Photo of Evan Abrams

Evan Abrams counsels multinational corporations, financial institutions, and individuals on various international regulatory and compliance matters. He assists foreign and domestic companies in navigating national security reviews by the Committee on Foreign Investment in the United States (CFIUS). He has represented companies in industries including semiconductors, metals, and digital security. Evan’s anti-money laundering (AML) practice focuses on helping financial institutions comply with federal and state AML rules, particularly money transmitters and entities involved in creating, exchanging, or dealing in cryptocurrencies and tokens. Evan counsels clients in a variety of export controls and sanctions matters related to the Export Administration Regulations (EAR), International Traffic in Arms Regulations (ITAR), and various sanctions programs under US and international law. In addition, Evan routinely assists clients on anti-corruption investigations and enforcement actions.

Read Evan's full bio.

After months of anticipation, a federal judge has finally ruled in the closely watched case of Joseph Van Loon, et al. v. Department of Treasury, et al.  This important case addressed challenges to the US Department of the Treasury’s Office of Foreign Assets Control (OFAC) decision to impose sanctions on Tornado Cash as a Specially Designated National and Blocked Person (SDN).  The judge granted summary judgement in favor of OFAC, finding it had sufficient legal authority to designate Tornado Cash, and denied summary judgement on the plaintiffs’ claims.  Shortly after that ruling, OFAC announced the SDN designation of Roman Semenov, one of three alleged co-founders of Tornado Cash, and the Department of Justice (DOJ) charged Semenov and Roman Storm, another Tornado Cash founder, with multiple alleged criminal violations related to anti-money laundering (AML) and economic sanctions laws. 

All three actions are critical developments that contain key insights on how the US government views the AML and sanctions obligations of decentralized protocols and individuals associated with those protocols.  The developments make clear that, at least in certain scenarios, individuals involved in the creation of a DeFi platform can be held responsible for the activities conducted on that platform where such conduct violates US economic sanctions or AML laws, or constitutes sanctionable activity under applicable executive orders. 

Continue Reading Critical Tornado Cash Developments Have Significant Implications for DeFi AML and Sanctions Compliance

On July 31, 2023, the Committee on Foreign Investment in the United States (CFIUS) released its Annual Report to Congress for Calendar Year 2022.  CFIUS is the inter-agency body charged with conducting national security reviews for certain foreign investments in the United States.  The CFIUS process is generally confidential, but the annual report provides aggregate data on certain CFIUS activities and offers the private sector insight into current Committee trends.

Continue Reading Key Takeaways from the 2022 CFIUS Annual Report

Overview

On August 9, 2023, the White House issued a long-awaited Executive Order, entitled Addressing United States Investments in Certain National Security Technologies and Products in Countries of Concern (“EO 14105”). The EO establishes a new national security regulatory regime, implemented principally by the US Department of the Treasury (“Treasury”), in consultation with other federal agencies including the US Department of Commerce, that will require the notification of, as well as prohibit, certain investment activity by US persons in named “countries of concern,” currently China.

EO 14105 does not restrict all US person investment activity regarding China, and is tailored to focus on specific products, technologies, and capabilities involving: (1) semiconductors and microelectronics (including advanced integrated circuits and supercomputers); (2) quantum information technologies (e.g., computers, sensors, networking, and systems); and (3) certain artificial intelligence systems (e.g., with certain military, intelligence, or surveillance end uses).

Continue Reading Biden Administration Announces New Outbound Investment Regime Targeting China

On June 16, 2023, the US Department of Commerce published a final rule (the “June 16 rule”) to implement Executive Order (EO) 14034, Protecting Americans’ Sensitive Data From Foreign Adversaries, by amending Commerce’s previously-issued Securing the Information and Communications Technology Supply Chain regulations (the “ICTS rule”).   Among other requirements, EO 14034 directed the Secretary of Commerce to consider the risks posed by “connected software applications” and take “appropriate action” in accordance with the previously issued ICTS rule and EO 13873, Securing the Information and Communications Technology and Services Supply Chain, pursuant to which the ICTS rule was issued. 

