The EU's 20th sanctions package against Russia includes a total ban on crypto transactions with Russian-based providers, the bloc's most comprehensive crypto-specific enforcement action to date.
The European Union's 20th sanctions package against Russia, adopted on 23 April, includes a total sectoral ban on all crypto-asset transactions with Russian-based providers and platforms — the most comprehensive crypto-specific enforcement action in the bloc's history.
The prohibition, which takes effect on 24 May, bars any EU person or entity from transacting with crypto-asset service providers established in Russia. That means no trading, no transfers, no custody arrangements, and no lending — a blanket exclusion that extends to decentralised platforms operating from Russian infrastructure. The EU's previous sanctions packages had targeted individual Russian entities and oligarchs; this one targets the entire sector.
The timing reflects a calculation in Brussels that Russia is increasingly reliant on crypto for international trade. As conventional banking channels have closed — more than 40 Russian banks are now subject to EU transaction bans, and the SWIFT alternative SPFS has been blocked for EU entities — crypto has become one of the few remaining conduits for cross-border payments. Chainalysis estimated that Russian entities moved approximately €1.8 billion through European crypto infrastructure in 2025, volumes that European regulators now consider material enough to warrant a blanket prohibition.
Two specific measures stand out. First, the EU banned all transactions involving RUBx, a government-backed stablecoin pegged to the rouble that had gained traction on decentralised exchanges. Second, it pre-emptively banned any EU support for the development of Russia's central bank digital currency — the digital rouble — which is scheduled for a broader rollout in September 2026. By targeting both the private-sector stablecoin and the state-issued CBDC, the package closes a door before Russia can walk through it.
The EU also designated a Kyrgyz entity operating a platform where significant volumes of A7A5 — another government-linked stablecoin — are traded. This is the first time the EU has sanctioned a third-country platform specifically for facilitating Russian sanctions evasion through crypto, and it signals a willingness to extend enforcement beyond Russia's borders.
Tether's decision last week to freeze $344 million in USDT linked to Iran demonstrated how stablecoin issuers can be enlisted as enforcement tools; the EU's approach is different. Rather than relying on private companies to freeze assets, Brussels has imposed a prohibition that makes the transactions illegal at inception. Compliance falls on European users, exchanges, and wallet providers, all of whom must now screen for Russian counterparties.
The enforcement challenge is plain. Decentralised protocols don't have compliance departments, and self-custodial wallets don't ask where their users are based. The EU's MiCA regulation, which has been fully operational since January, gives European regulators authority over licensed crypto-asset service providers — but a significant share of the transactions the sanctions are designed to stop happen outside licensed infrastructure. The sanctioned Russian exchange Grinex, which shut down after a hack last month, was already operating outside any regulatory perimeter.
What the sanctions do accomplish is raising the cost and risk of evasion. Any European exchange or OTC desk that processes a transaction traceable to a Russian crypto provider now faces criminal liability under EU sanctions law. That pushes the remaining volume further underground — into peer-to-peer markets, privacy coins, and mixing protocols — where it's harder to move large amounts without detection.
The four third-country financial institutions banned in the package for ties to Russia's SPFS network — names the Council hasn't publicly identified — suggest that the EU is building a secondary-sanctions capability in crypto, similar to what the US Treasury has long wielded through OFAC. Until now, European crypto sanctions have been reactive and entity-specific. This package is proactive and sector-wide.
The 24 May effective date gives EU-based platforms exactly one month to wind down any Russian exposure. For most licensed exchanges operating under MiCA, that process is straightforward — they've already been blocking Russian users since 2022. The harder adjustment falls on DeFi protocols with European governance structures and on institutional custody providers that may hold assets on behalf of Russian-linked counterparties without knowing it.
