Illegal Casinos: Soft2Bet, SOFTSWISS and Europe’s Hidden iGaming Infrastructure Model
Comparative Systemic Compliance Report
The Soft2bet Files expose a much larger question for European regulators: when technology platforms also touch brands, customer operations, payments, offshore operators and regulated market access, can they still be reviewed as neutral software vendors?
Key Takeaways
The Soft2bet Files are not merely another illegal-casino story. Investigate Europe and media partners report a €600 million money trail, leaked internal files, payment statements, former-employee testimony and a network of 145 websites blacklisted in at least one European country. Soft2Bet denies wrongdoing and says the reporting misinterprets its business and corporate structure. [SN1]
Soft2Bet publicly presents a deeply integrated iGaming stack. Its own materials describe turnkey casino and sportsbook technology, payments, KYC, risk management and player support. The company says it holds more than 22 licences across 12 jurisdictions. [SN2]
The alleged hidden layer is the real compliance issue. The current investigation describes offshore operator vehicles, Cypriot payment companies, development entities, customer-service structures and payment providers allegedly connecting blacklisted casinos to the broader Soft2Bet environment. [SN3]
Zentoria is now a critical bridge. Investigate Europe reports that a Belgian card deposit to the unlicensed Onlyspins casino was directed to Irish-registered Zentoria. That independently intersects with FinTelegram’s prior Zentoria / Spinsopotamia research and the NALMI technical evidence package. [SN4]
SOFTSWISS is not Soft2Bet and must not be treated as the same network. But the comparison is compliance-relevant because SOFTSWISS also publicly operates a large modular iGaming infrastructure ecosystem and has been the subject of separate reporting about possible links between its founder environment and unlicensed casino operators. [SN5]
The systemic question is now unavoidable: when a platform ecosystem combines technology, brand deployment, payments, customer operations, engineering, data and cross-border licensing structures, where exactly does the platform end and the operator begin?
1. Executive Summary: This Is Not Just a Soft2Bet Story
Europe’s online gambling sector has spent years drawing a reassuring line between two categories. On one side sits the operator: the company that accepts players, holds the gambling licence and carries the regulatory burden. On the other side sits the platform provider: the supposedly neutral B2B technology company supplying software, games, wallets, CRM tools, payment integrations and back-office infrastructure.
The emerging evidence around Soft2Bet suggests that this line may be far less clear than regulators, banks and payment providers have assumed.
The July 2026 Soft2bet Files, led by Investigate Europe with media partners across 15 countries, describe an alleged ecosystem in which licensed brands, blacklisted casinos, offshore vehicles, Cypriot payment entities, payment intermediaries, customer-service structures and development operations appear to overlap around the broader Soft2Bet environment.
The investigation reports that leaked payment records show €600 million moving between May 2020 and May 2024 from two Cypriot entities, Tranello and Tilaros, to Soft2Bet and associated companies or partners. It further reports that internal files indicate a current population of around 160 casinos, of which 145 are blacklisted in at least one European country. Soft2Bet has denied wrongdoing and said the allegations reflect an incorrect and misleading interpretation of its business and corporate structure. [SN1]
This evidence does not merely raise questions about one gambling group. It raises a structural question about the European iGaming industry:
Can a company still be treated as a neutral technology provider when the surrounding ecosystem appears to include brand deployment, player operations, payments, marketing, customer support, engineering and offshore casino structures?
FinTelegram believes this question must also be asked — carefully and separately — in relation to other large iGaming infrastructure ecosystems, including SOFTSWISS.
This report does not claim that Soft2Bet and SOFTSWISS are connected. It does not claim that they share ownership. It does not claim that the evidence against them is equivalent. The proposition is different:
Different groups. Different evidence. Similar compliance architecture.
2. The Public Soft2Bet: A Regulated iGaming Success Story
The public Soft2Bet story is impressive. Founded in 2016 by Uri Poliavich, the business has grown into a major European iGaming platform and operator group. Soft2Bet markets turnkey casino and sportsbook solutions, gamification technology, payment integrations, KYC services, fraud prevention, risk management and customer support.
