{"id":8287,"date":"2026-05-27T23:24:11","date_gmt":"2026-05-27T23:24:11","guid":{"rendered":"https:\/\/cybersecurityinfocus.com\/?p=8287"},"modified":"2026-05-27T23:24:11","modified_gmt":"2026-05-27T23:24:11","slug":"another-it-governance-headache-ai-enabled-sanction-evasion","status":"publish","type":"post","link":"https:\/\/cybersecurityinfocus.com\/?p=8287","title":{"rendered":"Another IT governance headache: AI-enabled sanction evasion"},"content":{"rendered":"<div>\n<div class=\"grid grid--cols-10@md grid--cols-8@lg article-column\">\n<div class=\"col-12 col-10@md col-6@lg col-start-3@lg\">\n<div class=\"article-column__content\">\n<div class=\"container\"><\/div>\n<p>Over the next three to five years, both governments and the private sector will need to rapidly adapt identification and mitigation protocols as adversaries move from AI-assisted to AI-enabled sanctions evasion and proliferation financing (PF), a new research paper warns.<\/p>\n<p>The <a href=\"https:\/\/www.rusi.org\/explore-our-research\/publications\/research-papers\/algorithms-evasion-rise-ai-enabled-proliferation-financing\" target=\"_blank\" rel=\"noopener\">report<\/a>, <em>Algorithms of Evasion: The Rise of AI-Enabled Proliferation Financing,<\/em> from the Royal United Services Institute (<a href=\"https:\/\/www.rusi.org\/\" target=\"_blank\" rel=\"noopener\">RUSI<\/a>), a UK-based defense and security think tank, defines PF as the use of funds or financial services to acquire, develop or otherwise deal in weapons of mass destruction (WMD). It states, \u201cNorth Korea and Iran are now developing and deploying AI models to aid with sanctions evasion activities.\u201d<\/p>\n<p>Key findings include the fact that AI is now capable of mass producing high-quality fraudulent documents, as well as automating what the report describes as \u201cthe administrative minutia of managing extensive shell company\u00a0 networks.\u201d AI powered systems, it states, can also \u201canalyze blockchain patterns in real time to dynamically adjust cryptocurrency mixing strategies, effectively evading detection tools.\u201d<\/p>\n<p>In addition, it says, \u201c[tools such as generative AI] which can produce sophisticated fraudulent identification documents, for example, have helped North Korea perpetrate phishing attacks against Western companies.\u201d<\/p>\n<p><a href=\"https:\/\/www.rusi.org\/people\/aaron-arnold\" target=\"_blank\" rel=\"noopener\">Dr. Aaron Arnold<\/a>, senior associate fellow with the Centre for Finance and Security at RUSI, who authored the paper, said in an email that what prompted it was an uptick over the last year in North Korea\u2019s use of AI to facilitate and enhance its cyber operations, in the form of phishing schemes designed to generate revenue for the country\u2019s ballistic missile and nuclear weapons programs.<\/p>\n<p>He advised enterprise IT managers who need to protect their organizations from becoming victims of sanction evasion activities that \u201c[it] means largely adapting to a landscape where traditional human-focused security boundaries are being bypassed by automated technologies.\u201d<\/p>\n<p>For IT managers, said Arnold, \u201cthis might entail incorporating defensive AI, the use of behavior-based analytics, using \u2018circuit breakers\u2019 when there is heavy use of API or MCPs, updating personnel training, and hardening identity verification, especially for any remote hiring.\u201d\u00a0<\/p>\n<h2 class=\"wp-block-heading\">Distinction between AI-assisted and AI-enabled activity is \u2018central\u2019<\/h2>\n<p><a href=\"https:\/\/greyhoundresearch.com\/svg\/\" target=\"_blank\" rel=\"noopener\">Sanchit Vir Gogia<\/a>, chief analyst at Greyhound Research, said that the RUSI report matters \u201cbecause it names the right structural shift. AI is not creating sanctions evasion from thin air, it is compressing and scaling methods that already work.\u201d<\/p>\n<p>He pointed out that none of the sanction-evading techniques such as fraudulent documents, synthetic identities, shell companies, hidden beneficial ownership, crypto laundering, and others are new. \u201cWhat changes is the speed, quality, volume and coordination with which these methods can now be assembled,\u201d he said.<\/p>\n<p>According to Gogia, \u201cthe distinction between AI-assisted and AI-enabled activity is central. AI-assisted evasion uses AI for discrete tasks: writing a better email, producing a cleaner document, generating a stronger false profile, translating a pitch, summarizing regulations or preparing a plausible job application. AI-enabled evasion is more serious.\u201d<\/p>\n<h2 class=\"wp-block-heading\">A \u2018structural asymmetry\u2019<\/h2>\n<p>This tactic, he said, \u201cbegins to coordinate the system itself. It links identity, documents, ownership structures, payment routes, cloud access, crypto wallets, API calls and timing. The difference is not whether AI helps someone fake a document. The difference is whether AI begins to orchestrate the deception.\u201d<\/p>\n<p>That is why the report\u2019s findings should worry enterprise leaders, he noted: \u201cMany organizations still assume the bad actor is mostly human, mostly linear and mostly slow. That assumption is expiring. AI lets adversaries run more attempts, with fewer errors, across more channels, in more languages, with better paperwork and greater patience than most enterprise review processes can absorb. This is not a tale of genius criminals discovering magic. It is the story of ordinary controls meeting industrialized plausibility.