The ICTS rule authorizes Commerce to prohibit or otherwise regulate certain transactions involving information and communications technology or services (“ICTS”) with a nexus to “foreign adversaries” that pose an “undue or unacceptable risk” to US national security.  (For additional detail on the ICTS rule, see our prior blog post.)  The June 16 rule amends the ICTS rule to clarify Commerce’s ability to regulate transactions involving software, including so-called “connected software applications,” and to further enumerate the criteria that Commerce will consider when reviewing such transactions.   The changes are effective July 17, 2023.

Continue Reading Commerce Issues Final Rule Targeting Connected Software Applications

The Department of the Treasury’s recently issued Illicit Finance Risk Assessment of Decentralized Finance is principally intended to provide insight on how illicit actors are abusing decentralized finance (DeFi) services, as well as anti-money laundering (AML) and countering the financing of terrorism (CFT) vulnerabilities unique to DeFi.  However, the report also contains critical insight on how Treasury, and, presumably, the Financial Crimes Enforcement Network (FinCEN) within Treasury, view the applicability of existing US AML/CFT regulations, issued pursuant to the Bank Secrecy Act (BSA), to DeFi projects. 

Continue Reading Risk Assessment Offers Treasury’s Most Extensive Comments to Date on DeFi Regulation

On January 18, 2023, the US Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN) issued an order identifying the virtual currency exchange Bitzlato Limited (Bitzlato) as a “primary money laundering concern” in connection with Russian illicit finance.  The order, which is the first of its kind, was issued pursuant to Section 9714(a) of the Combating Russian Money Laundering Act. 

Continue Reading In Unprecedented Action FinCEN Identifies Virtual Currency Exchange as Primary Money Laundering Concern

On January 17, 2023, the US Department of Commerce’s Bureau of Industry and Security (BIS) issued an interim final rule (the “January 17 rule”), expanding its recent China-focused export controls, related to advanced computing and semiconductors, to Macau.  These controls, initially imposed on China (including Hong Kong), were announced in an interim final rule on October 7, 2022 (the “October 7 rule”). 

Continue Reading BIS Extends Advanced Computing and Semiconductor Rules to Macau

On December 16, FinCEN issued a notice of proposed rulemaking (NPRM) entitled “Beneficial Ownership Information Access and Safeguards, and Use of FinCEN Identifiers for Entities.”  The NPRM is intended to implement the Corporate Transparency Act (CTA) and, in particular, to govern which entities may access corporate beneficial ownership information (BOI) that certain entities will soon be required to report to FinCEN under the CTA.  Steptoe previously summarized FinCEN’s final rule on BOI reporting here.

Continue Reading Proposed Rule Lays Out Who Will Have Access to New Corporate Beneficial Ownership Information

On October 20, 2022, the US Department of the Treasury (Treasury) issued, for the first time, Enforcement and Penalty Guidelines (Guidelines) for the Committee on Foreign Investment in the United States (CFIUS or the Committee). The Guidelines describe three categories of conduct that may constitute a violation, the process CFIUS generally follows in imposing penalties, and some of the factors the Committee considers in determining whether a penalty is warranted and the scope of any such penalty. The Guidelines also encourage prompt and complete self-disclosure of any conduct that may constitute a violation.

Continue Reading CFIUS Announces First Ever Enforcement and Penalty Guidelines

On October 11, 2022, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) and Financial Crimes Enforcement Network (FinCEN) announced enforcement actions against Bittrex, Inc. (Bittrex), a privately-owned digital asset trading platform based in Bellevue, Washington, for apparent violations of anti-money laundering (AML) laws and of multiple sanctions programs. A settlement of over $24 million was announced by OFAC and a $29 million fine was announced by FinCEN. FinCEN will credit payment of the OFAC settlement amount toward Bittrex’s potential liability with FinCEN, meaning Bittrex will pay just over $29 million in total. Joint enforcement action between OFAC and FinCEN is uncommon—the settlements mark the first instance of parallel enforcement actions by OFAC and FinCEN in the digital asset sector.

Continue Reading OFAC and FinCEN Announce Enforcement Actions Against Bittrex