- August 2024: the US sanctioned around 400 individuals and entities across 17 countries for supplying advanced technology to Russia. These actions required companies to reassess their relationships with third-party vendors, update their compliance programs to mitigate potential compliance risks, and take other similar actions.
- March 2025: the US sanctioned a Chinese cyber firm for activities affecting networks across North America, Europe, Africa, and Asia. The measure demonstrates the operational challenge of ensuring that international business activities are secure and compliant when working with partners, vendors, customers, and other relevant stakeholders.
- September 2025: China sanctioned six US defense and technology companies, citing alleged military-technical concerns with Taiwan. The measure limited their ability to trade and operate within Chinese markets.
The prevalence of geo-targeted cyber sanctions is prompting businesses to adjust their risk management strategies. Some firms have invested in modular cloud deployments in multiple jurisdictions and decentralized data storage to keep systems running. Other companies are relying on flexible contractual terms, widening…