\u201d<\/p>\n<p>The evidence today, he pointed out, is strongest around tactics such as identity fraud, document fraud, synthetic personas, remote-worker deception, phishing, social engineering, crypto obfuscation and workflow abuse. \u201cFully autonomous evasion networks sit on the horizon,\u201d he said. \u201cThey are serious, but they are not yet the everyday baseline.\u201d<\/p>\n<p>This distinction matters, said Gogia: \u201cIf enterprises obsess over cinematic autonomous agent scenarios while leaving remote hiring, vendor onboarding, payment approvals, and document review full of holes, they will lose in the most prosaic way imaginable.\u201d<\/p>\n<p>The report, he said, also gets the \u201casymmetry\u201d right. \u201cOffensive actors can learn across the ecosystem,\u201d he said. \u201cThey can scrape open information, reuse leaked records, study enforcement patterns, test onboarding forms, inspect public procurement data, watch court filings, probe compliance thresholds and [use the information to] refine their behavior.\u201d<\/p>\n<p>Defenders, by contrast, are hemmed in by privacy rules, fragmented data, explainability requirements, jurisdictional boundaries, conservative operating models and siloed technology estates. \u201cOffensive AI learns broadly,\u201d he said. \u201cDefensive AI often learns from fragments. That is the structural asymmetry.\u201d<\/p>\n<p>He explained that the regulatory landscape also amplifies the problem, in that regulatory bodies \u201cstill speak in separate dialects. [For example] the EU AI Act pushes organizations toward stronger obligations for high-risk AI. NIST-style frameworks push risk management, transparency, and governance.\u201d<\/p>\n<h2 class=\"wp-block-heading\">A trust architecture problem<\/h2>\n<p>Financial Action Task Force (FATF) <a href=\"https:\/\/www.fatf-gafi.org\/en\/publications\/Fatfrecommendations\/Fatf-recommendations.html\" target=\"_blank\" rel=\"noopener\">expectations<\/a> push national risk assessment and counter-proliferation controls, he noted, while banking regulators focus on model risk, accountability and operational resilience. \u201cNone of these streams is irrelevant. The trouble is that criminals do not organize themselves around regulatory workstreams. They organize around outcomes.\u201d<\/p>\n<p>What that means, said Gogia, \u201cis that enterprise cannot wait for a clean global rulebook. It will not arrive in time. CIOs, CISOs, compliance officers and boards need a working governance model now. They need privacy-preserving analytics, controlled data environments, audit trails, legal safeguards and clear model-risk accountability.\u201d<\/p>\n<p>He said that enterprise IT managers should treat the situation as a trust architecture problem rather than a narrow sanctions-screening problem. \u201cThe uncomfortable truth is that AI is not simply helping bad actors write better phishing emails or forge tidier documents,\u201d he noted. \u201cIt is helping them manufacture legitimacy across a chain of enterprise workflows.\u201d<\/p>\n<h2 class=\"wp-block-heading\">Likely outcome an \u2018AI arms race\u2019<\/h2>\n<p>Report author Arnold also noted that there are signs that cyber criminals have discovered new AI technologies and abilities that legitimate enterprises could adopt for legitimate applications.<\/p>\n<p>History, he said, \u201cis replete with [criminals] developing novel solutions to tough problems, [which are] later adopted by law enforcement. Much of our anti-financial crime policy is effectively a response to bad actors exploiting systems or using technology in novel ways to perpetrate crimes. In this scenario, I think an \u2018AI arms race\u2019 between enforcement authorities and bad actors is the most likely outcome.\u201d<\/p>\n<p>Gogia added, \u201cthe baddies are not teaching enterprises how to invent AI. They are teaching enterprises where trust is leaking. That is the lesson worth taking seriously.\u201d<\/p>\n<p><em>This article originally appeared on <a href=\"https:\/\/www.cio.com\/article\/4177854\/another-it-governance-headache-ai-enabled-sanction-evasion.html\" target=\"_blank\" rel=\"noopener\">CIO.com<\/a>.<\/em><\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>","protected":false},"excerpt":{"rendered":"<p>Over the next three to five years, both governments and the private sector will need to rapidly adapt identification and mitigation protocols as adversaries move from AI-assisted to AI-enabled sanctions evasion and proliferation financing (PF), a new research paper warns. The report, Algorithms of Evasion: The Rise of AI-Enabled Proliferation Financing, from the Royal United [&hellip;]<\/p>\n","protected":false},"author":0,"featured_media":8288,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-8287","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-education"],"_links":{"self":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/8287"}],"collection":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=8287"}],"version-history":[{"count":0,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/8287\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/media\/8288"}],"wp:attachment":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=8287"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=8287"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=8287"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}