FinTelegram reviewed MegaDice on Jan 11, 2026 as part of our Rail Atlas work. The Curaçao-licensed crypto casino/sportsbook (operator: MIBS N.V.) can be accessed from multiple EU jurisdictions and the UK with email-only onboarding in our tests. MegaDice offers direct crypto deposits (no casino-side KYC observed) and an embedded “Buy Crypto / Compra Crypto” rail that routes users into Changelly and MoonPay purchase flows—where fiat processing and KYC appear to be performed by the on-ramp providers, not the casino. Key Facts Operator / License: MegaDice states it is operated by MIBS N.V. (Curaçao) and licensed by the Curaçao Gaming Authority (license OGL/2024/1718/0938, status “Active”). No-KYC marketing vs. practical onboarding: In our review, registration and access to deposit flows worked from EU/UK locations with minimal friction (email/username style onboarding). MegaDice’s own onboarding copy describes account creation via email and email verification. Rail 1 — Direct crypto deposit (casino): Wallet address generation and crypto deposit path is presented as the default deposit method (no casino-side KYC checkpoint observed during testing). Rail 2 — Indirect FIAT deposit (“Buy Crypto”): MegaDice embeds a Changelly “Buy crypto” interface that, in execution, is processed via changellywidget.banxa.com (Banxa-hosted widget). Changelly→Banxa interaction (most likely model): Banxa’s own support documentation describes a Changelly “Buy” flow where users select a payment method and choose Banxa, then are redirected to Banxa to create the order and complete verification (KYC); it also notes Changelly “doesn’t have its own built-in wallet,” requiring a wallet address entry. Rail 3 — MoonPay direct: The MoonPay flow routes users to buy.moonpay.com and MoonPay documentation confirms identity verification is required to access services (KYC). Traffic indicator (supporting signal): A Similarweb snapshot (Dec 2025) supplied in our internal case materials shows 2,271 visits to changellywidget.banxa.com—suggesting meaningful usage of the Changelly→Banxa rail (not proof of completed deposits). Short Analysis What the rails tell us: MegaDice operationalizes a common offshore pattern: keep the casino layer “no-KYC”, while offering convenient “Buy Crypto” conversion rails that push compliance obligations outward to on-ramps (MoonPay; and Banxa when routed via Changelly). Banxa’s own “Changelly tutorial” strongly supports the interpretation that Changelly is the front-end marketplace/aggregator, while Banxa becomes the fiat processor/merchant flow that executes the order and performs verification. Our review shows that MegaDice evidently makes its services available to users in the EU, the UK, and other regulated markets without holding the local authorisations typically required to lawfully offer online gambling in those jurisdictions. If confirmed, this would constitute a breach of applicable national gambling laws by the operator. The casino explicitly lists the UK, France, and Spain as restricted territories, yet markets itself as “VPN-friendly” to facilitate access from these jurisdictions—a regulatory arbitrage strategy that shifts legal and financial risk from the operator to players. Why our findings matter (chokepoint logic): For regulators and banks, the chokepoint is not the casino UI—it’s the fiat-to-crypto conversion layer. If a casino accepts EU/UK players with minimal onboarding and allows direct crypto deposits without visible checks, then the “Buy Crypto” rail becomes the high-impact control surface: block/limit/monitor it, and player conversion can drop sharply. Equally important, the platform’s ability to onboard and fund player accounts depends on fiat-to-crypto and payment “conversion” rails provided by third parties. Where such providers enable transactions that support unauthorised gambling activity—whether through card/Google Pay flows (e.g., via Banxa-powered widgets) or direct on-ramp services (e.g., MoonPay)—they may expose themselves to heightened regulatory and enforcement risk under AML/CTF, payments, sanctions, and consumer-protection frameworks, including obligations around merchant due diligence, transaction monitoring, and controls against facilitating prohibited or high-risk merchant activity. Call for Information Have you deposited via Changelly/Banxa or MoonPay on MegaDice (especially from EU/UK) and can share error screens, order receipts, KYC prompts, payout behavior, or deposit wallet addresses? Are you an insider (affiliate, PSP contact, compliance, support) with details on how MegaDice routes “Buy Crypto” traffic between providers? Submit securely via Whistle42.com (screenshots + timestamps + jurisdiction/device details help). Share Information via Whistle42

The integration of stablecoins into online gambling represents one of cryptocurrency’s most commercially successful—and controversial—applications. By 2025, stablecoins have become the foundational payment infrastructure for a crypto gambling market generating $81.4 billion in annual revenue, a fivefold increase from 2022 levels. This investigation identifies the major platforms accepting stablecoins, examines their regulatory frameworks, and assesses the compliance and financial crime risks inherent in this rapidly expanding sector.​ The Stablecoin Advantage: Why Casinos Adopted Dollar-Pegged Tokens Stablecoins solved the fundamental volatility problem that constrained crypto gambling’s growth. Before widespread stablecoin adoption, players wagering in Bitcoin or Ethereum were effectively making two simultaneous bets: one on the game outcome and another on cryptocurrency price movements. This created psychological barriers for mainstream users who conceptualize money in fiat terms rather than fluctuating digital assets.​ The emergence of USDT (Tether), USDC (Circle), and other dollar-pegged stablecoins provided casinos with stable units of account that operate on low-fee blockchain networks. Players depositing $100 in USDT maintain exactly $100 in value regardless of crypto market volatility, enabling predictable bankroll management. Transaction costs on networks like Tron (TRC-20) remain under $1 regardless of market conditions, compared to Bitcoin fees that can spike to $20-50 during peak demand. Combined with near-instant settlement times versus multi-day traditional banking processes, stablecoins established the infrastructure necessary for crypto gambling’s global expansion.​ By 2025, stablecoins account for 30% of all online wagers globally, up from 20% in 2022. The $26 billion in stablecoin gambling transactions recorded in Q1 2025 alone nearly doubled the previous year’s volume, demonstrating sustained exponential growth driven by technological infrastructure rather than speculative enthusiasm.​ Major Stablecoin Casinos: Market Leaders and Their Operations Tier 1 Platforms Stake.com dominates the crypto casino landscape with over $1.1 billion in monthly transaction volume and $4.7 billion in gross gaming revenue for 2024. The platform supports USDT and USDC alongside 14+ other cryptocurrencies, operating under Curacao licensing. Stake’s aggressive marketing strategy includes Premier League sponsorships and social media campaigns that have generated both massive user growth and regulatory scrutiny.​ BC.Game offers over 9,000 games from top-tier providers with support for USDT, USDC, and DAI. The platform features a 69-level VIP program with proprietary BC Dollar (BCD) token pegged to USD, which players earn through gameplay and can convert to USDT or BTC. BC.Game promotes a 360% deposit bonus up to $500,000, though notably the platform voluntarily withdrew its Curacao license in December 2024, raising questions about regulatory oversight.​ Cloudbet, operating since 2013, represents one of the longest-established crypto casinos with consistent Curacao Gaming Control Board licensing. The platform accepts USDT via both TRC-20 and ERC-20 networks, offering players network choice based on speed and fee preferences. Cloudbet provides direct USDT wallet functionality, allowing deposits, betting, and withdrawals in stablecoins without automatic conversion, alongside a $2,500 welcome package.​ Rollbit emerged as a key player in the $10 billion crypto casino boom, operating since 2020 with its proprietary RLB token that provides utility through fee discounts and lottery entry. The platform allocates 20% of daily casino profits to a revenue-sharing lottery for RLB holders, creating deflationary tokenomics through continuous buyback-and-burn mechanisms. However, recent information suggests licensing issues may affect operations.​​ Duelbits, established in 2020, supports USDT and BUSD across 5,000+ games with a generous 60% rakeback program through its loyalty structure. The platform offers 125% deposit match bonuses up to $250 plus free spins, with instant withdrawals and no mandatory KYC for smaller amounts. Like most competitors, Duelbits operates under Curacao licensing.​ Read our reports on BC.Game here. Secondary Platforms and Specialized Operators Betpanda targets privacy-conscious players with 100% bonuses up to 1 BTC, zero KYC requirements, and no withdrawal limits. CoinCasino ranks among top USDT-specific casinos, while Betplay.io provides USDC support across five major networks including Tron, Ethereum, Solana, BNB Chain, and Polygon. 500 Casino offers USDT deposits on Ethereum, BNB Chain, Solana, and Avalanche networks, and Bets.io supports USDC on Ethereum, Sui, Base, NEAR, and BNB Chain.​ CryptoCasino.com represents emerging Web3-integrated platforms with Telegram-based access, supporting 18+ cryptocurrencies, including USDT and USDC alongside its native $CASINO token. The platform implements a unique incremental bonus release system where 10% of the bonus unlocks for every 6x deposit wagered.​ US-Facing Offshore Casinos While crypto-native casinos theoretically operate globally, most exclude US players through terms of service. However, several offshore casinos explicitly serve the American market through jurisdictions like Panama and Costa Rica. BetOnline processes USDT withdrawals within 24 hours and approves US identification documents during KYC verification. Wild Casino advertises the fastest USDT withdrawals with $5,000 welcome bonuses, supporting USDT, Bitcoin, Ethereum, and Solana.​ Super Slots, Cafe Casino (part of the Bovada network), and Sportsbetting.ag similarly accept US players with USDT support on TRC-20 and ERC-20 networks. These platforms convert stablecoin deposits to USD account credits for gameplay, with withdrawals converting back to USDT at current rates—essentially invisible due to the 1:1 peg. Unlike crypto-native casinos that may confiscate funds when US players submit identification, these offshore operators expect and approve American documents.​ Licensing Framework: Curacao’s Crypto-Friendly Regime The overwhelming majority of stablecoin casinos operate under licenses from Curacao’s Gaming Control Board (GCB). Curacao emerged as the preferred jurisdiction because its regulatory framework explicitly accommodates cryptocurrency gambling, including Bitcoin, Ethereum, and stablecoins, provided operators implement anti-money laundering (AML) and know-your-customer (KYC) compliance measures.​ The 2023 National Ordinance on Offshore Games of Hazard (LOK) modernized Curacao’s licensing system by eliminating the previous master-sublicense structure in favor of individual licenses issued directly by the GCB. This reform introduced stricter AML/CFT obligations aligned with Financial Action Task Force (FATF) and EU standards, requiring enhanced due diligence, transaction monitoring, and responsible gaming protocols.​ Curacao licenses offer several operational advantages: a single license covers multiple verticals including casino, sportsbook, poker, and lottery without separate applications; annual fees range from €40,000-50,000; and approval processes typically complete within 2-3 months. The jurisdiction permits hybrid fiat-crypto platforms and crypto-first operators while maintaining no specific restrictions on stablecoin acceptance.​ However, Curacao licensing provides weaker consumer protections compared to jurisdictions like Malta or the UK. The recent cases of BC.Game voluntarily withdrawing its license and reports of Rollbit’s expired gaming license illustrate enforcement challenges and potential gaps in oversight.​​ Compliance Requirements and AML Obligations Despite operating in crypto-friendly jurisdictions, stablecoin casinos face substantial compliance obligations driven by both local regulations and international AML standards. KYC/AML Implementation Most platforms require KYC verification before processing withdrawals, regardless of amount, to maintain licensing compliance. The verification process typically involves submitting government-issued ID, proof of address, and sometimes selfie verification. US-facing offshore casinos expect American documents and approve them routinely, while crypto-native casinos may use KYC as a “trap” to confiscate funds from restricted jurisdictions.​ Some platforms advertise “no KYC” policies, particularly for smaller transactions, though this creates heightened financial crime risks. Under the GENIUS Act, enacted in July 2025, US-based stablecoin issuers must register as Permitted Payment Stablecoin Issuers with federal regulators and implement bank-grade AML programs. Casinos facilitating stablecoin purchase or redemption using fiat payment methods now fall under this regulatory scope.​ Stablecoin operators are explicitly classified as “financial institutions” under the Bank Secrecy Act, requiring suspicious activity reporting, customer due diligence, and sanctions compliance. The EU’s Markets in Crypto-Assets (MiCA) regulation imposes similar requirements on European stablecoin issuers and service providers.​ Financial Crime Risks Specific to Stablecoin Gambling Online gambling constitutes a high-risk category for money laundering, and stablecoins amplify these risks through several mechanisms. Chainalysis estimated that stablecoins were involved in nearly $25 billion in illicit transactions during 2024, with the UN Office on Drugs and Crime highlighting Tether’s USDT as particularly attractive to criminals due to its price stability, ease of use, and minimal fees.​ Cross-chain laundering exploits stablecoins’ availability across multiple blockchains—USDT operates on Ethereum, Tron, BNB Chain, and 10+ other networks. Criminals move funds between chains to obscure transaction trails, creating compliance blind spots where traditional monitoring tools lose visibility. DeFi integration enables sophisticated layering through lending pools, yield farming, and liquidity provision that creates legitimate-appearing transaction histories masking illicit origins.​ Rapid liquidity allows criminals to quickly convert stablecoins to other cryptocurrencies or fiat without major slippage. Stablecoins’ global accessibility and pseudonymous transactions make them attractive for sanctions evasion, with significant usage documented on exchanges in sanctioned jurisdictions like Iran and Russia. The intersection points where traditional banking meets digital assets—on-ramp and off-ramp services—create particular vulnerabilities where criminals exploit weak exchange KYC to purchase stablecoins or use P2P platforms to convert back to fiat.​ Provably Fair Technology and Transparency Claims Many stablecoin casinos promote “provably fair” gaming as a transparency advantage over traditional online casinos. This cryptographic verification system allows players to independently confirm that game outcomes were not manipulated.​ The technical mechanism involves three components: a server seed (random number generated by the casino), a client seed (random number from the player’s browser that they can modify), and a nonce (incrementing number for each bet). Before each bet, the casino provides a cryptographic hash of the server seed. After the bet concludes, the casino reveals the actual server seed, allowing players to verify it matches the original hash and that the combination of server seed + client seed + nonce produces the displayed outcome.​ BC.Game, Cloudbet, Rollbit, and Duelbits all implement provably fair systems for their proprietary games. However, these verification tools only apply to blockchain-based house games like Crash, Plinko, and Dice—not to third-party slots from providers like Pragmatic Play or Evolution Gaming live dealer tables. The transparency is genuine for applicable games, but players must understand the limitations and that “provably fair” does not address other risks like licensing issues, fund security, or withdrawal processing.​ Payment Processing and Technical Infrastructure Stablecoin casinos support multiple blockchain networks with varying cost and speed characteristics. USDT is available via TRC-20 (Tron network with fees under $1), ERC-20 (Ethereum with variable gas fees), and BEP-20 (Binance Smart Chain offering a middle ground). USDC operates on Ethereum, Polygon, Solana, BNB Chain, Base, and several other networks.​ Deposit processing is typically instant, with casinos crediting accounts after 1-3 blockchain confirmations, generally 5-15 minutes. Withdrawals range from minutes to 24-48 hours depending on the platform and amount. Minimum deposits are usually $20 across major platforms.​ Most casinos convert stablecoin deposits to USD account credits for gameplay, displaying balances and bet amounts in dollars. When players withdraw, the system converts USD balance back to stablecoins at the current rate—effectively invisible due to the 1:1 peg. Some platforms like Cloudbet allow direct stablecoin betting without conversion, maintaining the entire transaction flow in USDT or USDC.​ Risk Assessment: Legitimacy and Consumer Protection Concerns Several factors complicate risk assessment for stablecoin casinos. Offshore jurisdictions provide weaker consumer protections compared to regulated markets, with limited recourse for dispute resolution. The “KYC trap” phenomenon—where casinos accept deposits freely but confiscate funds during withdrawal KYC when identifying restricted jurisdictions—affects players in banned regions.​ Licensing issues present ongoing concerns, with BC.Game’s voluntary license withdrawal and reports of Rollbit’s expired license illustrating governance gaps. Centralized custody risk means deposited funds remain under platform control rather than user wallets, creating insolvency and fraud vulnerabilities.​​ Bonus wagering requirements typically range from 8x to 45x, with some casinos imposing 30x-35x as standard. Players must understand these requirements before claiming bonuses to avoid forfeited winnings. Stablecoin reserves are not FDIC-insured, meaning funds lack the government deposit insurance that protects traditional bank accounts.​ Many platforms are “VPN friendly” and enable users to bypass geo-restrictions, creating legal ambiguity for players in jurisdictions where online gambling is prohibited. While this access serves users in restrictive regions, it also facilitates regulatory arbitrage and exposes players to legal risks in their home countries.​ Market Outlook and Regulatory Pressures The crypto casino market is projected to reach $400 billion by 2028, driven by continued stablecoin adoption, blockchain technology integration, and expansion into emerging markets. Platforms leveraging Solana and BNB Chain report 30% user growth in developing regions, where stablecoins serve dual purposes as inflation hedges and gambling payment rails.​ However, regulatory pressures are intensifying. The GENIUS Act’s stablecoin licensing framework, MiCA’s crypto-asset service provider requirements, and enhanced FATF guidance on virtual assets are converging to impose bank-grade compliance expectations on the sector. Platforms that implement robust AML/KYC, transaction monitoring, and sanctions screening will likely gain competitive advantages and access to institutional partnerships, while those operating with minimal compliance face increased enforcement risks.​ The fundamental tension between crypto gambling’s borderless, pseudonymous nature and regulators’ demands for transparency and consumer protection will shape the industry’s evolution. Stablecoins have definitively enabled the sector’s explosive growth by solving the volatility barrier, but the resulting $81 billion market now attracts regulatory scrutiny that will likely force consolidation around compliant, well-capitalized operators capable of meeting increasingly stringent requirements. Share Information via Whistle42

