FinTelegram’s new report tracks a striking payment-rail sequence from Lithuania to Poland to Georgia: utPay, ChainValley and Nylo. The working hypothesis is broader — MiCA may be shifting high-risk casino crypto infrastructure without yet disrupting the underlying business.
One week after MiCA’s transition deadline, FinTelegram found Betify’s Skrill and Neteller-labelled deposit routes still leading to Georgian Nylo “Exchange orders” requiring users to buy crypto and send it onward. Nylo’s own Terms and AML Policy raise deeper questions about gambling payments, direct KYC, limited monitoring, VASP status and EU reverse solicitation.
FinTelegram’s latest casino payment-rail reviews indicate a coordinated migration from the Polish crypto on-ramp ChainValley to the Georgian payment gateway Nylo. The pattern looks disturbingly familiar: the same offshore casinos, the same fake-FIAT crypto-buy flow, the same Skrill/Neteller/Rapid Transfer/Paysafecard wrappers — and the same opacity around the true gambling beneficiary.
FinTelegram has identified mixfind.com as the named payee in a Skrill Prepaid Mastercard verification screen during a casino deposit review. MixFind publicly presents itself as a Payment Support Portal that helps users identify unknown card charges — but its website does not disclose a legal entity, jurisdiction, ownership, PSP role, acquiring relationship, or merchant portfolio. We are asking players, insiders, PSP staff, and compliance officers to help identify the operator behind MixFind.
FinTelegram’s Malina Casino review exposes a geo-domain payment-rail layer targeting EU players through jurisdiction-specific deposit routes. Austrian and Italian test flows revealed Revolut Open Banking, Perspecteev SAS, RAPID, Finmesh, Skrill, MiFinity, ChainValley-style fake-FIAT crypto conversion, Zentoria, and the newly surfaced mixfind.com payee. The evidence points to a classic offshore casino rail model: the casino brand stays in the front window, while rotating payment facilitators, payees, gateways and open-banking actors move the money underneath.
A Dutch legal-forensic initiative has pushed the illegal-casino debate into a new phase. ITFY Legal has served a detailed forensic cluster report, a Casino Monitor infrastructure report, and a follow-up addendum concerning the HolyLuck-linked casino network on casino operators, payment facilitators, regulators, government agencies and infrastructure providers. The reports draw on FinTelegram’s earlier investigative findings but go deeper into technical infrastructure analysis.
FinTelegram’s May 2026 review of Betify shows a materially reconfigured payment architecture compared with the August 2024 review. The visible corporate wrapper has changed from Altacore N.V. / Altaprime Limited to Fortuna Games N.V. / Deltaprime Limited, but the underlying risk pattern remains: EU players can apparently access and fund an offshore casino through layered payment rails.
Oro.gg, operated by Belize-registered Tusitier Ltd, illegally targets European and British players without valid regulatory licensing. The casino facilitates unauthorized gambling through heavily disguised fiat-to-crypto payment rails. Our analysis reveals that Polish VASP ChainValley—acting as the successor to suspended Lithuanian utPay—systematically circumvents banking blocks, masking casino deposits via mainstream e-wallets like Skrill, Neteller, and Revolut.
A German offshore-casino player has provided FinTelegram with a detailed account that directly supports our working hypothesis: ChainValley is replacing Lithuania’s suspended utPay/UTRG stack inside casino cashier flows—especially where deposits are branded as Skrill. The player describes a “Skrill payment” that is actually a crypto purchase + wallet transfer, and a refund/KYC workflow where ChainValley support allegedly sent the verification link—suggesting operational continuity behind the scenes.
A leaked transaction receipt from a victim of the Galaktika N.V. casino scheme reveals the use of "NGPayments." This technical layer acts as a cloaking device, allowing high-risk offshore casinos to exploit the Skrill and Rapid Transfer networks while masking the true destination of funds through UK and Cyprus-based shell companies.
The Briantie Group, centered around Cyprus entity Briantie Limited and Curaçao‑licensed Wiraon B.V., illustrates a high‑risk model in which offshore casino operators leverage EU‑based payment agents and opaque crypto processors to target players in prohibited markets such as Italy. The group’s structure, domain practices, and payment setup raise significant regulatory and AML/CTF red flags.
The Dutch regulator Kansspelautoriteit (KSA) has imposed a €4,228,000 administrative fine on Starscream Limited for offering illegal online gambling to Dutch players via RantCasino, AllstarzCasino, and SugarCasino. The KSA explicitly frames enforcement as a “third-party” problem too—working with payment service providers, banks, hosting, and big tech—because unlicensed casinos don’t scale without rails.