MiFinity Whistleblower Reveals Payments in Restricted Markets

MiFinity: whistleblower evidence suggests payments in restricted markets!
The story surrounding MiFinity has not gone away. Last week Malta Media published a detailed review of whistleblower material alleging that the payment provider had facilitated transactions into high-risk jurisdictions.
That article, available here, sets out concerns about merchant onboarding, corporate governance and exposure to unlicensed operators. Since then, further evidence has come to light which provides additional context and raises fresh questions about the company’s operations.
This new tranche of documents, combined with structured whistleblower testimony, builds on the original reporting by moving from general allegations to more concrete examples.
Screenshots, payment flow diagrams and access logs point to operators using MiFinity, which are demonstrably active in markets where online gambling is restricted or prohibited. The whistleblower has provided timestamps and domain paths that reveal not only that these sites were available to players in countries like Australia and Germany, but also that MiFinity appeared as an integrated payment option at the point of registration and deposit.
Why the new evidence matters?
The difference between suspicion and substantiation often lies in detail. While last week’s reporting highlighted the existence of a large body of data, this follow-up considers specific operator examples and the regulatory environments in which they were encountered. This approach gives greater clarity to the questions regulators may one day put to MiFinity.
Australia is a critical case study. Under the Interactive Gambling Act, offshore online casinos are prohibited from targeting Australian residents. Enforcement has been stepped up in recent years, with the Australian Communications and Media Authority (ACMA) blocking hundreds of domains.
The whistleblower material reviewed by Malta Media nevertheless demonstrates that at least three casinos with MiFinity integrations: Stay Casino, SkyCrown and Ricky Casino; all actively accepted Australian players at the time of testing.
All three were accessible through “/en-AU” entry paths and registration pages which indicated Australian localisation. In each case, MiFinity appeared as a listed deposit method.
The same dossier also highlights German-language promotional paths that directed players to unlicensed operators using MiFinity alongside other alternative payment rails. Germany’s Glücksspielstaatsvertrag 2021 requires operators to hold a national licence if they offer services to German players.
The whistleblower’s materials capture site journeys where language localisation, payment options and deposit confirmations combined to form what appears to be a deliberate targeting of the German market.
Tensions in MiFinity’s compliance model
These examples do not prove misconduct by MiFinity itself. Operators sometimes list payment methods without formal approval. And resellers or third-party processors may enable integrations without the direct knowledge of the payment provider. However, the material raises questions about the robustness of MiFinity’s monitoring processes.
If MiFinity had effective controls in place to identify misuse of its logo, one would expect rapid intervention when operators openly displayed its services in restricted markets. Instead, the whistleblower alleges that such integrations remained active for extended periods, suggesting either limited oversight or a lack of will to challenge revenue-generating clients.
The documents also describe internal discussions where compliance warnings were allegedly sidelined in favour of sales priorities, a claim that strengthens the perception of weak internal governance.
The presence of multiple entities across Malta, Ireland and the United Kingdom further complicates accountability. As in the first article, MiFinity’s layered structure appears to make it difficult to pinpoint which company is responsible for a given merchant relationship.
The whistleblower’s testimony suggests that this opacity was not accidental but rather an outcome of deliberate corporate structuring.
Australia as a test case
Focusing on Australia highlights how enforcement pressure can fall not only on operators but also on intermediaries. Stay Casino and SkyCrown both offered dedicated AU registration paths and both listed MiFinity among accepted deposit methods.
Ricky Casino went further by presenting itself with overt Australian branding, including a Sydney-based customer support reference.
These are not trivial matters. When an operator invests in localised branding and country- specific entry pages, it is difficult to argue that Australian players are being accepted by accident. The integration of MiFinity within these environments brings the payment company into the compliance frame.
The fact that ACMA has no record of licences for these operators reinforces the perception that MiFinity’s systems may have been used in contravention of Australian law.
Germany and the DACH region
The German case is subtler but equally significant. Here, the evidence is not a direct licence register conflict but rather the presence of German-language funnels promoting casino deposits through MiFinity. Germany’s regulatory framework since 2021 is clear: unlicensed operators may not target German consumers and payment intermediaries are expected to respect these boundaries.
The whistleblower material shows step-throughs of deposit pages, promotions in German and acceptance of MiFinity as a payment choice. Even if MiFinity did not itself promote to German consumers, the effect is the same: its services appeared to facilitate play in a market where the operators concerned did not hold a valid licence.
For regulators, such optics are enough to justify closer investigation.
The role of corporate structure
Much of the whistleblower’s emphasis falls on the complexity of MiFinity’s group companies. The list of entities: MiFinity UK Limited, MiFinity Malta Limited, MiFinity Holdings Limited (Malta), PK Paytech Limited and KN Paytech Limited in Ireland and MiFinity Payments Limited reveals a web that spans multiple jurisdictions.
On their own, these structures may be legitimate tax and licensing vehicles. Yet they create barriers to transparency and make it difficult for outsiders to map responsibility.
If one company signs the merchant, another processes the payments and a third handles compliance queries, the risk of fragmented oversight is obvious. The whistleblower argues that this fragmentation made it harder for banks, card schemes and regulators to assess the true exposure of the group.
While MiFinity might defend the structure as standard industry practice, the perception remains that complexity is being used as a shield against accountability.
Regulatory exposure and reputational risk