German public-broadcaster reporting has linked financial entrepreneur Michael Gastauer—known for the WB21/Black Banx storyline—to a large-scale law-enforcement raid in Bavaria. While official details remain scarce, the case raises a hard compliance question: How can globally marketed “banking” narratives, cross-border payment claims, and opaque structures persist without transparent supervisory answers? Key Facts A report titled “Ein Finanzunternehmer und eine Razzia in Bayern” (MVW/ARD Kontraste) discusses Gastauer and connects him to a major raid in Bavaria. Gastauer has long marketed high-growth banking/fintech narratives around WB21 and later Black Banx—claims that have drawn skepticism and reporting scrutiny for years. FinTelegram has repeatedly reported critically on Gastauer-related schemes (WB21/Black Banx) and continues to track the matter as an ongoing case. Publicly accessible, primary-source detail from Bavarian prosecutors (specific allegations, case number, scope of searches, seizure list) is not yet clearly documented in open official releases. Short Analysis Michael Gastauer on stage promoting himself A “raid” is not a conviction—but it is a serious enforcement signal. When public reporting ties a fintech promoter to a large-scale search operation, compliance teams should immediately ask: What predicate risks are being examined—AML failures, unlicensed financial services, false marketing, or cross-border regulatory breaches? Gastauer’s WB21 era already illustrated the core pattern regulators and counterparties should fear: spectacular claims + limited verifiable disclosure + international structuring. Back in 2016, German business reporting described substantial doubts around WB21’s story and numbers and highlighted the difficulty of independently validating the narrative. From a supervisory perspective, the uncomfortable question is not just “What did one entrepreneur do?” but “Which control gates failed?” If consumer-facing “banking” or “payment” propositions are marketed across borders, where are the hard checks: licensing clarity, audited financials, safeguarding/custody assertions, correspondent relationships, and AML program maturity? A raid connected to such a narrative is a reminder that regulatory perimeter enforcement often happens late—after reputational and victim harm is already baked in. Read our reports on Michael Gastauer here. Report: Implausible Metrics, Pay-to-Play Glamor, and Prosecutors Asking AML Questions In a detailed segment by Germany’s leading public broadcaster ARD (Kontraste)—running just under nine minutes—journalists put Michael Gastauer and his Black Banx scheme under a forensic spotlight and link the narrative to ongoing prosecutorial inquiries reportedly coordinated out of Frankfurt. ARD interviews financial experts who reviewed the publicly promoted performance figures and concluded they do not add up—a familiar red flag in the compliance world when marketing claims outpace verifiable operating reality. Black Banx portrays itself as a hyper-growth financial services provider—claiming 92 million customers worldwide, two million new customers per month and results allegedly exceeding those of Commerzbank, one of Germany’s largest banks. App download statistics Black Banx and others ARD counters this “global bank” story with a blunt adoption reality check: in November 2025, the Black Banx app was reportedly downloaded only five times, while a mainstream competitor like Deutsche Bank reportedly exceeded 60,000 downloads in the same period (screenshot left). ARD’s report further claims that even the executive profiles presented on Black Banx’s “leadership” page show signs of having been AI-generated or AI-edited—a bizarre detail, but one that matters when counterparties and regulators rely on management transparency as a baseline control. The segment also dissects the self-awarded aura of prestige around Gastauer. ARD reports that Gastauer is promoted as a recipient of a “Global Banker Award,” but that the award appears to have been handed out only once—namely to Gastauer—as an internal promotion: simply branding theatre. ARD also cites Wealth & Finance as telling the broadcaster that Gastauer paid for a cover placement, and that the associated content was later taken offline after critical reporting. Finally, ARD ties these optics to hard regulatory exposure: the report references the U.S. SEC’s enforcement action connected to a broader fraud scheme attributed to UK citizen Roger Knox, in which the SEC alleged Gastauer’s entities were used to facilitate and obscure flows; a U.S. court entered a final judgment ordering Gastauer to pay more than $17 million. Call for Information Do you have documents, onboarding flows, banking/payment partner details, KYC/AML evidence, correspondence, or regulator communications related to WB21, Black Banx, or Michael Gastauer’s network? Share securely via Whistle42.com. Confidential sources help us verify what enforcement actions are actually about—and who enabled them. Share Information via Whistle42

In 2025, stablecoins moved from “crypto plumbing” to payment infrastructure. On-chain transaction value hit record highs, and banks/fintechs began piloting stablecoin settlement. Regulators also moved: MiCA’s EU stablecoin regime began applying in 2024 and 2025 was the first full year of implementation, while the U.S. GENIUS Act set a federal framework. Key Facts Stablecoin transaction value rose ~72% to about $33T in 2025; USDC led (~$18.3T) and USDT followed (~$13.3T). Q4 2025 alone recorded about $11T in stablecoin transactions. Stablecoin supply was around ~$300B; B2B stablecoin payment flows hit $3B+ per month in 2025. Visa reported ~$3.5B annualized stablecoin settlement volume and launched USDC settlement for U.S. institutions (Dec 2025). Short Analysis Stablecoins bridge TradeFi and blockchains by delivering dollar-like stability in a programmable, 24/7 format. In 2025, usage expanded beyond trading/DeFi into cross-border B2B payments, payouts, and settlement pilots by incumbents. Regulation is now both accelerator and constraint. MiCA applies EU-wide rules to stablecoins classified as e-money tokens (EMTs) or asset-referenced tokens (ARTs), with authorization and disclosure duties; “widely used as means of exchange” thresholds (often summarized as ~1m transactions or €200m per day in a currency area) can trigger remedial measures. In the U.S., the GENIUS Act (signed July 18, 2025) defines “payment stablecoins,” permits banks/approved nonbanks to issue, and sets reserve, attestation, and supervisory requirements. Leading Stablecoins USDT (Tether) remains the market leader with $187 billion in circulation and $13.3 trillion in 2025 transactions, generating $15 billion in profits through Treasury-backed reserves. USDC (Circle) grew 75% to $77 billion market cap with $18.3 trillion in transactions, benefiting from institutional demand and regulatory compliance.  http://daiPayPal‘s PYUSD reached $910 million circulation, positioning itself as a “commerce-first stablecoin”. DAI, the leading decentralized stablecoin, maintains over $5 billion in circulation backed by crypto collateral and real-world assets.​ Outlook / Hypothesis (2026–2027) Stablecoins will continue their trajectory as fundamental payment infrastructure, with conservative estimates projecting market size doubling to $500-750 billion by 2027. Key drivers include expanding use in cross-border payments—where they reduce settlement times from days to minutes—and adoption in inflation-afflicted developing nations, where over 40% of African cryptocurrency volumes now involve stablecoins. Banks will increasingly issue tokenized deposits to compete with private stablecoins while maintaining regulatory protections. The convergence of TradFi and DeFi will accelerate as stablecoins become the standard settlement layer for programmable finance, though growth may moderate as infrastructure buildout requires time and conservative investors approach adoption cautiously. The fundamental shift is irreversible: stablecoins have evolved from experimental crypto assets into mission-critical financial rails connecting the dollar-based global economy to blockchain efficiency. Call for Information Do you see stablecoins used for settlement, payroll, remittances—or as “shadow rails” for illegal gambling, high-risk brokers, or sanctions evasion? Share documents and leads securely via Whistle42.com. Share Information via Whistle42