Its own public materials show that the company is not simply selling source code. Soft2Bet describes operational capabilities covering:
casino and sportsbook platforms;
player-account and content management;
payments;
a portfolio of more than 100 payment providers;
KYC;
AML and sanctions screening;
anti-fraud systems;
customer support;
self-exclusion handling;
payout management;
and player-risk controls.
In April 2026, Soft2Bet said it held more than 22 licences across 12 jurisdictions. That public footprint matters because it establishes the first part of the systemic compliance problem:Soft2Bet already acknowledges a business model extending deeply into the operational lifecycle of an online casino.
This is not merely a rack in a data centre. It is infrastructure capable of touching: onboarding → KYC → payments → player account → CRM → risk → support → payouts → retention.
The more operationally integrated a platform becomes, the harder it is to maintain a simplistic distinction between a passive technology vendor and the actual gambling operation.
3. The Other Soft2Bet Map
The Soft2bet Files describe a second map. According to Investigate Europe, the broader historical and current environment includes or has included entities such as:
Araxio Development
Rabidi
Tranello
Tilaros
Outono
BrainRocket
marketing and customer-service companies
offshore operator vehicles
and newer structures in jurisdictions including Costa Rica and Anjouan.
The evidence status differs across each entity. Some relationships arise from corporate records, some from leaked banking documents, some from internal screenshots and some from former-employee testimony. That distinction is essential. But taken together, the reported pattern is highly significant.
Investigate Europe says Araxio and Rabidi were used for years around offshore casino websites. The current investigation reports that separate Cypriot entities, Tranello and Tilaros, handled payments associated with casinos while the Soft2Bet name was not publicly visible at that layer.
The reporters say thousands of pages of account statements then revealed direct financial relationships between those entities and Soft2Bet-related or associated companies.
This is the heart of the case. The question is not simply whether two companies shared a director or whether two websites looked similar. The question is whether formal corporate separation reflected genuine operational separation.
4. Follow the €600 Million
The €600 million figure requires precision. FinTelegram does not describe it as “€600 million of proven illegal revenue”. That would go beyond the evidence publicly available. The defensible formulation is:
According to leaked payment statements reviewed by Investigate Europe and partner media, Tranello and Tilaros channelled approximately €600 million between May 2020 and May 2024 to Soft2Bet and associated companies or partners.
Investigate Europe further reports that transfers were often described with references such as marketing services or licence agreements, and that more than €330 million went to companies owned by Uri Poliavich, including the former top holding company Outono and BrainRocket, described in the investigation as the group’s casino-development arm.
The reporting also says that Tilaros, despite not being formally owned by Soft2Bet, made payments to senior people associated with the group. These are serious findings. But they also illustrate a much broader compliance failure. A legal structure can distribute activities across dozens of companies:
one company owns IP;
another develops code;
another employs support staff;
another receives casino revenue;
another pays marketing invoices;
another holds a licence;
another presents the merchant to a PSP.
The critical compliance question is not whether every entity has the same shareholder on paper.
It is: Who controls the system as an operational whole?
5. The Brand Factory
The Soft2bet Files suggest that the public brand portfolio may represent only one layer of the broader environment. Investigate Europe’s March 2025 investigation traced more than 140 gambling websites to Soft2Bet and found at least 114 blacklisted in one EU country at that time.
The July 2026 investigation went further. It reported internal files indicating around 160 casinos, of which 145 were blacklisted in at least one European country. The leaked materials reportedly distinguish between brands described as “internal” and others that may be operated for customers using Soft2Bet technology.
That distinction is fundamental. A large platform provider can legitimately power independent third-party casinos. Shared software is not evidence of shared legal ownership. But the compliance analysis changes where evidence points to:
internal brand tags;
shared staff;
common customer operations;
common payment structures;
common development teams;
common group communications;
or money flows into related companies.
The relevant model may therefore look like this:
Licensed Brands↓Internal Brands↓Customer-Operated Brands↓Offshore Brands↓Mirror and Replacement Domains
The legal labels may differ. The operational factory may not.
6. The Payment Machine
This is where FinTelegram sees the highest systemic risk. Illegal or unlicensed casinos cannot operate at industrial scale merely because they have attractive websites. They need money rails.
They need:
card processing;
bank transfers;
e-wallets;
payment gateways;
acquiring relationships;
merchant descriptors;
settlement accounts;
payout channels;
and increasingly crypto infrastructure.
