Insights

The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) issued six new general licenses, and updated a seventh that allow for many activities related to: the export of Venezuelan oil and petrochemical products from Venezuela; the exploration, development, and production of oil, gas, and petrochemical products in Venezuela; the generation, transmission, storage, or distribution of electricity in Venezuela; the export to Venezuela of U.S.-origin diluents; negotiating for investment in the oil, gas, petrochemical, and electricity sectors in Venezuela; and the export of Venezuelan gold.

The United States, European Union, and United Kingdom have significantly escalated Russia-related sanctions the past month, including the Trump Administration’s first sanctions directly imposed on Russia. These coordinated actions—which particularly target the Russian energy sector—indicate that Russia sanctions remain on the geopolitical agenda and require multinational companies to remain vigilant in their compliance with those sanctions.

On August 28, 2025, France, Germany, and the UK (the E3) initiated the process to reinstate (or snapback) UN sanctions on Iran. The snapback mechanism (which was set to expire on October 18, 2025) is outlined in UN Security Council Resolution 2231 (UNSCR 2231).

U.S. Government and private sector sources continue to report efforts by Democratic People’s Republic of Korea (DPRK) nationals to infiltrate companies around the world by posing as information technology (IT) professionals, in order to get hired by U.S. and other businesses and gain access to sensitive company systems. Crowdstrike, a U.S. cybersecurity company, has reported a 220% increase in the number of companies infiltrated by North Korean threat actors over the last 12 months. In particular, a DPRK-affiliated group known as “Famous Chollima” has leveraged artificial intelligence and deepfake technology to generate synthetic identities, as well as resumes and CVs, draft communications, and conduct job interviews. Enforcement actions brought by the U.S. Department of Justice identify victims in the cryptocurrency sector, including decentralized finance (“DeFi”) projects. In addition, media reports indicate that North Korean hackers are purportedly offering fake job offers targeting employees in the cryptocurrency sector, with the goal of stealing crypto.

Historically, SEC-registered investment advisers have not been subject to comprehensive AML regulation under the Bank Secrecy Act (“BSA”) unless they also qualify as a broker-dealer or other BSA-regulated financial institution. Notwithstanding the absence of a formal requirement to date, many SEC-registered investment advisers have voluntarily adopted AML programs in line with industry expectations and investor demands. However, on August 28, 2024, FinCEN issued its Final Rule, establishing anti-money laundering/countering the financing of terrorism (“AML/CFT”) requirements for Covered Advisers similar to those that apply to broker-dealers. The Final Rule, which was scheduled to take effect on January 1, 2026, required Covered Advisers to maintain written AML programs, perform customer due diligence, file Suspicious Activity Reports (“SARs”) and other reports required of BSA-regulated financial institutions, and retain standard AML records.  

On June 30, 2025, President Trump issued Executive Order 14312 effectively lifting (or beginning the process of lifting) most of the sanctions on Syria. Executive Order 14312 cites the leadership changes and the policies of the new Syrian government under President Ahmed al-Sharaa as the reasons for the removal of sanctions. On the same day, the Department of the Treasury’s Office of Foreign Assets Control (OFAC) and the Department of State took steps to implement the termination of the program by, among other actions, delisting appropriate individuals and entities from the List of Specially Designated Nationals and Blocked Persons (SDN List). These actions followed the initial sanctions relief provided on May 23, 2025 by OFAC, the Financial Crimes Enforcement Network (FinCEN), and the State Department.

 

On May 23, 2025, the U.S. Departments of State (“State”) and the Treasury (“Treasury”) took actions that resulted in immediate sanctions relief for Syria. Specifically, Treasury’s Office of Foreign Assets Control (“OFAC”) issued General License 25 (“GL 25”) pursuant to the Syrian Sanctions Regulations (“SySR”), the Weapons of Mass Destruction Proliferators Sanctions Regulations (“NPWMD”), the Iranian Financial Sanctions Regulations (“IFSR”), the Global Terrorism Sanctions Regulations (“GTSR”), and the Foreign Terrorist Organization Sanctions Regulations (“FTOSR”). In parallel, Treasury’s Financial Crimes Enforcement Network (“FinCEN”) and State took supporting actions outlined below.

Since December of last year, the status of the CTA has been in a state of perpetual flux, following a dizzying series of federal court rulings and FinCEN announcements. On February 28, 2025, we reported that FinCEN paused enforcement actions for entities required to report under the CTA’s Beneficial Ownership Information Reporting Rule (BOI Rule) until FinCEN issued an interim final rule providing new guidance regarding the BOI Rule’s requirements and associated deadlines. Then, on March 2, 2025, Treasury went a step further, indicating that it would altogether cease enforcement against U.S. citizens and domestic reporting companies for violations of the BOI Rule, explaining that it would instead issue proposed rulemaking to narrow the scope of the BOI Rule to “foreign reporting companies” only and set new reporting deadlines. 

The new Trump administration is focusing intensely on “cartels” and other transnational criminal organizations, particularly in the Western Hemisphere. Many of the entities designated as FTOs today are active in Latin America and the United States, and sometimes seek to extort money or have other dealings with legitimate businesses operating in their territories. The State Department’s designation of eight such entities will not only raise the pressure on the entities designated, but also will create new risks and pressures for companies operating in areas where these FTOs are active. Below, we summarize the recent developments and the ramifications of these designations for businesses.

On February 4, 2025, President Trump issued a National Security Presidential Memorandum (NSPM-2) on “Imposing Maximum Pressure on the Government of the Islamic Republic of Iran, Denying Iran All Paths to a Nuclear Weapon, and Countering Iran’s Malign Influence.” NSPM-2 directs U.S. government agencies to take a range of measures to reimpose “maximum pressure” sanctions on Iran.