The combined effect of these allegations is reputational pressure. Even if MiFinity has not intentionally facilitated illegal activity, the appearance of doing so is damaging. Regulators in Australia and Germany have demonstrated that they are prepared to act against both operators and payment intermediaries. Banks and card schemes, wary of association with unlicensed gambling, could reconsider their relationships if MiFinity fails to offer convincing assurances. The financial implications are not limited to fines or sanctions. In an industry where operator integration is highly competitive, any suggestion of regulatory weakness can cause partners to migrate to competitors. The whistleblower material, now documented across multiple jurisdictions, increases that risk substantially.
A whistleblower’s credibility
The whistleblower in this case has provided extensive documentation, including over sixty megabytes of files. The material is not a collection of vague accusations but includes detailed screenshots, domain records and payment flows. The fact that the source was a former compliance employee also strengthens credibility, since they would have had visibility into decision-making processes and internal escalation.
The whistleblower explains that attempts to raise red flags internally were met with limited response. Pressure from the sales team to prioritise revenue allegedly outweighed compliance concerns. Eventually, the source chose to leave and disclose the material externally. This sequence of events aligns with common whistleblower patterns in financial services and adds weight to their account.
MiFinity’s silence
As noted in the previous article, MiFinity has not provided a public statement in response to Malta Media’s questions. Those questions, addressed to senior staff including Paul Kavanagh, Stella Boneva and Stephanie Agius, related to the onboarding of Versus Odds B.V., a Curaçao- licensed operator serving multiple European markets.
The lack of response then and the continued silence now, leaves a vacuum in which speculation flourishes.
A more proactive approach would be to issue a transparent explanation of merchant onboarding standards, monitoring practices and remedial measures. Absent such clarity, the risk is that allegations (whether substantiated or not) will dominate the narrative.
Why this matters beyond MiFinity?
The MiFinity case highlights a broader issue within the payments sector. Providers operating at the edge of regulated and unregulated markets often face conflicting incentives. On the one hand, compliance requires strict exclusion of high-risk operators.
On the other, revenue pressures push towards onboarding as many merchants as possible. Navigating this tension is not easy, but failure to do so exposes companies to regulatory action and reputational harm.
For whistleblowers, such cases show why external disclosure is often the only route left when internal warnings are ignored. In this sense, the MiFinity case is not only about one company but about the culture of compliance within payment intermediaries more generally.
The way forward
Regulators now face the task of determining whether MiFinity’s involvement constitutes a breach of law or a lapse in oversight. Even if no sanction follows, the process will require MiFinity to disclose detailed information about its systems and structures.
This in itself will test the robustness of the group’s governance.
For MiFinity, the opportunity remains to respond constructively. Clear communication about risk assessment, monitoring of merchant activity and engagement with regulators could help rebuild trust. Without such steps, the company risks being defined solely by whistleblower allegations and media reporting.
Investigations still to come
While this article concentrates on MiFinity, it is relevant to acknowledge that other companies active in the payments and gaming services sector are also subject to ongoing examination. CashtoCode, associated with Jens Bader, has been referred to in whistleblower material, although those references will be considered separately in a forthcoming publication.
MuchBetter, under the leadership of Israel Rosenthal, has encountered regulatory and legal proceedings of its own, including a court case involving MIR Limited and other shareholders.
In addition, the names of individuals connected to entities such as Reload Hero, Calida Financial, Campamocha Holding Ltd and SETH Ventures appear in various corporate filings, which indicate interlinked business relationships.
Malta Media is continuing its wider investigations into these companies and others, including The Payments Group, TWBS and additional intermediaries that are active within the online gaming and payment processing ecosystem.
FAQs
What is the MiFinity whistleblower case about?
The case involves allegations that MiFinity facilitated payments to operators in restricted or unlicensed gambling markets, based on detailed whistleblower evidence.
Which countries are highlighted in the whistleblower material?
Australia and Germany are the primary countries mentioned, where online gambling is highly regulated and operators were allegedly using MiFinity.
Does the evidence prove MiFinity committed illegal activity?
No, the material shows potential misuse by operators, but does not prove direct wrongdoing by MiFinity itself.
Which operators are cited as using MiFinity in restricted markets?
Stay Casino, SkyCrown, and Ricky Casino are mentioned as accepting players in Australia using MiFinity.
Why is Australia a critical case study in this story?
Australia has strict online gambling laws, and the evidence shows MiFinity integrations on sites targeting Australian players, raising compliance concerns.
What role does Germany play in the MiFinity allegations?
German-language promotions and deposit paths suggest MiFinity may have facilitated play in unlicensed markets in Germany, which regulators monitor closely.
How does MiFinity’s corporate structure affect accountability?
The group spans multiple entities across Malta, Ireland, and the UK, creating complexity and potential barriers to clear oversight.
What is the potential regulatory risk for MiFinity?
Even without proven misconduct, appearing to facilitate payments in restricted markets could lead to reputational damage, scrutiny, and regulatory inquiries.
Has MiFinity responded to these allegations publicly?
No, MiFinity has remained silent, leaving speculation and whistleblower claims to dominate public discussion.
Why is this case important for the payments industry overall?
It highlights the tension between revenue pressures and compliance, showing the importance of robust monitoring for all payment intermediaries operating near regulated markets.
Editorial note: This article is informed by whistleblower materials, publicly available records and prior media coverage. Malta Media does not allege or imply criminal conduct by any individual or company mentioned. The objective is to examine issues of regulatory oversight and compliance that are relevant to the wider public interest. The information presented reflects claims and documents provided to us, which have not been independently verified in full. Responsibility for determining the accuracy of these claims rests with the relevant regulatory authorities and courts, not with Malta Media.
Related Posts

BetConstruct AI is Heading to iGB L!VE 2026
June 26, 2026

Will Mace joins Mindway AI to advance player safety
June 25, 2026






