The second Soft2bet Files instalment focuses on that layer. Investigate Europe reports that My EU Pay and Unlimit, both regulated payment firms, processed transfers within the investigated environment. The report says Tranello and Tilaros sent €543 million from My EU Pay accounts to other My EU Pay accounts linked to Soft2Bet or partners between 2020 and 2024.
Crucially, the investigation reports that when Tranello’s account was opened, Soft2Bet submitted documentation stating that Tranello “belongs to the Soft2bet group.”
The investigation also names or discusses payment-related exposure involving:
My EU Pay;
Unlimit;
Paysafe/Skrill;
Pgway;
card networks;
and other financial intermediaries.
Investigate Europe expressly states that there is no evidence that the payment firms knew their services were being used in connection with blacklisted sites. That caveat matters. But so does the due-diligence question. If hundreds of millions of euros move through a high-risk gambling ecosystem, then banks, EMIs, PIs, acquirers and card networks cannot treat the underlying casino perimeter as somebody else’s problem.
7. Pgway and the Merchant-Layer Problem
The Pgway findings are particularly relevant to FinTelegram’s research agenda. Investigate Europe reports that unlicensed casino deposits were routinely processed through Pgway, a company owned by an associate of Uri Poliavich. Leaked files allegedly indicate that Pgway operated within the broader group environment.
A former employee claimed that redirect URLs for payment-gateway and Pgway functions were created internally at Soft2Bet. The same investigation reports that bank statements of one affected player showed more than 100 different recipient companies across her deposits, including businesses whose apparent commercial descriptions had no obvious relationship to gambling.
Again, these are allegations and reported findings, not final judicial determinations. But the pattern raises the classic payment-compliance issue:
Is the casino the merchant — or is the player being routed through a rotating merchant layer that separates the risky gambling activity from the entity visible to the bank and card network?
That question leads directly to Zentoria.
8. The Zentoria Bridge: Where Independent Investigations Converge
This is one of the most important convergence points between FinTelegram’s own work and the Soft2bet Files.
Investigate Europe reports that a Belgian card-payment test at Onlyspins led to Irish-registered Zentoria. FinTelegram had already identified Zentoria in separate casino-payment rail reviews, including the Malina Casino case, where tested EU-facing payment flows exposed Zentoria Limited as a payee in card/Skrill verification screens.
Read our Malina / Zentoria report here.
This matters because both evidence streams rely on the same investigative method: follow the player deposit path, capture the payment screens, identify the payee or descriptor, and compare the observed merchant layer with the casino brand presented to the player.
The result is a high-value convergence: FinTelegram / Malina: offshore casino deposit flow → third-party payment layers → Zentoria Limited as observed payee.
Investigate Europe / Onlyspins: offshore casino deposit flow → card-payment route → Zentoria Limited as observed payee.
This does not prove that Zentoria owns Malina, Onlyspins, Soft2Bet-related brands or the NALMI infrastructure. It does, however, support the narrower and stronger conclusion that Zentoria has emerged as a recurring payment-facade or merchant/payee-layer indicator across multiple offshore casino investigations.
9. Why the SOFTSWISS Comparison Matters
The obvious mistake would be to write: “Soft2Bet and SOFTSWISS are the same.”
They are not. There is no evidence before FinTelegram establishing common ownership or a single joint network. The correct analytical question is:
Do both ecosystems expose the same structural weakness in Europe’s iGaming compliance model?
FinTelegram believes the answer is yes. SOFTSWISS publicly presents itself as a major iGaming technology ecosystem. Its current website says more than 1,500 iGaming brands rely on its software and describes an integrated portfolio including casino platform, sportsbook, game aggregation and other infrastructure. It also states that its products integrate hundreds of payment methods.
SOFTSWISS expressly says it does not process payments directly, but integrates payment providers into its products.
That distinction must be respected. However, the wider SOFTSWISS compliance context has attracted separate scrutiny.
In November 2024, German broadcaster BR reported evidence it said pointed to possible links between SOFTSWISS and dozens of casinos targeting German players without German licences. The BR investigation focused in part on N1 Interactive Ltd and Dama N.V. and described corporate, court and domain-registration indicators. BR reported that SOFTSWISS and its founder did not answer its questions. Separately, FinTelegram has been mapping the wider ecosystem around:
SOFTSWISS;
Dream Finance;
CoinsPaid;
CryptoProcessing;
FinteqHub;
and Coinspaid Dev.
