It starts with a blocked wire transfer.
You've been doing business with the same parts supplier in Dubai for four years. They're reliable. You've paid them dozens of times without issue. Then one morning you initiate a routine payment and your bank sends it back—frozen, no explanation beyond "compliance hold."
You call your account manager. They escalate to the compliance desk. Eventually, someone says the words you've never heard before in a business context: "Your supplier is on the OFAC SDN list."
This is not a hypothetical. It happened to SkyGeek Logistics, a New York-based aviation parts distributor, in 2024. It can happen to any trading company, importer, exporter, or freight operator doing business internationally. And when it does, the problem isn't just the blocked payment—it's everything that happened in the weeks before you found out.
How Suppliers Get Sanctioned Overnight
OFAC does not send advance notice. There is no warning period, no grace period, and no courtesy call to trading partners. When the US Treasury designates a company or individual as a Specially Designated National (SDN), it takes effect at the moment of publication—which can happen on any business day, without warning.
The SDN list is updated frequently, sometimes multiple times per week. OFAC added hundreds of new designations in October and November 2024 alone, targeting Russia's financial sector, energy networks, and aerospace supply chain. A supplier you screened at onboarding six months ago may be perfectly clean in your records and fully sanctioned in OFAC's database today.
Same Day
That's how quickly a legal trading relationship can become a sanctions violation. OFAC designations take effect immediately upon publication—with no grace period for existing business relationships.
The critical and often misunderstood rule: you are liable from the moment of designation, not from the moment you become aware of it. OFAC operates under strict liability for civil penalties. Not knowing that your counterparty was sanctioned is not a legal defense—it is, at best, a mitigating factor that may reduce the size of your fine.
What Happened to SkyGeek Is the Textbook Example
The SkyGeek Logistics enforcement action, settled with OFAC on December 31, 2024, is worth understanding in detail because it maps almost exactly onto the situation any small trading or distribution company could face.
SkyGeek had been doing legitimate business with two UAE-based customers—Flavic FZE and Mirage Air Craft Services—before either was sanctioned. Both were subsequently added to the SDN list for operating in Russia's aerospace sector: Flavic on November 2, 2023, and Mirage on February 23, 2024.
What actually happened
Flavic placed orders with SkyGeek in the months before its designation. On the very day it was added to the SDN list, Flavic placed additional orders, which SkyGeek scanned—but its screening system hadn't yet updated to reflect that morning's OFAC announcement. SkyGeek then initiated a $16,842 refund to Flavic on January 10, 2024, without rescreening. A downstream bank blocked the transaction. SkyGeek also made shipments to Mirage worth approximately $3,000 in goods in the weeks after Mirage was designated—again, because their rescreening process failed to catch the new designation in time.
Six violations. A potential maximum civil penalty of over $2.2 million. Final settlement: $22,172—reduced because SkyGeek voluntarily self-disclosed four of the six violations and cooperated with OFAC's investigation. The maximum was never in doubt; OFAC's leniency was the variable.
Note what SkyGeek did wrong: they screened at onboarding and then trusted that approval indefinitely. They did not rescreen before processing refunds or fulfilling orders to previously-approved customers. That gap—between initial screening and ongoing rescreening—is where violations happen.
The Three Danger Zones When a Supplier Gets Sanctioned
When a counterparty is designated mid-relationship, the risk doesn't come from one single transaction. It comes from three places simultaneously:
1. Goods already in transit. If you shipped product to the supplier before designation and those goods haven't been delivered yet, you may be prohibited from completing the delivery. The goods can be stuck at port, seized by customs, or returned to you at your cost. There is no automatic exception for cargo that was loaded before the designation date.
2. Outstanding invoices and refunds. This is exactly what caught SkyGeek. If a sanctioned party owes you money, you cannot simply collect it. Processing an incoming payment from an SDN is as much a violation as sending one. If you owe them a refund, you cannot pay it without an OFAC license. Both scenarios create a compliance problem, not just a business inconvenience.
3. Ongoing orders and open purchase agreements. If you have a standing purchase order or a framework agreement in place, every new transaction under that agreement after the designation date is a separate violation. A company with monthly shipments to a supplier that gets sanctioned on the 5th of the month and doesn't catch it until the 20th may have already committed two or three distinct violations.
The strict liability trap
OFAC civil penalties do not require intent or knowledge. A company that continues shipping to a sanctioned counterparty because their internal screening system hasn't updated yet is still liable. The regulator's position is straightforward: it is your responsibility to know who you are dealing with, in real time.