A federal judge in California has refused to dismiss two lawsuits accusing the U.S. fintech Block Inc. (Square/Cash App) and senior leadership of compliance-related misstatements and oversight failures. The rulings keep an investor class action and a separate shareholder derivative case on track—turning Block’s compliance narrative into a courtroom test of corporate governance, controls, and accountability. Key Facts Court / Judge: U.S. District Court, Northern District of California; Judge Noël Wise denied a motion to dismiss in the securities class action. Class action theory: Investors allege materially misleading statements/omissions about Cash App’s compliance programming (and user metrics), followed by enforcement actions and a major stock decline. Derivative suit theory: Shareholders claim Block’s executives and board breached fiduciary duties by allowing allegedly lax customer due diligence and weak safeguards—effectively failing to supervise compliance. Demand futility: The court accepted allegations that pre-suit demand on the board would have been futile because a majority faced a substantial likelihood of liability / lacked independence (as pleaded). Regulatory backdrop: Block previously agreed to $80M with 48 state regulators (AML program deficiencies) and $40M with NYDFS plus an independent monitor (BSA/AML/KYC gaps). Consumer protection pressure: CFPB said Block failed for years on fraud controls and customer service practices on Cash App and ordered redress and remediation. Short Analysis This is not a “paperwork” dispute. The class action centers on whether Block’s public posture about Cash App’s compliance capacity and operational integrity was materially misleading to investors over the pleaded class period—raising classic securities-fraud questions about disclosure, internal controls, and what management knew (or should have known). The derivative case is the governance blade: it targets the board’s oversight duty—i.e., whether directors meaningfully monitored compliance risk in a fast-scaling fintech with known exposure to fraud, AML/KYC failures, and enforcement attention. If these claims survive discovery, they can become a compliance “X-ray”: board minutes, escalation pathways, SAR/transaction monitoring resourcing, and the reality behind “we take compliance seriously” messaging. Call for Information Do you have internal documents, audit findings, whistleblower evidence, or first-hand experience regarding Cash App’s AML/KYC controls, fraud handling, escalation practices, or board-level reporting? Share information securely via Whistle42.com—anonymity-friendly submissions are welcome. Share Information via Whistle42

FinTelegram has re-tested the RakeBit crypto casino / sportsbook between January 6–10, 2026 and observed repeated failures when attempting to fund accounts via the embedded “Buy Crypto” flow previously routed through MoonPay and Changelly. If confirmed, the loss of this indirect FIAT deposit rail would remove a key conversion chokepoint—potentially explaining RakeBit’s sharp traffic decline in December 2025. Key Points Core finding (Jan 6–10, 2026): The “Buy Crypto” / indirect FIAT deposit rail no longer works in repeated daily tests across jurisdictions (error messages during deposit attempts). In our November 2025 compliance report, MoonPay and Changelly were deeply integrated into RakeBit’s onboarding/deposit journey, enabling FIAT → crypto → RakeBit wallet funding. RakeBit continues to market itself as a “No-KYC” casino and—per its disclosed terms—operates via Innovex Tech Holdings Ltd (Anjouan / Comoros). Hypothesis: The most plausible explanation for the repeated failures is that MoonPay and/or Changelly are no longer supporting RakeBit (offboarding, merchant termination, widget blocking, or compliance geo-restriction). MoonPay explicitly documents region-based widget errors and embed/allowlisting controls that can hard-stop an integration. Traffic angle: Losing the FIAT on-ramp can materially reduce new-player conversion—especially for non-crypto natives—making it a credible contributor to a December traffic drop (correlation, not proof of causation). Reminder: We also warned in November 2025 about RakeBit routing users to the scam domain “Changelly.pro” (distinct from the legitimate Changelly), highlighting elevated deposit-risk conditions around its “Buy Crypto” funnels. Read our reports on MoonPay here. Rail Map Mini: RakeBit Deposit Chokepoint (Update) Rail Type: Indirect FIAT Deposit (“Buy Crypto”) → crypto transfer → casino wallet credit Player Funding Intent (FIAT): User wants to deposit with card/bank but casino is “crypto-first.” Conversion Layer (“Buy Crypto”): Previously routed via MoonPay / Changelly inside RakeBit’s UX (Nov 2025). Settlement: Purchased crypto is transferred to wallets controlled by RakeBit / its operators (casino balance credited). Cash-out: Winnings typically paid out in crypto (keeping the “casino layer” no-KYC while the on-ramp performs KYC/verification). Status (Jan 6–10, 2026): Conversion Layer appears non-functional in repeated tests → rail disruption likely. Short Narrative: What Changed Since November 2025 In our November 6, 2025 RakeBit report, we documented a classic offshore casino pattern: no meaningful KYC at the gambling layer while embedding “compliant-looking” on-ramp partners that perform identity checks at the crypto-purchase step—creating a high-risk architecture that still enables unlicensed gambling access across restricted jurisdictions. During the January 6–10, 2026 retest window, FinTelegram repeatedly attempted the same indirect FIAT deposit flow (via the embedded “Buy Crypto” rail historically associated with MoonPay/Changelly). Across multiple days and jurisdictions, the deposit attempts returned errors and did not complete, suggesting the on-ramp path has been disabled, blocked, or terminated. Extended Analysis: Why Offboarding Is the Lead Hypothesis We cannot confirm contractual relationships without cooperation from the parties. However, the pattern is telling: MoonPay-side enforcement is technically easy. MoonPay’s documentation makes clear that widgets can fail due to geo restrictions or domain/embed controls, which can be used to prevent unauthorized or high-risk placements. Changelly’s FIAT capability often depends on upstream partners. Changelly describes that it processes FIAT transactions through partners including MoonPay, implying that disruption in partner routing can directly break FIAT purchase paths. RakeBit’s risk profile is structurally offboard-worthy. The platform openly markets a “No-KYC” proposition and operates via an offshore licensing posture (Anjouan), which is widely marketed as fast/low-friction for gambling operators—an attractive feature for “regulation-avoiding” models. Working hypothesis (most likely): MoonPay and/or Changelly have stopped servicing RakeBit (compliance offboarding or risk controls), and RakeBit has not yet implemented a replacement on-ramp rail. Alternative hypotheses (less satisfying, but possible): RakeBit broke its own integration (expired keys, misconfigured domains, widget embed failure). MoonPay explicitly notes embed allowlisting issues can produce errors. RakeBit intentionally removed the rail temporarily (pressure, chargeback exposure, or partner dispute). Read our reports on Changelly here. Actionable Insight: What To Watch Next (Rail Research) Signals that confirm a partner offboarding (high value evidence): Screenshots/video of the error flow showing MoonPay/Changelly branding and any error codes. Page-source or network calls identifying the on-ramp endpoint being blocked/terminated. Updated RakeBit terms or checkout UI replacing MoonPay/Changelly with a new partner. Affiliate chatter or operator communications explaining deposit failures. Why this matters for regulators & compliance teams:The on-ramp is the real chokepoint. If major on-ramp partners withdraw, offshore casinos often: shift to direct crypto-only deposits (higher friction, lower conversion), or rotate to less regulated facilitators, often via Cyprus or similar payment-agent hubs (a pattern we previously mapped in RakeBit’s structure). RakeBit Key Data Overview CategoryDetailsWebsiterakebit.comCurrent OperatorInnovex Tech Holdings Ltd (Anjouan, Comoros)​Previous OperatorTECH GROUP BL LIMITADA (Costa Rica, reg. 3-102-880902)​Payment AgentNovaflow Processing LTD. Company number: HE 454267. Address: Archiepiskopou Makariou III, 84, office 1, 6017, Larnaka, Cyprus.Connected EntityTrueFlip.io / Blockchain Games N.V. (Curaçao)​Ultimate Beneficial OwnerKonstantin Katsev (based on whistleblower intelligence)​LicenseAnjouan Gaming (Union of Comoros)​KYC PolicyNo KYC for gambling; marketed as “No-KYC Casino”​Payment FacilitatorsMoonPay Ltd, Changelly​Primary Traffic Source~90% United States (prohibited jurisdiction)Scam AllegationsMultiple BitcoinTalk complaints: $30K seizure, $12K withheld, $833 confiscated​Restricted Markets AcceptingItaly, Germany, UK, United States (verified November 6, 2025)TrueFlip StatusClosed; redirects to RakeBit (November 6, 2025)​ Call for Information (Whistle42) Have you tried depositing on RakeBit in January 2026 and captured the error screen, wallet flows, or updated “Buy Crypto” providers? Are you an insider (affiliate manager, PSP liaison, treasury/ops) with evidence of MoonPay/Changelly offboarding or a replacement rail being negotiated? Share securely via Whistle42. Include timestamps, jurisdiction, device/browser, and any transaction IDs. (Presumption of innocence applies.) Share Information via Whistle42

Google says it will start allowing ads for “Prediction Markets” from January 21, 2026—but only in the United States and only for federally regulated providers offering exchange-listed event contracts. Binary options remain explicitly prohibited. The compliance question is whether this is a sensible investor-protection filter—or the beginning of a new mass-market mis-selling cycle under a trendier label. Key Points Google’s new category is not a blanket green light: it is US-only and requires Google certification. Eligibility is limited to CFTC-authorized DCMs (Designated Contract Markets) whose primary business is listing event contracts, or NFA-authorized brokerages offering access to such DCM products. Google’s policy still bans binary options/fixed-return contracts, plus affiliates/signals content for event contracts. Google also flags the products as complex and speculative—a rare candid warning in ad policy language. The move gives regulated players (e.g., CFTC-permitted venues) a major distribution advantage—while likely boosting “prediction market” mindshare globally. Short Narrative & Analysis On January 5, 2026, Google published an update: starting January 21, ads for “Prediction Markets” are permitted in the US for platforms that provide access to exchange-listed event contracts tied to economics, sports, or current events—only if the advertiser is federally regulated and certified by Google. Many “yes/no” event contracts look and feel economically similar to a binary (all-or-nothing style outcomes, retail-friendly UX, gamified framing). However, Google’s policy is explicitly designed to exclude the classic offshore “binary options broker” model and instead rely on CFTC/NFA gatekeeping for a narrow class of exchange-listed contracts. Read our full report on Google’s Prediction Markets decision. That said, investor protection concerns don’t disappear just because an instrument sits inside a federal framework: Distribution risk is the product. Allowing Google Ads is not a minor tweak—it’s a “growth unlock.” If prediction markets are marketed like sports betting or meme trading, retail harm can scale quickly even in regulated wrappers. Brand laundering risk. Google’s definitions may be precise, but public perception won’t be: offshore operators and casinos already package “prediction markets” as a buzzword product line. The policy bans affiliates and signals, but enforcement at scale is historically inconsistent—and bad actors optimize faster than policy teams. Regulatory fragmentation remains the elephant in the room. Google lists only the US as an approved location today. That’s an implicit admission that outside the CFTC perimeter, the classification of prediction markets (gaming vs derivatives vs something else) remains uneven and often unresolved. Actionable Insight For compliance teams: treat “prediction market” ads as high-risk financial promotions (not cute infotainment). Demand hard proofs of authorization, tighten ad/landing-page disclosures, and monitor for “binary-style” language (fixed payout, guaranteed wins, “easy money”) that Google explicitly bans. Call for Information Have you seen offshore casinos or unlicensed brokers pushing “prediction markets” (especially via Google/YouTube placements, affiliates, or SEO doorway pages)? Send evidence (domains, ad screenshots, payment rails) via Whistle42—this is exactly how regulatory blind spots become mass-harm events. Share Information via Whistle42