FinTelegram’s reporting is expressly risk-based and distinguishes registered ownership, documented corporate relationships, public founder roles, whistleblower allegations and unresolved hypotheses. The comparison is therefore not an accusation of identity. It is a comparison of architecture.
10. Soft2Bet vs SOFTSWISS: A Comparative Compliance Map
LayerSoft2BetSOFTSWISSEvidence BoundaryPublic PlatformTurnkey casino and sportsbook infrastructureLarge modular iGaming technology ecosystemPublic / officialPublic Brand RolePublicly owns and operates licensed B2C brandsPrimarily positions as B2B technology provider powering operator brandsPublic / officialPaymentsPublicly offers payment capabilities and 100+ provider portfolioSays it does not process directly; integrates PSPs and payment methodsPublic / officialKYC / RiskPublic KYC, AML, sanctions, fraud and risk stackCompliance and integrated operator infrastructurePublic / officialPlayer OperationsPublic customer support lifecycle includes KYC, self-exclusion and payoutsPlatform infrastructure for operatorsPublic / officialOffshore Casino AllegationsExtensive current leak-based and corporate-record reportingSeparate BR reporting concerning alleged links to offshore operatorsThird-party investigationsDirect Money-Flow EvidenceCurrent reporting cites leaked statements and €600m flowsNo equivalent public €600m leak dossier identifiedMajor evidence asymmetryPayment-Orchestration LayerPgway and other payment relationships in current investigationFinteqHub publicly originated from the SOFTSWISS PSP teamPublic + investigativeCrypto-Payment LayerNot central to current comparative caseDream Finance / CoinsPaid / CryptoProcessing central to FinTelegram analysisFT risk-based analysisEngineering LayerBrainRocket described in current investigation as casino-development armCoinspaid Dev / Polish engineering layer subject of FT analysisDifferent evidence basesTechnical Cluster EvidenceZentoria bridge now intersects FT NALMI researchSeparate infrastructure and ecosystem questionsNot one common networkCurrent Evidence StrengthStrong at leak, payment-record, insider and internal-file levelBroader but more contested across infrastructure, ownership and crypto-payment questionsMust not be equated
The key conclusion is deliberately simple: Different groups. Different evidence. Similar compliance architecture.
11. The Important Difference: Evidence Strength
A serious compliance report must acknowledge asymmetry.
Soft2Bet
The current evidence appears particularly strong because the reporting combines:
leaked payment statements;
internal company files;
internal conversations;
former employees;
corporate records;
regulator blacklist analysis;
player accounts;
live payment tests;
and multi-country media cooperation.
That is a highly developed evidential stack. Soft2Bet denies wrongdoing and challenges the interpretation of its corporate structure. That response must be presented prominently and fairly.
SOFTSWISS
The current public evidential position is different. The case includes:
SOFTSWISS’s own large-scale platform footprint;
the 2024 BR investigation;
corporate and domain indicators discussed by BR;
FinTelegram’s Dream Finance / CoinsPaid / CryptoProcessing research;
FinteqHub’s documented origin from the SOFTSWISS PSP team;
the new Coinspaid Dev engineering layer;
whistleblower allegations;
and unresolved beneficial-control and infrastructure questions.
This does not currently amount to the same type of consolidated leak-based money-flow case as the Soft2bet Files. FinTelegram should say so clearly.
The Soft2Bet evidence currently appears stronger at the direct money-flow and internal-document level. The SOFTSWISS case is broader at the infrastructure, crypto-payment and ecosystem-control level, with several relationships and control questions remaining contested or unresolved.
[SN5] [SN9]
12. Where Does the Platform End and the Operator Begin?
This is the central question. Traditionally, regulators may see:
Software Provider→ sells platform
Operator→ accepts players
PSP→ processes money
Support Provider→ answers tickets
Marketing Agency→ buys traffic
Offshore Licensee→ operates brand
Infrastructure Provider→ hosts domains
On paper, these are separate functions. But what happens if the same economic ecosystem coordinates:
platform development;
brand launches;
KYC;
payments;
payout management;
customer support;
retention;
marketing;
fraud systems;
payment routing;
server infrastructure;
and offshore licensing?
