Public blockchains function as open networks where anyone can transfer digital assets to any address at any time. This architecture presents a major challenge for compliance teams monitoring fund flows. Digital assets typically do not move directly but pass through multiple intermediary wallets before reaching their final destination. This multi-hop nature makes blockchain compliance different from traditional banking, where transfers require prior institutional approval.
Understanding indirect exposure is crucial for grasping how sanctions enforcement operates in crypto. Recent media reports accused Binance of processing $1.7 billion in transactions tied to sanctioned Iranian entities, reflecting a broader issue. Traditional financial regulations aren’t designed for the technical realities of decentralized networks and modern crypto platforms. New regulatory, legal, and compliance frameworks are needed to manage the new reality of money movement.
In traditional finance, a bank transfer goes directly from sender to receiver. Blockchain transfers differ, with funds often traveling from an initial wallet through several intermediary addresses before reaching their destination. According to Binance Global Head of Sanctions Astra Cai, “Blockchain transactions usually involve multiple steps, meaning all these intermediate wallets are not sanction wallets at the time of the transaction.”
This situation creates a scenario called three degrees of separation. An exchange might process a deposit from an intermediary wallet that seems clean. Only later does law enforcement identify the final receiving wallet as a sanctioned entity. At the moment the exchange processed the intermediate transfer, on-chain surveillance tools did not flag those middle addresses.
This is central to the latest allegation against Binance, suggesting the exchange allowed Iran-backed groups to funnel money through the platform and covered it up by firing compliance officers who flagged these transactions. Binance states their internal reviews found no direct user transactions with sanctioned parties. The exposure was entirely indirect, with funds moving through layers of unaffiliated wallets before reaching a destination authorities later deemed restricted.
In a recent interview on The David Lin Report, Binance Chief Compliance Officer Noah Perlman said, “The idea that we dismissed employees for raising concerns is preposterous, as the investigation continued, relevant accounts were offboarded, and relevant reporting was made.”
The core compliance gap arises from the timing of sanctions designations. Sanctions lists are retrospective. Authorities designate wallets long after identifying problematic patterns. Cryptocurrency platforms screen transactions against the current lists when a transfer occurs. If an address is sanctioned after funds have passed through, prior transfers were not regulatory violations when they happened.
“We can only act on what we know. We can react to sanctions imposed after the fact, but we can’t be held accountable for blocking funds to wallets not sanctioned at the time,” said Perlman.
In recent cases of alleged Iranian exposure, reports indicate none of the users were on sanctions lists when active on the platform. Despite using advanced blockchain analytics, compliance teams cannot foresee which random addresses might be flagged by US authorities months later.
Because blockchain networks are permissionless, digital assets arrive in exchange addresses without prior approval. This technical setup means risk can’t be entirely eliminated on any centralized platform. Instead of blocking every transfer, major exchanges rely on extensive post-receipt controls. This involves robust on-chain monitoring, continuous screening, and rigorous post-receipt investigations.
When compliance receives credible intelligence about problematic transactions, the platform investigates, offboards suspicious accounts, mitigates further exposure, and reports to authorities. Binance employs over 1,500 compliance staff globally for this purpose.
When properly applied, retrospective mitigation strategies are highly effective. Binance reported a 96.8% reduction in sanctions-related exposure from early 2024 to mid-2025, processed over 71,000 law enforcement requests, and assisted in confiscating over $131 million in illicit funds throughout 2025.
The true measure of an effective compliance program isn’t the complete absence of risk, but the speed and thoroughness of the response once new threat data emerges.
Multi-hop transactions present a technical hurdle that requires regulators to rethink traditional enforcement. The standard measure of corporate compliance must evolve from demanding absolute prevention to evaluating detection and response capabilities.
Lawmakers are drafting blockchain regulatory frameworks, like the Clarity Act in the US. They must account for the mechanical realities of permissionless networks. Regulators and market players must understand that multi-hop dynamics and indirect exposure are crucial for effective public policy. Without acknowledging the three degrees of separation in on-chain transfers, regulators risk imposing enforcement standards that are impossible to achieve in real-time.