US crypto exchange Kraken and Deutsche Börse Group have announced a wide-ranging strategic partnership that links crypto-market plumbing with Europe’s most regulated market infrastructure. The deal spans FX liquidity, crypto access for institutional clients, custody rails, tokenization—and (crucially) a potential path to Eurex derivatives on Kraken, subject to approvals. Key Facts Phase 1: Kraken integrates with 360T to tap “bank-grade” FX liquidity and improve fiat on/off-ramps. Distribution: “Kraken Embed” is positioned as a white-label crypto trading/custody stack for banks/fintechs across Europe and the U.S. Derivatives (planned): Make Eurex-listed derivatives tradable on Kraken—explicitly subject to regulatory approvals. Custody & tokenization: Leverage Clearstream and Crypto Finance and explore tokenized distribution of Clearstream-held securities; integrate tokenization standards (xStocks/360X). Context: Clearstream has been building institutional crypto custody/settlement capabilities (BTC/ETH) via Crypto Finance. Why this matters for Kraken (strategy) Kraken gains a credible “TradFi interface”: deeper FX pools, institutional distribution via Deutsche Börse’s network, and a blueprint to move from “crypto venue” toward multi-asset market access (crypto + tokenized assets + possibly regulated derivatives). If executed, it strengthens Kraken’s pitch to banks and asset managers that need familiar execution, custody, and risk workflows. Compliance lens: the upgrade Kraken can’t dodge This partnership also tightens the compliance vise. Offering Eurex derivatives would drag Kraken into MiFID II-style product governance, market integrity controls, suitability/appropriateness expectations (where applicable), surveillance, and strong conduct standards—with little tolerance for the “crypto-only” compliance playbook. Tokenized securities distribution adds another layer: disclosure, investor classification, custody segregation, and clear lines between exchange, broker, and custodian roles. Actionable Insight If Kraken wants the institutional upside, it must treat this as a control transformation project: governance, surveillance, AML/sanctions, and custody arrangements need to match the expectations of Deutsche Börse-grade counterparties—not just retail crypto norms. Call for Information Have you seen Kraken (or partners) pitching Eurex access, 360T-based rails, or white-label “Embed” offerings to EU clients already? Send tips (docs/screenshots welcome) via Whistle42. Share Information via Whistle42

FinTelegram is evolving. Instead of treating illegal offshore casinos as isolated stories, we now investigate them as repeatable payment architectures—the rails that keep them alive. Our new Rail Atlas consolidates evidence-based “rail patterns” (open banking gateways, fake-fiat onramps, payee substitution, gateway meshes) into evergreen hubs—so enforcement, banks, and readers can see the system, not just the symptom. Key Facts FinTelegram ’26 focuses on cyberfinance chokepoints: payments, open banking, stablecoin rails, and gateway stacks enabling illegal casinos. We convert recurring tactics into Rail Hubs (evergreen pages) under the Rail Atlas. We operate an Airtable Case Register to track cases, entities, evidence, and rail mappings consistently. Whistleblower information via Whistle42 is recorded and triaged into Airtable as strategic intelligence. FinCrime Observer will increasingly handle financial-crime coverage, separate from FinTelegram but connected via Whistle42. Whistle42 is being developed into a cross-platform whistleblower hub; a C42 reward token is planned for Q1 2026. Short Analysis Illegal offshore casinos and other grey- and dark-side schemes no longer rely on a single payment provider. They run multi-layer payment stacks: open banking consent screens that look “regulated,” “bank transfer” options that are actually stablecoin purchases, and e-wallet flows where the payee is not the casino operator at all. This is not random. It is engineering. FinTelegram’s response is to document and publish these systems as rails—repeatable patterns that can be verified, compared, and mapped across brands. The Rail Atlas is our way of turning scattered exposures into structured compliance intelligence. Extended Analysis Why We Built the Rail Atlas Traditional reporting often stops at: “This casino is illegal.” That may be true—but it’s incomplete. The operational truth is: illegal casinos survive because their payment rails survive. When one gateway is blocked, another appears. When card acquiring gets difficult, open banking consent flows fill the gap. When disputes rise, “crypto purchase + wallet transfer” flows reduce chargeback risk by reframing the transaction. Visit the Rail Atlas Hub The Rail Atlas captures these mechanics as evergreen hubs—so readers don’t have to relearn the same tricks in every case. Each hub explains: How the rail works (step-by-step) What evidence proves it (screenshots, redirects, descriptors, on-chain settlement) What chokepoint actions exist (banks, PSPs, gateways, onramps, enforcement) Where it appears (a living Case Index) How we investigate: “Follow the Conversions” Our method is simple and repeatable: Identify the casino or scheme and its licensing/claims Walk the cashier flows and capture UI evidence Map redirects, domains, and provider roles (gateway, facilitator, agent) Capture descriptors and settlement endpoints (including wallets and tokens) Classify the observed behavior under one or more rails Publish a case report—and link it back to the Rail Atlas hubs This is compliance intelligence built for action: it helps banks, fintechs, and regulators see the enabling infrastructure. Airtable: the case register behind the reporting To make this systematic, we use Airtable as our internal case register. It is where we track: Cases, entities, domains, and role assignments Evidence artifacts (screenshots, links, descriptors, wallet addresses, TX hashes) Rail classifications (which pattern applies, with confidence grading) Investigation status and next steps (what we still need to verify) Airtable is not “admin.” It’s the engine that turns new findings into a repeatable investigative pipeline—and it allows us to expand quickly from a single casino to an entire cluster when the rails match. Whistle42: strategic intelligence, systematically captured Whistleblower submissions are increasingly decisive because the most valuable facts are often hidden behind contracts, account structures, and internal policies. Whistle42 has therefore been revised to serve as a cross-platform whistleblower system. Information submitted via Whistle42 is not just “read.” It is structured and recorded in Airtable: linked to cases and entities, assigned confidence grades, and converted into investigative tasks. This is why whistleblowers are strategically important to our work: they reduce uncertainty where the public surface ends. FinCrime Observer: Where Financial Crime Coverage Expands FinTelegram will stay focused on cyberfinance compliance intelligence—the chokepoints and rails. In parallel, FinCrime Observer will increasingly handle financial crime reporting. It is a separate platform with different operators, but it also uses Whistle42 and is part of the same broader ecosystem. The separation is deliberate: compliance intelligence and criminal case coverage require different editorial structures, standards, and workflows. C42 token: rewarding high-quality whistleblower intelligence (Q1 2026) Finally, we plan to introduce the C42 token as a reward token for whistleblowers in Q1 2026. The purpose is not hype. The purpose is incentives: high-quality, actionable intelligence should be recognized and rewarded—especially when it helps expose systemic payment enabling of illegal activity. Actionable Insight If you work at a PSP, open banking gateway, e-wallet, crypto onramp, or acquiring bank: stop looking only at single merchants. Look for rail patterns. The same deposit architecture repeats across multiple brands—and that repetition is the investigative signal. Call for Information If you have insider knowledge about offshore casino payment stacks—merchant-of-record setups, gateway contracts, descriptor logic, “crypto purchase” flows, stablecoin settlement, wallet operations, or compliance overrides—submit securely via Whistle42.com. Your information is recorded systematically in our case register and can materially accelerate enforcement-grade reporting. Share Information via Whistle42

Since 1 January 2026, crypto platforms serving EU residents must start collecting tax identity data under DAC8—and can be required to block “reportable transactions” after two reminders and 60 days if users don’t provide the required information. The UK is running a parallel track via CARF reporting to HMRC, with first reports due in 2027. This is not a “new crypto tax,” but a major enforcement upgrade. Key Points EU DAC8 starts data collection in 2026; first EU-wide exchange of the 2026 reporting data is due by 30 Sept 2027. If a user fails to provide required info after two reminders (and not before 60 days), the provider must prevent the user from performing “Reportable Transactions.” Reporting scope includes crypto-fiat, crypto-crypto, and transfers, including certain withdrawals to “unhosted” (self-custody) addresses. UK CARF requires platforms to collect user + transaction data and report to HMRC; first submission window: 1 Jan–31 May 2027 for calendar year 2026. This is part of a global convergence: OECD tracks many jurisdictions committed to CARF exchanges in 2027–2029. Short Narrative A viral claim framed January 2026 as “the end of crypto privacy in Europe.” The reality is more precise — and for compliance teams, more operationally painful: the regulated on/off-ramps have become standardized tax sensors. Under DAC8, platforms must collect tax-residency identifiers (including TINs) and report aggregated transaction data annually, including categories that can cover withdrawals to self-custody. For users who refuse to provide required details, platforms face a hard rule: after reminders and a 60-day clock, access to “reportable transactions” must be switched off. Extended Analysis 1) What exactly changed on 1 January 2026 in the EU? DAC8 (Directive (EU) 2023/2226) expands the EU’s “administrative cooperation” rules so that Member States can automatically exchange crypto-asset information for tax compliance. The European Commission’s DAC8 guidance is explicit: data collection starts 1 January 2026, the first reporting year is 2026, and reporting is due within 9 months after year-end — i.e., by 30 September 2027 for the first cycle. Compliance translation: 2026 is not “instant enforcement day”; it is the mandatory capture year that determines what tax authorities can match at scale once exchanges begin in 2027. 2) Which providers are covered? DAC8 targets Reporting Crypto-Asset Service Providers (RCASPs) — broadly, entities (and in some cases individuals) that effectuate exchange/transfer transactions in reportable crypto-assets for users. The Commission notes DAC8 builds on MiCA definitions and covers a broad set of crypto-assets, including stablecoins (incl. e-money tokens) and certain NFTs. Practical perimeter: centralized exchanges, broker-style trading platforms, and custodial/intermediated transfer services are the primary “in-scope” population. Pure self-hosted wallet software (with no custody and no transaction-effectuating intermediary) is typically not the reporting chokepoint — but the moment users touch a reporting provider, the trail restarts. 3) What must providers collect — and do they report automatically? Yes. Under DAC8, RCASPs must collect identification data for reportable users (including TINs and residence information) and report annually to their national tax authority, which then exchanges the information with the user’s tax-residence Member State. The Directive also specifies what gets reported and how it’s structured: aggregated gross amounts for acquisitions/disposals against fiat and other crypto-assets, plus fair-market-value metrics for transfers and certain payment transactions. Crucially, it also includes reporting for transfers to distributed ledger addresses “not known to be associated with a [service provider] or financial institution” — i.e., the regulatory “hook” for many self-custody withdrawals. 4) The 60-day countdown: what platforms must do The “countdown” isn’t a new power to seize wallets — it’s an access-control obligation. The Directive states that if a user does not provide required information after two reminders, but not before 60 days, the provider must prevent the user from performing “Reportable Transactions.” Depending on platform design, that can effectively mean no trading and no withdrawals that fall inside reportable scope until compliance data is provided. 5) EU only — or also UK and other countries? EU: DAC8 applies across EU Member States from 2026 (implemented in national law via transposition), with EU-to-EU exchange of data. UK: The UK is implementing the OECD Cryptoasset Reporting Framework (CARF) with HMRC guidance requiring platforms to collect user/transaction data and file their first report 1 Jan–31 May 2027 covering 2026. Required user data includes (for individuals) name, DOB, address, residence, and for UK residents NI number or UTR; for non-UK residents, TIN + issuing country. Global: OECD and the EU both point to a wide group of jurisdictions committed to CARF exchanges in 2027–2029 (OECD’s commitment list is updated regularly). Bottom line: If your platform serves customers cross-border, assume tax reporting convergence is becoming the norm — not a regional anomaly. 6) What does this mean for offline wallets like Ledger? Self-custody is not banned by DAC8. But the compliance impact is real: If you withdraw from an exchange to a Ledger address, DAC8 reporting can capture that as a reportable transfer (with value and other standardized fields), because the destination address is not “hosted” by the same provider. Transactions entirely within self-custody are not automatically reported by the wallet, but they become visible again when you re-enter a reporting provider (deposit, convert to fiat, use a custodial service, etc.). For users, the compliance message is simple: self-custody reduces counterparty risk, not tax obligations. The reporting perimeter is the on/off-ramp. Actionable Insight For exchanges / crypto platforms (2026 compliance checklist) TIN & tax-residency capture: update onboarding flows, remediation journeys, and “two reminders → 60 days → restrict reportable transactions” logic. Transaction classification & valuation: map events to DAC8/CARF categories; implement consistent fair market value methodology at transaction time. Self-custody transfer reporting: ensure your system can tag and aggregate withdrawals to “unhosted” addresses per the Directive’s reporting fields. Cross-border strategy: if you serve EU residents, plan for DAC8 registration/reporting and for “qualified non-union jurisdiction” equivalents where relevant. Privacy/GDPR + audit trail: reporting is mandatory, but the data lifecycle must be defensible (minimization, access control, retention, breach playbooks). For customers Expect platforms to request TIN / tax identifiers and residency details — and treat non-response as a service continuity risk (trading/withdrawal restrictions). Keep your own records; reporting increases mismatch detection. In the UK, platforms will report summaries to HMRC and penalties exist for inaccurate or late reporting by providers, raising the compliance bar across the ecosystem. Call for Information Are platforms using DAC8/CARF as a pretext for over-collection, selective freezes, or discriminatory de-risking? If you are a compliance insider, affected customer, or vendor with evidence of implementation gaps or abusive practices, send information securely via Whistle42.com (anonymity options available). Share Information via Whistle42