At that point, formal legal separation may no longer answer the real regulatory question. The more useful test becomes:
Who controls the player journey?
Who decides:
whether a player can register;
whether KYC is required;
whether a withdrawal is delayed;
whether a closed account is reopened;
which bonus is offered;
which payment route is displayed;
which merchant receives the card deposit;
which support team answers;
which brand is launched next;
which domain replaces a blocked one?
That is the point where platform analysis becomes operator analysis.
13. Regulated Islands in an Offshore Ocean
The architecture also exposes a weakness in Europe’s national licensing system. A group can potentially maintain:
a licensed brand in Sweden;
another licensed brand in Greece;
another in Denmark;
an Irish merchant or gambling entity;
a Malta payment company;
a Cyprus service entity;
an Anjouan casino vehicle;
a Costa Rican company;
a Marshall Islands parent;
and hundreds of domains accessible across borders.
Each regulator may see one island. Nobody necessarily sees the ocean. That is why a platform group can appear simultaneously:
licensed;
award-winning;
banked;
sponsored;
payment-enabled;
and connected to unlicensed activity.
This is not necessarily because one regulator failed. It may be because the regulatory architecture itself is fragmented. The compliance system reviews legal entities. The operational system functions as a network.
14. The Payment-Provider Failure
For FinTelegram, payment providers are not secondary characters. They are gatekeepers. The current Soft2bet Files raise questions for:
EMIs;
payment institutions;
banks;
acquirers;
card networks;
e-wallets;
payment gateways;
and merchant-monitoring teams.
A PSP onboarding a gambling merchant should understand:
the operator;
the beneficial owner;
target markets;
licensing perimeter;
websites;
descriptors;
related brands;
expected transaction volume;
settlement beneficiaries;
and high-risk affiliates.
But the modern casino network may rotate faster than the periodic review cycle. A domain can change. A descriptor can change. A merchant can change. A payment route can change. A casino can reappear under another brand. The platform layer may remain.
This suggests that static KYB is no longer sufficient for high-risk gambling.
Regulated intermediaries need network-aware monitoring.
15. The Compliance Failure Is Ecosystem-Wide
The question is not simply:
Why did the gambling regulator not block the casino?
The relevant gatekeepers include:
Gambling Regulators
Did they identify common platform, payment or brand infrastructure across licensed and unlicensed operations?
Financial Regulators
Did supervised EMIs and PIs understand the underlying gambling exposure?
Banks and Acquirers
Did transaction monitoring detect high-volume casino deposits, rotating merchants and unusual descriptors?
Card Networks
Were merchant-category and licensing controls effective?
Payment Gateways
Who owned the MIDs, routing logic and merchant mappings?
Game Suppliers
Why were licensed game products accessible on unlicensed brands in restricted markets?
KYC and Fraud Providers
Did account-level client structures reveal common operational control?
Infrastructure Providers
Did concentrated casino-domain environments trigger enhanced review?
Platform Providers
What controls prevented customers, internal brands or related entities from targeting prohibited markets?
The systemic question is uncomfortable:
If every regulated intermediary performed effective due diligence, how can a 145-site blacklisted ecosystem remain commercially functional?