What You Are Legally Required to Do
The moment you become aware that a counterparty has been designated—or if your screening system flags them—you have specific obligations:
First, stop all transactions immediately. Do not process payments, do not ship goods, do not accept deliveries. Every transaction after the designation date is a potential violation, regardless of whether it relates to pre-existing contracts or orders.
Second, block any assets in your possession that belong to the sanctioned party. If you are holding their funds, inventory, or any property on their behalf, OFAC regulations require you to freeze it and report it to OFAC within 10 business days.
Third, consult a licensed trade attorney and consider voluntary self-disclosure. As the SkyGeek case illustrates, self-disclosure is one of the most powerful mitigating factors available to you. OFAC's enforcement guidelines explicitly reduce penalties for companies that self-report and cooperate. The difference between disclosing and not disclosing can be the difference between a manageable fine and a penalty calculated at the statutory maximum.
Finally, document everything. When did you last screen this counterparty? When did your system update? When did you first become aware? A clear compliance paper trail is your best evidence of good faith.
The Rescreening Problem Most Companies Don't Know They Have
The fundamental operational failure behind cases like SkyGeek's is treating sanctions screening as a one-time event at customer or supplier onboarding.
In most small and mid-sized trading companies, the workflow looks like this: a new supplier is vetted when the relationship is established, a check is run, everything comes back clean, and the supplier is added to the approved vendor list. From that point on, no one screens them again. Payments are processed on autopilot. Orders are fulfilled based on habit and history.
This is the gap OFAC enforcement exploits. Because designations happen continuously and unpredictably, a supplier that was clean at onboarding in 2022 may be sanctioned in 2024. Your approved vendor list has no mechanism to flag that change. Your accounts payable team processes their invoices as they always have. And your liability accumulates silently.
The solution is continuous or periodic rescreening—running all active counterparties against live sanctions lists on a regular basis, not just at the point of first engagement. This is exactly what SkyGeek was forced to implement as part of its remediation: a formal requirement to rescreen every customer before processing any refund or fulfilling any shipment, regardless of prior history.
Screen Your Entire Supplier List—Not Just New Ones
Sanctiona lets you check any name against live OFAC and UK sanctions data instantly. Make it part of your process before every transaction, not just onboarding.
Check a Name NowThe Operational Cost Nobody Talks About
The legal and regulatory exposure is only part of the problem. When a supplier gets sanctioned mid-relationship, the operational fallout for a small trading or logistics company can be severe:
You lose a supplier with no warning. If that supplier is part of a critical supply chain—manufacturing components, providing a specialist product, or handling a specific trade route—replacement takes time you may not have. Customers downstream from you don't care why your shipment is late; they care that it's late.
Your bank may ask questions. Banks conducting their own sanctions compliance will notice the blocked payment and may file a Suspicious Activity Report, initiating their own review of your account. Even if you are completely innocent, this process is disruptive and time-consuming.
Cargo may be stranded. Goods in transit at the time of designation can be held at port or by customs authorities pending clarification of their status. Getting them released often requires an OFAC specific license, which can take weeks to obtain.
In a business operating on thin margins and tight timelines—which describes most import/export and freight operations—this kind of disruption can cost more than the fine itself.
The Simple Habit That Prevents All of This
The companies that navigate these situations best share one characteristic: they treated sanctions screening as a recurring operational check, not a one-time compliance box.
This doesn't have to be complicated. Running the name of an active supplier or customer against the SDN list before processing a payment takes under a minute. Building that into your payment approval workflow—the same way you might verify a bank account number or check an invoice amount—is all that stands between a clean compliance record and a situation like SkyGeek's.
OFAC itself noted in the SkyGeek enforcement release that the violations could have been avoided if rescreening had been conducted—because the information needed to identify the sanctions nexus was already present in SkyGeek's own customer records. They had the data. They didn't check it.
Don't be caught in the same position. The list updates every week. Your approved vendor list shouldn't be frozen in the past.
Sources:
- OFAC Enforcement Release: SkyGeek Logistics, Inc. — December 31, 2024
- OFAC FAQ #20: How often is the SDN list updated?
- OFAC: A Framework for OFAC Compliance Commitments (2019)
- OFAC Economic Sanctions Enforcement Guidelines, 31 C.F.R. Part 501, Appendix A
- Morrison Foerster: U.S. Sanctions Enforcement — 2024 Lessons Learned and 2025 Expectations (April 2025)
- International Trade Today: US Supplier Fined by OFAC After Shipping to Sanctioned Firms Doing Business With Russia (January 2025)