The U.S. has revived its 2020 “narco-terrorism” case against Venezuelan leader Nicolás Maduro—now in U.S. custody after a military operation in Caracas that Washington frames as law enforcement. But FinTelegram’s prior reporting suggests the courtroom story may be only half the plot: heavy crude, USDT settlement rails, and China’s oil foothold sit uncomfortably close to the timing, tactics, and messaging of this escalation. Key Points The charges: U.S. prosecutors accuse Maduro (and others) of narco-terrorism and cocaine importation conspiracy (among further counts in filings) (Source: US DOJ) The operation: U.S. forces captured Maduro and Cilia Flores in Caracas on Jan 3; the administration publicly framed it as an anti-drug/anti-“narco-terror” campaign (Source: TIME). Oil reality check: U.S. Gulf Coast refineries were built for heavy grades like Venezuela’s; much U.S. shale output is lighter, which keeps imports structurally relevant (Source: U.S. Energy Information Administration). The stablecoin angle: PDVSA’s increased reliance on USDT for oil-related settlement was widely reported in 2024, raising sanctions-and-AML scrutiny questions (Source: Reuters). The China angle: Reuters has documented China as a major buyer/investor in Venezuela’s oil sector, and the post-Maduro reshuffle is explicitly being framed as a blow to Beijing’s position. Reuters+1 Short Narrative This case didn’t start this week. It started in March 2020, when the DOJ unsealed charges portraying Maduro and allied officials as leaders of a transnational narcotics enterprise and paired the legal attack with a State Department rewards push (Source: US DOJ) Fast-forward: sanctions, offshore trading workarounds, and a familiar dynamic—resource pressure meets financial-rail innovation. PDVSA’s move toward stablecoin settlement (USDT) for oil exports was reported in 2024 as a sanctions-era attempt to reduce funds getting stuck or frozen in traditional banking channels. Then came the kinetic crescendo: a U.S. operation in early January that ended with Maduro and Flores in U.S. hands—an act many observers immediately framed as a sovereignty-shredding “law enforcement” hybrid. FinCrime Observer has focused on the criminal case mechanics; FinTelegram is looking at the political economy behind the trigger. Extended Analysis 1) Heavy crude: the unglamorous driver Washington won’t headline The U.S. produces a lot of oil—but not all barrels are operationally equal. The EIA has long noted that the U.S. produces lighter crude while importing heavier crude that many refineries are configured to process. Reuters explicitly ties the post-Maduro shock to refinery economics: Gulf Coast plants were built for heavy-grade crude like Venezuela exports, and even with shale, many still “require heavy grades to optimise operations.” So when commentators say “the U.S. needs Venezuelan oil because its own oil isn’t the right quality,” that’s not conspiracy—it’s refinery physics. The question is whether this physics helped shape the policy timeline. 2) “De-dollarization” via USDT: escaping banks, not the unit of account Venezuela’s USDT pivot is often described as “moving away from the dollar.” The irony: USDT is a dollar proxy—but it can move outside the classic U.S.-influenced correspondent banking grid. Reuters reported PDVSA would increase digital-currency usage for oil exports amid sanctions churn, and experts warned that such rails require sharper AML scrutiny. FinTelegram previously framed this as “petro-dollar from within”: not replacing USD pricing, but relocating the plumbing into crypto settlement paths that are harder to freeze, slower to attribute, and easier to launder through intermediaries (Source: FinTelegram). If that analysis is directionally correct, then Maduro’s legal exposure and PDVSA’s stablecoin rails are not separate stories—they are the same chokepoint story, just told with different labels. 3) China: the other defendant sitting in the gallery Reuters describes China as a major buyer and investor in Venezuela’s oil sector and presents the recent U.S. posture as explicitly aimed at pushing Beijing out of its foothold. This matters because Washington’s messaging around the operation has not been only about drugs; it has repeatedly drifted into oil control and “running” transitions. So here’s the provocative question regulators and investors should ask: Was the “narco-terrorism” indictment the legal lever—and oil/USDT/China the strategic payload? The U.S. can insist both are true. Courts may be asked to decide whether that insistence survives due-process scrutiny. Call for Information Have documentation on PDVSA’s USDT settlement flows, intermediary trading desks, shipping/STS activity, escrow structures, or legal filings tied to the Maduro/Flores case? Submit securely via Whistle42.com. We verify sources before publication. Share Information via Whistle42

A Singapore court has sentenced British citizen James Henry O’Sullivan to 6½ years in prison for abetting the falsification of Wirecard-linked escrow/balance confirmation letters—paperwork used to convince auditors that hundreds of millions of euros sat safely in escrow accounts. The FinCrime Observer (FCO) brief covered the verdict and defendants. FinTelegram’s angle is different: Singapore is doing what Germany’s watchdogs and parts of its justice system refused to do for years—treat Wirecard’s “Asia cash” narrative as a criminal red-flag, not a PR nuisance. Key Points Singapore sentencing (Jan 6, 2026): O’Sullivan 6½ years; Citadelle director Rajaratnam Shanmugaratnam 10 years (appeals announced) (Source: Reuters, Financial Times). Core conduct: falsified confirmations (2016–2018) meant to mislead auditors into believing Wirecard held large sums in Singapore escrow accounts. Why this matters for Munich: German prosecutors allege Wirecard’s profits were inflated by invented “third-party acquiring” (TPA) business “especially in Asia,” with group accounts 2015–2018 misstated and the fraud culminating in the €1.9bn hole revealed in June 2020 (Sources: Justiz Bayern). Regulatory failure (Germany): BaFin and prosecutors spent key periods targeting journalists and short sellers; BaFin even imposed a Wirecard short-selling ban in Feb 2019. Accountability moment: BaFin president Felix Hufeld ultimately left his post after the Wirecard collapse exposed supervisory failure (Source: Reuters). Short Narrative Singapore’s verdict reads like a compressed anatomy lesson: fake paper → fake cash → audit comfort → market deception. O’Sullivan and Shanmugaratnam were convicted over letters that “confirmed” escrow balances Wirecard did not have (Source: Reuters). In Germany, the same “cash-in-Asia” storyline metastasized into one of the biggest post-war corporate frauds. And here is the uncomfortable part: the scandal is not only about Wirecard’s executives—it is also about Germany’s regulators and parts of its justice apparatus choosing the wrong enemy (Source: Reuters). Extended Analysis 1) What exactly was proven in Singapore According to Reuters and Financial Times reporting, the Singapore case focused on falsified escrow/balance confirmations used to mislead Wirecard’s auditors (commonly referenced as EY in coverage) about the existence of large Wirecard-linked funds in Singapore. This is important: Singapore did not “try the whole Wirecard collapse.” It convicted a high-leverage document-fraud mechanism that made a broader fraud believable. 2) Munich: what German prosecutors say (and what the indictment covers) The Staatsanwaltschaft München I has publicly stated (in its 2022 announcement of the first main indictment) that Wirecard executives and associates allegedly fabricated highly profitable business—“especially in Asia”—and that consolidated accounts 2015–2018 were false because they booked revenue attributed to TPA business. That framing matters for the Singapore connection: escrow confirmations functioned as “cash proof” for the very Asia-centric partner narrative prosecutors describe. FinTelegram’s critique remains: even this large indictment window risks being too narrow for a structure that—by multiple public accounts and earlier red flags—shows warning signs before 2015/2016. The public record of “why didn’t anyone stop this earlier?” remains a governance scandal in its own right. 3) How Singapore and Munich are connected They are connected by the same underlying claim: Wirecard’s “third-party business in Asia” (and the associated cash story) was propped up with manufactured evidence. Munich prosecutors allege the group’s financial picture was distorted by fabricated TPA business and misstated accounts. Singapore courts have now delivered convictions on a key supporting artifact: forged/falsified confirmations designed to persuade auditors the money was there. So yes: the Singapore conviction is directly related to the “non-existent third-party business in Asia” and the “missing millions/billions” thesis as advanced by German prosecutors—because it targets the documentary scaffolding that made those numbers auditable and sellable. 4) BaFin + German judiciary: the shameful inversion Wirecard is now widely described as Germany’s biggest post-war corporate fraud. Yet in 2019—after Financial Times reporting and short-seller scrutiny—BaFin’s reflex was to shield “market confidence,” not interrogate the issuer: BaFin banned short-selling of Wirecard shares in February 2019 (Source: Reuters). German prosecutors later dropped the probe into FT journalists; Reuters reported the Munich prosecutor said the FT’s reporting was “fundamentally correct,” and the FT statement called BaFin’s complaint “unfounded” (Source: Reuters). Reuters also documented the broader pattern: for years, BaFin and prosecutors focused on investors and journalists who highlighted irregularities (Source: Reuters). This is why Hufeld’s departure wasn’t “just personnel.” It was a delayed admission that Germany’s supervisory model—and the prosecutorial instincts around Wirecard—failed at a systemic level. Call for Information Do you have documentation on Citadelle confirmations, escrow account claims, TPA counterparties, or German supervisory/prosecutorial decision-making pre-2016 (including interactions with BaFin, FREP, prosecutors, or political offices)? Send tips securely via Whistle42.com. Share Information via Whistle42

Hyperliquid‘s utility token HYPE is no longer trading anywhere near the “>$40 in June 2025” regime that many holders still anchor to. Using widely-cited price points, HYPE traded around $41.50 on June 10, 2025 (after breaking $40) and is now around $24.5–$24.6 on January 2, 2026. That’s roughly a -40.6% drawdown from the June 2025 “$40+” zone—and a much larger ~58.8% drawdown from the Sep 18, 2025 ATH (~$59.30) (Source: CoinGecko). The uncomfortable takeaway: even with Hyperliquid’s “poster-child” status for this cycle’s perps-DEX narrative and a high-profile stablecoin partner (Circle), HYPE still trades like a high-beta exchange token—reflexive to (1) market regime, (2) platform flows/volumes, and (3) supply shocks (Sources: FinTelegram, Circle). Price Snapshot: June 2025 vs. Jan 2, 2026 Reference point (June 10, 2025): HYPE hits ~$41.50 after breaking $40. On Jan 2, 2026: HYPE day stats show open ~$24.28 / close ~$24.64 (with live aggregates ~$24.5) (Source: CoinMarketCap). Performance (approx.): $41.50 → $24.64 = -$16.86 (~-40.6%) (Source: CCN.com). ATH ~$59.30 (Sep 18, 2025) → $24.6 ≈ -58.8% (Source: CoinGecko). Also worth correcting the framing: HYPE’s lifecycle clearly predates June 2025 (CoinGecko shows an ATL in Nov 2024), so June was not a “genesis listing” moment—it was a cycle acceleration moment. Why is HYPE so far below the June 2025 “$40+” zone? 1) Macro regime risk: the market started pricing a risk-off / bear transition A growing set of analysts has argued that Bitcoin demand dynamics are weakening and the market may already be shifting into a bear-cycle posture—exactly the environment where leverage-heavy venues and their tokens tend to de-rate fastest (Source: Binance). If BTC is the tide, HYPE is the small boat: it doesn’t need “bad news” to fall—it only needs the tape to turn. 2) Hyperliquid-specific stress: $430M weekly net outflows hit the narrative FinTelegram’s report (Dec 21, 2025) frames the >$430M weekly net outflow as a visible stress test for Hyperliquid’s “perps-DEX poster child” status, especially with intensifying competition and a risk-off macro backdrop (Source: FinTelegram).Outflows matter because they’re not just sentiment—they can translate into lower collateral, lower activity, and weaker fee generation, which is fatal for any token story that implicitly depends on “venue flywheel” economics. 3) Competition is no longer theoretical: perps-DEX market share is being contested Hyperliquid has been described as the dominant perps-DEX by volume (e.g., one market update cited ~79% share among decentralized perps at one point in 2025), but late-2025 reporting increasingly highlights rivals closing the gap (or temporarily overtaking in certain windows). Translation: traders are less ideological than narratives suggest. If incentives, UX, or perceived safety improve elsewhere, flow migrates. 4) Tokenomics overhang: large unlocks create supply shocks at the worst possible time Late 2025 saw a very large unlock event highlighted in market coverage: 9.92M HYPE (reported around $251M value) unlocking into circulation—exactly the kind of supply event that can pressure price in thin/risk-off conditions. Even if some recipients stake or hold, markets tend to price the sellable float, not the best-case behavior. 5) “Strong partners” don’t immunize the token—sometimes they raise the bar Yes: Circle has deepened integration with Hyperliquid (native USDC/CCTP on HyperEVM, “network utility” messaging) and public reporting indicates Circle also became a HYPE stakeholder (Sources: Circle, Circle). But ask the harder question: does this reduce risk, or does it raise expectations (compliance, controls, governance maturity)? In a tightening regulatory climate, the market can assign a bigger risk discount to venues that are “too visible to ignore.” The constellation around HYPE: dominance + reflexivity + regulatory perimeter HYPE increasingly trades like a reflexive proxy for: Perps volumes / fee intensity (the “exchange token” dynamic), Net flows (collateral in/out), Competitive positioning (DEX-perps wars), Regulatory risk premium (especially where access is perceived as permissive). FinTelegram has already put the regulatory question on the table: perps access without meaningful geo/KYC friction pushes the venue toward a derivatives-perimeter problem (e.g., MiFID II exposure in the EU framing) (Source: Fintelegram). Investor Hypothesis: What’s the most likely path from here? Base-case (most likely): Hyperliquid survives, but HYPE remains a high-beta, regime-sensitive token that can stay suppressed as long as (a) the broader cycle is risk-off, (b) outflows/competition remain visible, and (c) unlock narratives keep resurfacing. Bear-case: If the bear-market thesis hardens and regulators begin to seriously target offshore/permissionless perps distribution, HYPE could face a longer “exchange-token winter” where each rally is sold into. Actionable Takeaways (non-advice) Treat HYPE less like “a tech token” and more like a leveraged bet on onchain perps activity. Watch three signals: net flows, competitive share, and unlock calendar—they often lead price. Assume the Circle integration is a strategic positive, but not a near-term price floor. Reference: FinTelegram prior coverage This update builds on FinTelegram’s December 21, 2025, report on the $430M weekly outflow and the broader “double whammy” (bear regime + regulation risk) framing. Read the Hyperliquid reports here. Call for Information Are you a market maker, integrator, or trader with insight into Hyperliquid’s real collateral movements, incentive spend, jurisdictional controls, or any enforcement outreach? Share documents and screenshots securely via Whistle42.com. We protect sources. Share Information via Whistle42