16. Evidence Matrix
PropositionEvidence StatusFinTelegram AssessmentSoft2Bet is a major integrated iGaming providerSELF / OFFICIALEstablishedSoft2Bet says it holds 22+ licences in 12 jurisdictionsSELF / OFFICIALCompany claim145 websites are blacklisted in at least one European country3P INVESTIGATIONReported by Investigate Europe€600m moved from Tranello/Tilaros to Soft2Bet and associated companies/partners3P / LEAKED PAYMENT RECORDSSerious reported findingTranello onboarding identified it as belonging to Soft2Bet group3P / LEAKED ONBOARDING RECORDSerious reported findingSoft2Bet denies wrongdoingDIRECT RESPONSEMust be prominently statedOnlyspins card route led to Zentoria3P / LIVE JOURNALIST TESTHigh-value independent bridgeFinTelegram observed Zentoria Limited in tested casino-payment flowsFT LIVE TEST / SCREENSHOT EVIDENCEEstablished within FinTelegram’s Malina Casino review; Zentoria appeared as payee in tested card/Skrill verification flows connected to an EU-facing offshore casino deposit.Zentoria functions as a recurring merchant/payee-layer participant in offshore casino flowsFT PATTERN EVIDENCE / MULTI-CASE OBSERVATIONStrong FinTelegram working hypothesis, supported by repeated appearances of Zentoria across casino-rail investigations. Requires PSP, acquirer, MID and settlement records for final role attribution.FinTelegram and Investigate Europe used comparable investigative methods to expose ZentoriaMETHODOLOGICAL CONVERGENCEBoth evidence streams rely on live payment-path testing, screenshots and observed payee/descriptor data rather than mere domain similarity or corporate speculation.Zentoria is a proven operator of all casinos in which it appears as payeeNOT FINALLY ESTABLISHEDIts appearance as payee/merchant-layer participant raises payment-facilitation and merchant-monitoring questions.Zentoria links Soft2Bet, Malina, Onlyspins and the NALMI environment into one ownership networkNOT ESTABLISHEDThe evidence establishes a recurring Zentoria payment-layer bridge across multiple casino investigations, not common ownership of all brands or infrastructure.Zentoria is now a central cross-case payment-facade indicatorFT ANALYTICAL CONCLUSIONStrong and defensible. Zentoria should be treated as a high-priority entity for PSP, acquirer, MID, descriptor, settlement and domain-control inquiries.Zentoria / Spinsopotamia sits in wider NALMI technical environmentFT EXTERNAL TECHNICAL DOSSIERStrong infrastructure correlation; ownership not establishedSoft2Bet controls NALMINOT ESTABLISHEDDo not claimZentoria owns the NALMI casino networkNOT ESTABLISHEDDo not claimSOFTSWISS is connected to Soft2BetNOT ESTABLISHEDDo not claimSoft2Bet and SOFTSWISS share a compliance architectureFT ANALYTICAL COMPARISONSystemic hypothesisSOFTSWISS directly processes paymentsCONTRADICTED BY SOFTSWISS PUBLIC POSITIONSOFTSWISS says it integrates PSPs but does not process directlyFinteqHub originated from SOFTSWISS PSP teamSELF / OFFICIAL HISTORICAL DISCLOSUREEstablished public linkSOFTSWISS-linked offshore-operator questions exist3P / BR + FT ANALYSISRelevant but separate evidence streamSoft2Bet evidence and SOFTSWISS evidence are equivalentFALSEExplicitly rejected
17. Regulatory Questions
FinTelegram believes the following questions should now be asked.
To Soft2Bet
What were the precise contractual relationships between Soft2Bet, Tranello, Tilaros, Araxio, Rabidi, Outono and BrainRocket?
Which of the approximately 160 brands in the leaked materials were owned, controlled, internally operated or serviced for third parties?
What did the “internal” brand classification mean?
Did shared customer-service or marketing teams work across licensed and blacklisted brands?
Did any Soft2Bet-controlled systems determine payment routing for blacklisted casinos?
What was the relationship between Soft2Bet and Pgway?
Why did Soft2Bet reportedly identify Tranello as belonging to the Soft2Bet group during payment-provider onboarding?
What controls prevented Soft2Bet technology or services from targeting countries without local authorisation?
To Zentoria
Why was a Belgian card deposit for Onlyspins reportedly directed to Zentoria?
What contractual relationship existed between Zentoria and Onlyspins?
Which PSP, acquirer and MID processed the transaction?
Who was the settlement beneficiary?
Was Zentoria acting as operator, merchant, payment facilitator, agent or another role?
Was the relevant PSP informed that the underlying player was depositing at Onlyspins?
To NALMI
Which customer accounts controlled the relevant allocations inside 185.207.196.0/22?
Were Spinsopotamia and the wider casino-domain population provisioned under one or multiple customer accounts?
Did NALMI receive abuse or regulatory notices concerning the domains?
Does any customer relationship connect NALMI infrastructure to Soft2Bet, BrainRocket, Zentoria or related service companies?
To SOFTSWISS
How does SOFTSWISS distinguish independent operators from brands under common economic control?
