designated under that provision. The exchange HTX (formerly Huobi) was designated on grounds that it allegedly channeled over USD 1.5 billion to Russian counterparties. A ruble stablecoin issuer and other entities linked to the Kremlin-backed A7 payments network were also designated in the same package.

UK-authorised banks, payment service providers, and registered crypto-asset firms must screen all incoming deposits against the designation list and trace prior transfer hops to identify exposure to a designated exchange. Outbound transfers require assessment of the intended transfer path before processing. Firms that conduct correspondent relationships with or route payments through designated entities face criminal penalties under the Sanctions and Anti-Money Laundering Act 2018.

The A7 payments network, which British officials allege processed proceeds from Russian oil sales and supported military procurement, is the primary targeting rationale for this package. The Office of Financial Sanctions Implementation has not yet published specific technical guidance on the tracing standard for crypto-asset transfers under Regulation 17A, requiring virtual asset service providers to apply existing blockchain analytics and AML risk frameworks pending further guidance.

Licentium advises crypto-asset businesses and financial institutions on UK and EU sanctions compliance obligations. Firms with exposure to sanctioned jurisdictions or counterparties are invited to contact us. Work we undertake includes VASP sanctions screening programme design, OFSI designation analysis, transaction monitoring calibration for crypto assets, and multi-jurisdictional sanctions risk assessment.

Source: UK Government, UK cracks down on backdoor Russian sanctions evasion with tough new measures, GOV.UK, 26 May 2026

Crypto Regulatory

More from the journal

See all

FinCEN and Banking Agencies Propose CIP Rules for Stablecoin Issuers, June 2026

On 22 June 2026, FinCEN, the OCC, the Federal Reserve, the FDIC, and the NCUA issued a joint notice of proposed rulemaking requiring permitted payment stablecoin issuers to establish customer identification programs under the GENIUS Act. Covered issuers must collect name, date of birth, address, and taxpayer identification number for each account holder, retaining records for five years. Comments are due 21 August 2026.

China Regulates AI Companion Services, Banning Minor Access, Effective 15 July 2026

On 10 April 2026, five Chinese government authorities jointly issued the Interim Measures for the Administration of Artificial Intelligence Anthropomorphic Interaction Services, effective 15 July 2026. The Measures prohibit AI virtual companion and virtual relative services for minors, require algorithm filing and security assessment for covered providers, and mandate addiction-detection mechanisms. Providers serving children under 14 must obtain explicit guardian consent and implement supervised usage controls including spending restrictions and usage duration limits.

EU Council Adopts Digital Omnibus Amendments to AI Act, Deferring High-Risk Compliance to 2027

The Council of the EU formally adopted Digital Omnibus amendments to the EU AI Act on 29 June 2026, following the European Parliament's approval on 16 June. The package defers compliance deadlines for Annex III high-risk AI systems to 2 December 2027 and for Annex I embedded systems to 2 August 2028. Two new prohibitions covering non-consensual intimate imagery and child sexual abuse material apply from 2 December 2026.