In a comprehensive compliance investigation, FinTelegram has documented that MiFinity—a regulated Electronic Money Institution operating under FCA and MFSA licenses—is systematically facilitating payments for unlicensed offshore casinos operating illegally in the UK and EU. The 2024 financial statements reveal a 307% explosion in net income (to £8.6 million), driven by aggressive expansion into high-risk gambling merchants. Simultaneously, the group has concealed £22.6 million in undisclosed inter-company flows to unregulated support entities. The underlying beneficial ownership remains opaque, and the death of founder Mike Busher in summer 2024 removes the primary witness to the group’s offshore structuring. EXECUTIVE SUMMARY FinTelegram Intelligence has completed a comprehensive compliance review of the MiFinity Group, a multi-jurisdictional payment processor operating with regulatory licenses in the United Kingdom (FCA) and Malta (MFSA). The investigation reveals: KEY FINDINGS 1. Documented Illegal Gambling Facilitation MiFinity is a primary payment processor for offshore casinos operating illegally in regulated markets: Legiano Casino: Licensed in Anjouan/Curacao, illegally accepting UK and EU players without local gambling licenses Winning.io: Curacao-licensed operator facilitating global payments including to restricted jurisdictions Documented presence across 650+ gambling websites, many operating without adequate local licensing Regulatory Violation: UK Gambling Commission and EU national gambling authorities require payment processors to refuse merchants operating without local licenses. MiFinity’s facilitation of Legiano and Winning.io violates these regulatory obligations. 2. Explosive 307% Growth Correlated with High-Risk Merchant Expansion Net Income (2024): £8.6 million (+307% YoY from £2.1M in 2023) Total Assets (2024): £77.0 million (+231% YoY from £23.2M in 2023) Gross Profit Margin (2024): 52.1% (compared to 2–5% standard for legitimate payment processors) Timing: Growth explosion immediately followed the October 2023 appointment of Jim Purcell (former CFO of EBET Inc., a gaming operator) as Chief Operating Officer Compliance Insight: The anomalously high gross margin (52.1%) indicates premium pricing for high-risk merchants—casinos unable to access banking rails through legitimate processors. This is consistent with a business model targeting “merchants of last resort.” 3. £22.6 Million in Undisclosed Inter-Company Flows The 2024 audited financial statements reveal massive inter-company transactions without transparent business rationale: Payment DirectionAmount (GBP)NatureMiFinity UK → Concentric Data Services (Ireland)£6.8 million“Service & Technology Fee” (79% of net income)MiFinity Malta → MiFinity UK£14.4 millionPayable Due (undisclosed purpose)MiFinity Payments (Ireland) → MiFinity UK£1.4 millionPayable Due (undisclosed purpose)TOTAL£22.6 million+Undisclosed interdependencies Compliance Red Flag: The £6.8M annual fee to Concentric Data Services—an unregulated entity with no public business description—suggests outsourcing of critical compliance functions (merchant onboarding, KYC, AML/CFT) to an entity outside regulatory oversight. Read the MiFinity Financial Analyses here. 4. Opaque Corporate Structure & Beneficial Ownership Ultimate Beneficial Owners: Not publicly disclosed. While Paul Kavanagh (CEO) and Kieron Nolan (CFO) are identified as controllers, precise equity percentages and additional UBOs remain unknown Founder Death: Mike Busher (American, b. 1951), founder and original majority shareholder (>75%), died in an aircraft accident in summer 2024. His death removes the key witness to the group’s 2017 control transfer and offshore structuring Offshore Links: Busher is listed in the ICIJ Offshore Leaks (Paradise Papers) database as a shareholder of Concentric Data Services Malta Ltd, confirming historical use of offshore secrecy jurisdictions Holding Company Opacity: MiFinity Payments Limited (Malta) serves as group parent but provides no public financial disclosures 5. Regulatory Arbitrage Through Multi-Jurisdictional Structure The group exploits differences in regulatory stringency: Merchant Onboarding in Malta (MFSA, historically permissive) → Execution through UK (FCA) Technology services outsourced to Ireland (Concentric, unregulated) → Limited FCA/MFSA visibility Holding company in Malta → Opaque beneficial ownership and transfer pricing Result: The structure creates systematic gaps in regulatory oversight, allowing high-risk merchants to be onboarded in jurisdictions with weaker enforcement while accessing UK banking infrastructure. FULL COMPLIANCE REPORT SUMMARY The MiFinity Group Compliance Report 2026 provides a comprehensive 26-page analysis covering: Part 1: Corporate Structure Detailed mapping of the group’s seven entities across four jurisdictions, identification of the holding company structure in Malta, and analysis of the inter-company financial relationships totaling £22.6 million. Part 2: Beneficial Ownership & Key Individuals Profiles of current controllers (Kavanagh, Nolan), historical founder (Busher, deceased), and management team including Jim Purcell (COO, gaming sector background) and Franklin Cachia (Chief Compliance Officer, Malta, with dual role at consulting firm CSB Group). Part 3: Business Activities & Merchant Exposure Documentation of MiFinity’s explicit focus on online gambling, detailed case studies of Legiano and Winning.io (illegal offshore casinos), evidence of presence across 650+ gambling websites, and analysis of the compliance gaps that allow illegal operators to be onboarded. Part 4: Regulatory Environment & Gaps Analysis of FCA oversight (MiFinity UK, Reg. 900090) and MFSA oversight (Mifinity Malta, Reg. C64824), identification of group-level compliance gaps (no consolidated AML/CFT policy, undisclosed merchant screening procedures, opaque transaction monitoring), and evidence of regulatory arbitrage opportunities. Part 5: Compliance Hypothesis Hypothesis: The 307% 2024 growth is directly correlated with aggressive acquisition of offshore gambling merchants (specifically Legiano, Winning.io, Dama Group) that cannot access banking services through legitimate processors. The 52.1% gross margin reflects premium pricing charged to these high-risk merchants. Evidence: COO appointment (Oct 2023) from gaming sector immediately preceded growth explosion Documented facilitation of illegal operators (Legiano, Winning.io) Lack of compliance scaling proportional to 231% asset increase £6.8M annual payments to unregulated support entity (Concentric) Part 6: Corporate Opacity & Red Flags Multiple entities with unclear operational roles receiving millions in payments Paradise Papers link confirming historical offshore structuring Deceased founder removing key witness to beneficial ownership Ireland-Malta-UK jurisdictional structure enabling regulatory arbitrage Minimal compliance infrastructure relative to transaction volume Part 7: Summary Findings & Enforcement Recommendations The report identifies critical compliance concerns requiring investigation by: UK Gambling Commission: Illegal gambling facilitation FCA: Merchant due diligence adequacy and AML/CFT controls MFSA: Group-level compliance coordination UK National Crime Agency: Money laundering risks EU Financial Intelligence Units: Cross-border transaction patterns COMPLIANCE RISK ASSESSMENT Risk Level: CRITICAL Risk CategoryAssessmentEvidenceMerchant Due DiligenceCRITICALDocumented facilitation of Legiano, Winning.io (illegal in EU/UK)AML/CFT AdequacyCRITICALNo public disclosure of transaction monitoring, SAR filing, sanctions screening standards; Concentric outsourcing to unregulated entityBeneficial Ownership OpacityCRITICALUltimate UBOs not disclosed; holding company in permissive jurisdiction; founder death removes witnessTransfer Pricing & Fund FlowsHIGH£6.8M annual payments to unregulated entity lack business rationale; £14.4M inter-company payables undisclosedConsumer ProtectionHIGHFacilitation of unlicensed gambling violates UK Gambling Commission regulations and harms consumersRegulatory CoordinationHIGHNo evidence of group-level AML/CFT; multi-jurisdictional structure creates oversight gapsFinancial Crime RiskMEDIUM-HIGHStructure and transaction patterns consistent with money laundering schemes; opacity enables hidden beneficial ownership Regulatory Enforcement Urgency: IMMEDIATE The documented facilitation of illegal gambling operators (Legiano, Winning.io) constitutes a clear regulatory violation that should trigger: Immediate investigation by UK Gambling Commission and FCA Merchant compliance audit examining Legiano, Winning.io, and similar onboarding Beneficial ownership disclosure request to Malta parent company Concentric Data Services investigation regarding unregulated compliance functions Transaction pattern analysis for money laundering indicators DOWNLOAD THE FULL COMPLIANCE REPORT [DOWNLOAD: MiFinity Group Compliance Report 2026 (PDF)]26-page comprehensive analysis with detailed evidence, regulatory framework citations, and enforcement recommendations Download the full MiFinity Compliance Report 2026 here. CALL TO WHISTLEBLOWERS: SUBMIT EVIDENCE VIA WHISTLE42 FinTelegram is actively seeking information from MiFinity insiders, former employees, merchants, and partners regarding: [ACCESS WHISTLE42 SECURE PLATFORM] FinTelegram will respect whistleblower confidentiality to the maximum extent possible while ensuring information reaches appropriate regulatory and law enforcement authorities for investigation and potential enforcement action. Share Information via Whistle42 ABOUT THIS REPORT FinTelegram Intelligence is a leading investigative organization specializing in financial crime, cryptocurrency compliance, and high-risk payment processor analysis. This compliance report represents 6 months of independent research, source verification, and regulatory analysis. Report Prepared By: FinTelegram Intelligence DivisionDate: January 2, 2026Distribution: FinTelegram, Regulatory Authorities, Law Enforcement, Media Partners