What controls prevent platform-powered brands from targeting prohibited jurisdictions?
What is the current relationship between SOFTSWISS and FinteqHub?
What service, engineering or infrastructure relationships exist with Dream Finance, CoinsPaid, CryptoProcessing and Coinspaid Dev?
Does SOFTSWISS conduct network-level monitoring across the brands using its technology?
What action is taken where multiple operators appear to share payment, ownership or infrastructure indicators?
18. FinTelegram Assessment
The Soft2bet Files may represent a turning point. For years, the iGaming industry has relied on a convenient conceptual separation:
The platform supplies technology. The operator bears responsibility.
That distinction remains legally important. But it cannot become a compliance blindfold. A platform capable of coordinating onboarding, KYC, payments, CRM, risk, player support, payouts and brand deployment is not merely supplying a static software product. The closer the platform moves to the player, the money and the operational decision-making, the more urgent the attribution question becomes.
The Soft2Bet evidence is currently the clearest public case study of this problem because it combines alleged internal records, payment statements and operating evidence.
The distinction is not that Soft2Bet has a money-flow layer while SOFTSWISS does not. FinTelegram’s work on FinteqHub, Dream Finance, CoinsPaid, CryptoProcessing and related engineering structures points to a dense SOFTSWISS-adjacent money-flow and crypto-payment architecture.
The difference is evidentiary posture. The Soft2bet Files currently provide a more consolidated public leak-and-bank-record package, including reported payment statements and specific money-flow allegations. The SOFTSWISS case, by contrast, is built around platform scale, crypto-payment architecture, PSP orchestration, engineering layers, public corporate links, BR reporting and FinTelegram’s own investigations.
The conclusion is not: Soft2Bet = SOFTSWISS. The conclusion is:
Europe may have a platform-provider compliance problem.
19. Final Conclusion: Follow the Infrastructure, Not Only the Licence
The next generation of gambling compliance cannot stop at a licence register. Regulators and financial institutions must map:
ownership;
infrastructure;
payment orchestration;
merchant descriptors;
support teams;
engineering;
domains;
replacement brands;
API relationships;
and settlement beneficiaries.
Because the modern casino ecosystem is not a company chart. It is a network. And in a network, the decisive question is no longer only:
Who owns this casino?
It is:
Who controls the system that keeps the casino operating?
That is where the platform may end.
And the operator may begin.
Right of Reply
FinTelegram invites Soft2Bet, Uri Poliavich, BrainRocket, Outono, Tranello, Tilaros, Araxio Development, Rabidi, Pgway, Trumia, Zentoria Limited, NALMI Limited, SOFTSWISS, Dream Finance, CoinsPaid, CryptoProcessing, FinteqHub, Coinspaid Dev, all relevant payment providers, banks, acquirers, regulators and other affected parties to provide factual corrections, context and documentary evidence.
FinTelegram will review substantiated responses and update its reporting where appropriate.
This report does not establish criminal liability or unlawful conduct by any named party. It distinguishes official information, third-party investigative findings, technical correlations, FinTelegram analysis and unresolved hypotheses.
Call for Information
FinTelegram invites current and former employees, engineers, payment professionals, compliance officers, affiliate managers, customer-support agents, PSP staff, acquirers, casino contractors and affected players to provide information concerning:
Soft2Bet and related brand environments;
Tranello and Tilaros;
Pgway and payment routing;
BrainRocket;
Trumia;
Zentoria and Spinsopotamia;
NALMI infrastructure;
SOFTSWISS;
Dream Finance;
CoinsPaid / CryptoProcessing;
FinteqHub;
Coinspaid Dev;
internal brand lists;
merchant descriptors;
MIDs and gateway identifiers;
settlement beneficiaries;
replacement domains;
shared operational teams;
and cross-border casino-payment infrastructure.
Information can be shared confidentially with FinTelegram via Whistle42.
Share Information via Whistle42
Source Notes / Fact-Check Map
SN1 — Soft2bet Files: €600m, 145 blacklisted sites, leaked records, internal files, former employees, and Soft2Bet’s denial. Investigate Europe says its year-long, 15-country investigation reviewed thousands of pages of leaked payment records and internal material; it reports €600 million flowing from offshore-casino-linked structures and 145 blacklisted websites. Soft2Bet denied wrongdoing and said the reporters’ interpretation of its structure was misleading. The Times of Malta independently carried the consortium findings, and BR/Tagesschau reported the German-market dimension.