The 2024 financial statements for MiFinity UK Limited reveal an explosion in growth, with net income rising by over 300% to £8.6 million and total assets reaching £76.96 million. This analysis hypothesizes that such abnormal gains are driven by the processor’s aggressive pivot toward facilitating payments for offshore and unlicensed casinos like Legiano and Winning.io. Financial Analysis 2024: An “Explosive” Year Filings with Companies House in October 2025 confirm that MiFinity UK Limited (controlled by Irish nationals Paul Kavanagh and Kieron Nolan) has shifted gears from steady growth to hyper-expansion. Download Mifinity UK Ltd Financial Statements 2024 The numbers are striking. Total assets on the balance sheet surged from £23.23 million in 2023 to £76.96 million in 2024—a massive 231% increase. Net income followed a similar trajectory, quadrupling from £2.11 million to £8.60 million.​ Perhaps most telling is the Gross Profit Margin, which the report cites at a staggering 52.1%. In the low-margin world of standard payment processing (where margins often sit below 5-10%), such profitability is an anomaly typically reserved for high-risk sectors where merchants pay premium fees for access to banking rails. Compliance Hypothesis: The “High-Risk” Premium We hypothesize that this financial explosion is not the result of organic retail growth, but rather a strategic decision to dominate the high-risk offshore gambling market. Our intelligence confirms MiFinity as a primary payment gateway for casinos operating with weak or non-existent EU licenses, such as Legiano (Anjouan/Curacao licensed). These operators, often blocked by mainstream processors, rely on MiFinity to move funds from restricted jurisdictions (including the UK and EU). The “risk premium” charged to these illegally operating merchants likely fuels the 52.1% gross margin and the sudden accumulation of £77M in assets.​ While MiFinity UK holds an FCA license, its parent Mifinity Payments Limited (Malta) and its ultimate Irish controllers appear to be leveraging the UK entity to process volumes that arguably bypass the spirit, if not the letter, of UK gambling regulations. Key Financial Data (GBP) Metric2023 (Audited)2024 (Audited)ChangeTotal Assets£23,234,953£76,960,000+231.2%Net Income£2,109,639£8,600,000+307.6%Gross Profit Margin~29.4%52.1%+22.7 pp Related Party Transactions According to point “14. Related Party Transactions” of MiFinity UK’s financial statements, the MiFinity Group also includes Concentric Data Services Ltd in Ireland and Concentric Data Services Malta Ltd; MiFinity Payments Ltd in Ireland and MiFinity Payments Ltd in Malta. MiFinitec Caada Ltd According to the 2024 Financial Statements, the financial (and therefore also operational) interdependencies were intense and remarkable: MiFinity UK owed Concentric Data Services over GBP 6.8 million; MiFinity Payments Ltd, in turn, owed MiFinity UK more than GBP 1.4 million (at the end of 2024). MiFinity Malta Ltd, in turn, owed MiFinity UK more than GBP 14.4 million at the end of 2024. In this respect, the balance sheets of the individual companies are only of limited significance; rather, one must look at the MiFinity Group as a whole. Mike Busher, an American born in June 1951, was the founder of MiFinity and was a director of MiFinity UK between 2012 and 2016. At that time, the company was still called NXSYSTEMS LTD. With more than 75% of the shares, Busher was also the controlling entity until February 2017. The ICIJ Offshore Leaks database shows that Michael Christopher “Mike” Busher is or was also a shareholder in Centric Data Services Malta Ltd. Mike Bushner is believed to have died in a plane crash in the summer of 2024. Key Data MiFinity Group ItemDetailsBrandMiFinity (global e‑wallet and payment services brand focused on online payments and gambling sectors).​Primary domainshttps://mifinity.com (including sub‑paths such as /legal, /about, /news, /personal etc.).​https://www.concentric.globalCore legal entitiesMiFinity UK Limited – incorporated in Northern Ireland, trading as MiFinity; authorised by the UK Financial Conduct Authority under the Electronic Money Regulations 2011, Registration No. 900090.​Mifinity Malta Limited – incorporated in Malta; authorised by the Malta Financial Services Authority (MFSA) as a financial institution/e‑money institution under the Financial Institutions Act, Reg. No. C64824.​MiFinity Payments Ltd (Ireland)MiFinity Payments Ltd (Malta)Concentric Data Services Ltd (Ireland) Concentric Data Services Malta Ltd (Malta)Jurisdictions & regulatorsUnited Kingdom – MiFinity UK Limited is an authorised Electronic Money Institution supervised by the FCA under the Electronic Money Regulations 2011.​Malta – Mifinity Malta Limited is authorised and regulated by the MFSA as a financial institution / EMI, with passporting for cross‑border services in the EEA.​Key individualsPaul James Kavanagh – Irish national; CEO and director of MiFinity UK Limited; publicly identified as co‑founder and key controller of the MiFinity group.​Kieron (Kieren) John Nolan – Irish national; CFO, director, and co‑founder; identified as person with significant control in UK company data.​Jim Purcell – Irish national; COO.Business activitiesE‑money issuance, e‑wallet services, payment processing, and merchant acquiring‑type services; supports card payments, bank transfers, alternative methods, and in some constellations crypto‑linked flows.​Operates as a high‑risk payment processor, with a pronounced focus on online casinos, gambling, and sports‑betting platforms, including operators in weakly regulated or unlicensed offshore jurisdictions.​Primary client segmentOnline gambling and betting operators (including Curacao/Anjouan and other offshore‑licensed casinos), casino affiliates and related high‑risk merchants that require cross‑border payment processing into and out of the EU/UK.​End‑users are retail customers using the MiFinity e‑wallet to deposit to and withdraw from these gambling platforms, often in jurisdictions where local licensing is absent or unclear.​ Whistleblower Call to Action The explosion in MiFinity’s numbers raises urgent compliance questions. We call on insiders, former employees, and partners to share information regarding MiFinity’s onboarding of offshore gambling merchants. If you have information, please contact us anonymously via Whistle42. Share Information via Whistle42

1. Case Summary — Germany Ends Sanctions Probe via Monetary Settlement German prosecutors in Munich have formally discontinued a criminal investigation into Russian‑Uzbek billionaire Alisher Usmanov concerning alleged violations of sanctions and the German Außenwirtschaftsgesetz (Foreign Trade and Payments Act), on the condition that Usmanov pays €10 million (Source: SZ). The case stemmed from allegations that Usmanov, who has been subject to EU and U.S. sanctions since 2022, arranged payments (~€1.5 m) through foreign‑based firms for security services at properties near Tegernsee and allegedly failed to declare valuable assets to German authorities — conduct prosecutors viewed as potential sanctions/non‑compliance (Source: n-tv). Prosecutors and the Munich Regional Court (Landgericht München II) agreed that in light of “special circumstances of this individual case” and unresolved legal questions around sanctions application, the matter could be closed under German criminal procedural law through a monetary condition (Geldauflage), without a conviction or penalty (Source: Deutschlandfunk). The payment is not treated as a fine or punitive sanction; the presumption of innocence remains intact, and the prosecution cannot be reopened on the same facts once the payment is completed (Source: DIE WELT). According to prosecutors, €8.5 m of the €10 m will go to Bavaria’s treasury and €1.5 m to social support charities (e.g., prisoner welfare and victim support) (Source: Reuters). This resolution follows a previous 2024 German discontinuation of a money‑laundering investigation against Usmanov on similar terms (payment of ~€4 m), again without admission of guilt. 2. Legal and Procedural Context Under German law, prosecutors may discontinue proceedings by imposing a Geldauflage — a conditional financial contribution — when it serves procedural efficiency and public interest, and where outright prosecution may not be warranted or legally certain. Such an arrangement: is not a conviction; does not establish guilt or liability; and maintains the presumption of innocence under criminal law. German authorities highlighted unresolved questions relating to sanctions rules and formal requirements, particularly concerning how EU sanctions obligations intersect with German law and reporting duties. This sort of prosecutorial discretion is relatively rare in high‑profile sanctions cases, especially involving politically exposed persons (PEPs) with frozen assets, leading to divergent reactions in legal and policy circles. 3. Usmanov’s Broader Sanctions and Legal Challenges Sanctions status: Usmanov was placed on the EU sanctions list in February 2022 following Russia’s invasion of Ukraine; similar sanctions were imposed by the U.S., UK, and Canada. He has challenged his sanctions designations, including an appeal to the EU General Court (dismissed in 2025) and legal actions against the EU Council and media outlets over alleged defamatory reporting (Source: Wikipedia). Litigation history in Germany: German courts previously found aspects of law enforcement conduct — including property search warrants — to be unlawful, citing formal violations and legal shortcomings. Some cases involved alleged misattribution of property ownership and contested links between Usmanov and entities purportedly connected to him. Ongoing enforcement landscape: At present, there is no public indication of equivalent criminal sanctions or prosecutions against Usmanov continuing in other jurisdictions directly tied to the German case. However: EU and U.S. sanctions remain in force, including asset freezes and travel bans. Compliance and sanctions enforcement agencies in various jurisdictions continue to monitor and enforce restrictions against sanctioned individuals, and legal challenges may continue indirectly through administrative sanctions proceedings. Wikipedia 4. Compliance Implications and Evaluation For sanctions compliance analysts and investigators, this development underscores several important themes: a. Sanctions Enforcement Complexity Sanctions cases involving PEPs and globally diversified asset structures pose unique legal challenges, particularly when: ownership structures involve trusts and indirect holdings, and the application of reporting obligations across jurisdictions remains legally unsettled. Wikipedia Courts may scrutinize enforcement mechanisms and procedural requirements, affecting prosecutorial strategies. b. Prosecutorial Discretion vs. Public Policy The use of a monetary settlement (Geldauflage) in lieu of prosecution — without a formal penalty — raises policy questions: Does such a settlement effectively enforce compliance norms? Might it create perceptions of unequal treatment for high‑net‑worth PEPs? How should sanctions enforcement balance legal certainty, resource allocation, and enforcement impact? These questions are increasingly relevant in cross‑border sanctions enforcement. c. Asset Freezes vs. Criminal Liability Sanctions regimes (EU, U.S., UK) can operate independently of criminal prosecutions. Freezes restrict economic interaction, while criminal liability requires proof of specific statutory violations. Usmanov’s case illustrates how sanctions obligations may intersect with domestic criminal law, but regulatory enforcement does not automatically lead to conviction. 5. Conclusion The termination of the German proceedings against Alisher Usmanov against a €10 million monetary condition — without conviction or admission of guilt — reflects a legal compromise shaped by unresolved legal questions, procedural considerations, and prosecutorial discretion. While this preserves Usmanov’s presumption of innocence, it also highlights the challenges regulators face in enforcing sanctions and foreign trade laws against sophisticated global actors. The sanctions frameworks under which Usmanov remains designated continue to have legal force, and compliance scrutiny persists, even as discrete criminal proceedings are resolved. For FinTelegram intelligence and compliance monitoring, this case demonstrates the nuanced interplay of sanctions enforcement, legal defenses, and prosecutorial strategy — and underscores the need for continued observation of how such high‑profile sanctions matters evolve across jurisdictions. Share Information via Whistle42.

Offshore casinos are no longer “just unlicensed websites.” They are increasingly engineered systems designed to be hard to regulate: anonymous operator presentation, jurisdiction-neutral legal clauses, and—most importantly—multi-layer payment architectures that turn a “casino deposit” into something else entirely. FinTelegram’s recent Stellar investigation illustrates how crypto rails (including bridged stablecoins like USDC.e), open-banking style flows, and payment intermediaries can effectively free offshore operators from meaningful constraints—raising an uncomfortable question: does regulation still work if enforcement can’t touch the rails? Read our Stellar Report here. Key Facts Offshore casinos can swap domains and brands quickly; enforcement measures like warnings and blacklists are often slow, fragmented, and easy to route around. Modern payment stacks split a single “deposit” into multiple counterparties (on-ramp, PSP rail, wallet transfer, settlement layer), obscuring merchant-of-record and weakening consumer redress. In the Stellar cluster documented by FinTelegram, recurring patterns include “fake bank transfers” that are actually crypto purchases (e.g., USDC.e) followed by automatic transfers to casino wallets—plus repeated appearances of the same facilitators. The competitive distortion is structural: regulated operators bear licensing and compliance cost; offshore operators externalize cost to consumers and the financial system. Short Analysis 1) The enforcement gap is structural, not accidental Classic gambling enforcement assumes an operator has identifiable ownership, a stable jurisdiction, and bank rails that regulators can pressure. Offshore casino networks increasingly avoid all three. They “export” gambling into regulated markets while keeping legal entities, infrastructure, and settlement arrangements outside practical reach. Regulators can publish warnings—but warnings do not stop payments. 2) Payment architecture has become the real regulatory battleground The crucial shift is the replacement of direct gambling payments with proxy transactions. “Deposits” are re-framed as: crypto purchases (sometimes bridged variants like USDC.e), open-banking style payments through intermediaries, or e-wallet/aggregator flows where the payee is a third party and the casino receives crypto or pooled settlement elsewhere. This doesn’t only complicate chargebacks. It breaks the supervisory levers regulators historically relied on: the purpose becomes blurry, the merchant-of-record becomes debatable, and the jurisdictional hook disappears. 3) Why offshore casinos are getting bolder When enforcement is slow or ineffective, the economics shift. Offshore operators rationally become more aggressive: expanding into restricted markets, scaling affiliate distribution, and hardening deposit flows against reversal. Over time, “compliance” becomes a cost center for regulated firms—and a competitive handicap. 4) Does regulation still make sense? Yes — but only if it targets chokepoints This is not an argument for deregulation. It is a warning that enforcement must migrate from the casino brand to the rails. Offshore casinos can rotate domains cheaply; they cannot operate without: payment gateways and PSPs enabling disguised deposits, crypto on-ramps and stablecoin rails used as “fake-fiat,” open banking facilitators and consent flows, affiliates and traffic brokers powering distribution. If regulators focus only on the offshore “operator” while ignoring the chokepoints, the outcome is predictable: more volume, more harm, less redress. Call for Information FinTelegram is building case files on the payment chokepoints that enable offshore gambling at scale. If you have evidence on gateway operators, on-ramps, merchant descriptors, acquiring banks, open-banking facilitators, affiliate networks, or withdrawal failures linked to “fake-fiat” deposit flows (including USDC.e), please submit it via Whistle42.com. Share Information via Whistle42

FinTelegram has expanded its review beyond Legiano and observed a repeatable pattern across multiple casino brands attributed to the operator Stellar Ltd: near-identical site structures, minimal operator disclosure, boilerplate “applicable law” clauses, and the same payment rails—most notably “fake bank transfers” facilitated by Polish Chainvalley that convert fiat into USDC.e and forward it to casino wallets. This report consolidates the pattern and explains why USDC.e adds bridge-risk on top of the already deceptive “fake-fiat” UX. Key Facts Casino review aggregators attribute brands such as Ragnaro, Astromania, SpinFin (and others) to Stellar Ltd (Source: Online Casino Groups). Across Stellar-branded sites we reviewed, operator/jurisdiction disclosure is weak, and legal language is often generic or template-like—e.g., SpinFin’s terms literally include a placeholder “laws of [insert jurisdiction]” (Source: SpinFin Casino). The Legiano rail (already published) appears reusable across the network: utPay/Chainvalley checkout → Skrill/Neteller funding → USDC/USDC.e purchase → automatic transfer to casino walle (Source: FinTelegram, Chainvalley) In MiFinity-branded flows, FinTelegram again observed the payee CANAMONEY EXCHANGE LTD (Canada) d/b/a CenturaPay (Source: CenturaPay). Read our Legiano reports here. Short Analysis 1) “Anonymity by Design.” A legitimate gambling operator typically discloses the licensed entity, the licensing authority, and a concrete governing law/jurisdiction. In the Stellar cluster, those anchors are frequently missing or diluted into non-answers (“applicable law”)—or left as template placeholders. This is not a cosmetic defect; it is a dispute and enforcement obstacle. 2) The Payment Architecture is the Same—Because it’s a Template What players experience as a “bank transfer” or “fiat deposit” is, in practice, a crypto purchase executed through a third-party on-ramp and forwarded to a casino wallet. Chainvalley’s own terms contemplate delivering virtual currency to a user-specified wallet address and even freezing crypto/fiat under its rules—confirming the flow is built as an exchange/on-ramp product, not a casino deposit product. For the player, the consequence is predictable: the transaction becomes “I bought crypto and received it,” not “I paid a gambling merchant,” which can undermine chargeback narratives and complicate complaints. 3) Why USDC.e is a second risk layer FinTelegram’s screenshots show USDC.e being purchased in these cashier flows. USDC.e is typically “bridged USDC”—a representation created via third-party bridge mechanics, not native issuance on that chain. Circle’s own documentation and legal terms state that bridged USDC is not issued/redeemed by Circle and is not backed by Circle’s USDC reserves, adding dependency on bridge integrity (“bridge risk”) (Sources: Circle, Circle, USDC, Avalanche).In short: fake-fiat rail + bridged stablecoin = less transparency, weaker redress, more technical failure modes. Call for Information FinTelegram is expanding the Stellar/Legiano case into a broader investigation of this casino template and its payment chokepoints. If you are a player, affiliate manager, PSP/acquirer insider, or have evidence about merchant descriptors, settlement accounts, token contract addresses for the “USDC.e” used, wallet clusters, chargeback outcomes, or payout/withdrawal issues across Legiano/SpinFin/Ragnaro/Astromania/MonsterWin and related brands, submit securely via Whistle42.com. We will publish dedicated deep-dive compliance notes on Chainvalley and CenturaPay/CANAMONEY as this case expands. Share Information via Whistle42

Daftcode’s Kryptonim: How a Warsaw Venture Builder’s Crypto Payment Processor Enables Offshore Casino Fraud Through Deceptive Banking Infrastructure Despite publishing explicit prohibitions against gambling transactions in its Terms of Service, Kryptonim sp. z o.o.—a cryptocurrency payment processor owned by Warsaw-based venture builder Daftcode—systematically processes cryptocurrency payments for illegally operating offshore casinos, including Neon54, LuckyWins (Dama N.V.), and Winning.io. FinTelegram’s latest compliance investigation documents how Kryptonim‘s technical infrastructure, combined with deliberate obfuscation through payment aggregators, enables players to believe they are making bank transfers while actually purchasing stablecoins that bypass traditional chargeback protections. INVESTIGATION SUMMARY FinTelegram’s compliance research division has completed a comprehensive investigation into Kryptonim sp. z o.o. (KRS 0001017630), a Polish virtual asset service provider incorporated February 3, 2023, and documented systematic facilitation of cryptocurrency payment flows for illegal offshore casinos operating without proper licenses in EU member states and Canada. FinTelegram’s complete 40-page compliance profile—“Systematic Facilitation of Illegal Gambling Payments: A Comprehensive AML/CTF Compliance Analysis of Kryptonim sp. z o.o.”—is now available for download. The profile includes: Complete beneficial ownership analysis and Daftcode venture builder governance structure Detailed documentation of payment flows through Neon54, LuckyWins, and Winning.io Screenshots showing fake banking infrastructure and merchant integration AML/CTF control gap assessment Regulatory enforcement risk analysis comparing KuCoin precedent Operational recommendations for compliance remediation Download the Full Kryptonim Compliance Report here. Key Findings: 1. Controlled by Daftcode Venture Builder Network Kryptonim operates as a portfolio company of Daftcode sp. z o.o., a Warsaw-based venture builder founded in 2011 by Kacper Szcześniak (Malta resident), Jędrzej Szcześniak, Daniel L., and Jarek Berecki. Unlike traditional venture capital (10-30% ownership stakes), Daftcode’s venture building model retains 50%+ control of portfolio companies, including Kryptonim. This structure ensures Daftcode’s founders exercise substantive decision-making authority over Kryptonim’s compliance approach, merchant acceptance policies, and operational risk tolerance. Kacper Szcześniak, primary Kryptonim shareholder (96% disclosed ownership), simultaneously serves as Oxla CEO and investor across 25+ Daftcode portfolio companies. This concentration of authority among founding partners with competing portfolio interests creates organizational conflicts that systematically devalue specialized compliance expertise in favor of portfolio-wide revenue optimization. 2. Fake Banking Infrastructure at Winning.io FinTelegram’s uploaded screenshots document Kryptonim’s technical integration with Winning.io casino (operated by Scatters Group). Players selecting “Instant Banking” or “Wise – Instant Banking” deposit options are redirected through Rillpay (Costa Rica-registered payment aggregator) to Kryptonim’s checkout page, where they unknowingly purchase USDC stablecoins (108.16 USDC for 100.00 EUR) that are automatically transferred to Winning.io’s pre-configured wallet address. This architecture accomplishes three compliance violations simultaneously: (1) it mischaracterizes the merchant category code as “purchase of digital assets” rather than “gambling payment,” (2) it eliminates players’ ability to initiate chargebacks by establishing the contractual relationship with Kryptonim rather than the casino, and (3) it uses false “Wise” and “Revolut” branding to suggest legitimacy from regulated payment service providers. Kryptonim’s system displays warnings when players attempt to modify the pre-populated destination wallet address (“may cause transaction to fail or result in loss of funds”), creating friction that discourages address modification while maintaining plausible deniability about merchant integration. 3. Regulatory Violation and Control Deficiencies Kryptonim’s Terms of Service explicitly prohibit “using credit cards for online gambling, betting, or any other iGaming activities.” Yet documented transactions for Neon54, LuckyWins, and Winning.io demonstrate systematic processing of precisely this prohibited category. The company lacks adequate merchant due diligence procedures, transaction monitoring controls, and suspicious activity reporting (SAR) protocols to prevent or detect casino-pattern transactions. Kryptonim faces regulatory transition to EU’s Markets in Crypto-Assets (MiCA) licensing regime by Q2 2025, requiring capital injection (EUR 50,000+ minimum), independent board oversight, and remediation of documented control gaps. CALL FOR INFORMATION FinTelegram seeks additional information from players, compliance professionals, and industry insiders regarding: Experiences with Kryptonim payment processing for offshore casinos (Neon54, LuckyWins, Winning.io, or others) Technical evidence documenting additional casino operators using Kryptonim or Rillpay infrastructure Documentation of payment failures, fund loss, or difficulty withdrawing deposited funds through Kryptonim Information about other crypto payment processors facilitating illegal gambling in EU/Canada Regulatory correspondence or complaints filed with KNF (Poland), FINTRAC (Canada), or FCA (UK) regarding Kryptonim Submit information confidentially to: [FinTelegram contact information] Share Information via Whistle42

FinTelegram is seeing a growing pattern in offshore casino cashier flows: what looks like a normal fiat deposit (e.g., via Skrill) is quietly re-routed into a crypto purchase—often USDC.e—that is then sent to a prefilled casino wallet. This “fake banking rail” reduces chargeback leverage and adds a second risk layer: USDC.e is bridged USDC, not native issuance. Key Facts In cashier flows like the Legiano / Chainvalley setup, the user pays fiat (e.g., 150 EUR via Skrill) while the checkout states they are buying USDC.e and sending it to a specified wallet address—with the consent checkbox already ticked. This is not a “casino deposit” in the traditional sense; it is a crypto purchase + transfer, which can materially weaken dispute/chargeback narratives. USDC.e is typically a bridged form of USDC moved from Ethereum to another chain via third-party bridging infrastructure—not issued by Circle (Sources: USDC, Circle). Short Analysis 1) The “fake-fiat” rail:This flow is designed to feel like a bank/PSP deposit to a gambling account, but it functions as a consumer crypto purchase. The UX does the rest: minimal disclosure, a pre-ticked consent statement, and a prefilled destination wallet that the user is effectively discouraged from changing. The result is predictable: the player sees a casino balance credit, but the payment trail is now “fiat → crypto purchase,” not “fiat → gambling merchant.” That distinction matters for consumer protection, dispute handling, and AML controls—especially in offshore gambling contexts where card acquiring and banking rails are often constrained. 2) Why “USDC.e” raises the stakes:USDC.e explainer: USDC.e usually denotes bridged USDC (ported from Ethereum), meaning it is a different token contract than “native” USDC on that chain and introduces an additional bridge-risk layer on top of the deposit flow. Circle and USDC documentation explicitly distinguish bridged forms (commonly branded “USDC.e”) from native USDC and note that bridged forms are not issued by Circle and rely on third-party mechanisms. 3) The compliance angle (why processors should care):When regulated PSP rails (or PSP-adjacent e-money rails) are used to fund crypto purchases that immediately feed offshore gambling wallets, the risk profile changes. Key concerns include: inadequate informed consent, purpose/merchant-of-record opacity, potential circumvention of gambling-payment restrictions, and elevated AML exposure. If the casino later faces payout friction, players may only discover after the fact that their “deposit” was a crypto transaction—often involving a bridged asset with its own infrastructure dependencies. Call for Information FinTelegram is expanding its mapping of USDC.e “casino rails.” If you are a player, PSP insider, compliance officer, or former contractor with information about Chainvalley-style checkouts, merchant descriptors used on Skrill/Neteller statements, the token contract address (to verify whether it is canonical USDC.e or a lookalike), the chain/network used, or payout/withdrawal issues linked to these flows, please report securely via Whistle42.com. Share Information via Whistle42