SN2 — Soft2Bet’s own integrated operating stack. Soft2Bet publicly markets turnkey iGaming technology and explicitly describes payments, 100+ payment providers, KYC, risk and fraud controls; its customer-support materials include self-exclusion, KYC and payout handling. In April 2026, the company said it held more than 22 licences across 12 jurisdictions.
SN3 — Araxio, Rabidi, Tranello, Tilaros, Outono and BrainRocket. Investigate Europe reports that Araxio and Rabidi formed part of the offshore layer and that payment statements show Tranello and Tilaros channelling €600 million to Soft2Bet and associated companies/partners; the reporting says more than €330 million went to Poliavich-owned companies including Outono and BrainRocket. These are reported investigative findings, not final judicial determinations.
SN4 — Onlyspins → Trumia / Zentoria payment tests. Investigate Europe reports that a German bank-transfer test at Onlyspins led to Trumia, while a Belgian card test asked reporters to send money to Irish-registered Zentoria. The same report says Zentoria’s licence did not cover Onlyspins.
SN5 — Separate SOFTSWISS adverse-media stream. BR/Tagesschau reported in November 2024 that its analysis indicated possible links between SOFTSWISS/the founder environment and unlicensed casinos operated through N1 Interactive and Dama N.V.; BR said SOFTSWISS and its founder did not answer its questions. This is a separate investigation from the Soft2bet Files and must not be conflated with them.
SN6 — Payment firms and Pgway. Investigate Europe reports that My EU Pay and Unlimit processed transfers in the investigated environment; it says €543 million moved from Tranello/Tilaros My EU Pay accounts to accounts linked to Soft2Bet or partners and that onboarding material described Tranello as belonging to the Soft2Bet group. The second report also details Pgway-related allegations and expressly says there is no evidence the payment firms knew their products were used in relation to blacklisted websites.
SN7 — FinTelegram’s Zentoria/NALMI technical evidence. The uploaded External Technical Evidence Dossier reports 496 investigated domains, 495 inside the NALMI / AS213846 185.207.196.0/22 snapshot, a strict 83-domain shared-configuration cluster and multiple API/asset correlations. It explicitly warns that shared infrastructure does not prove common legal ownership.
SN8 — SOFTSWISS public platform and payments position. SOFTSWISS says more than 1,500 iGaming brands rely on its software. It publicly describes a modular iGaming ecosystem and says it does not process payments directly but integrates payment providers; its site also describes hundreds of payment methods.
SN9 — FinTelegram’s SOFTSWISS / Dream Finance analysis. FinTelegram’s June 2026 reports map a risk-based ecosystem around SOFTSWISS, Dream Finance, CoinsPaid, CryptoProcessing and FinteqHub; v2 adds the Polish Coinspaid Dev engineering layer and expressly separates documented ownership from allegations and unresolved control questions.
SN10 — FinteqHub provenance. SOFTSWISS itself announced in 2023 that FinteqHub was developed by the SOFTSWISS PSP Team, a relevant public link for the payment-orchestration comparison.
SN11 — Scale of current German exposure. BR/Tagesschau reported that a Similarweb-based analysis suggested Soft2Bet-serviced unlicensed casinos received roughly eight million visits from Germany in May 2026. This is a media analysis, not a regulator-certified traffic count.
SN12 — Earlier 2025 network findings. Investigate Europe’s March 2025 investigation said it traced more than 140 gambling websites to Soft2Bet and found at least 114 blacklisted in one EU country as of February 2025. The July 2026 reporting uses a later and broader 145-site figure.
SN13 — Soft2Bet’s response. The company told the investigative consortium that it takes compliance and governance seriously, denied wrongdoing and described the reporters’ interpretation of its business and corporate structure as incorrect and misleading.
SN14 — The core evidence asymmetry. The statement that the Soft2Bet case is currently stronger at the direct leak/payment-record level is FinTelegram analytical judgment, based on the current Investigate Europe evidence stack versus the separate BR, public-product and FinTelegram risk-based evidence streams around SOFTSWISS. Supporting source bases:
Read More