Nayax: Nayax shares slide after fintech company reveals cloud security breach

Nayax: Nayax shares slide after fintech company reveals cloud security breach

Nayax Reports Cloud Security Incident Amid Extortion Threats

Fintech firm Nayax, a provider of payment and processing solutions listed on the Tel Aviv Stock Exchange and Nasdaq, disclosed a security incident to the U.S. Securities and Exchange Commission (SEC) on Wednesday. The breach involved anomalous activity detected in a cloud account belonging to one of its subsidiaries. The company’s stock dropped following the announcement, with declines observed on both exchanges.

Upon discovery, Nayax immediately blocked the compromised account and confirmed that its core systems including payment processing and operational infrastructure remained unaffected. Business operations continued without disruption. However, the company did not specify when the unauthorized access began or how long the attackers persisted before detection.

The incident has since been linked to a targeted extortion threat circulating on dark web forums. Analysts reported that attackers issued an ultimatum, threatening to release allegedly exfiltrated data on July 21. Nayax responded by noting that cybercriminals often employ exaggerated claims to pressure victims, even when no critical systems have been breached.

The scope of compromised data is still under assessment, and Nayax is collaborating with law enforcement in Israel and the U.S. to investigate. The company stated that, at this stage, it does not believe the incident involved the disclosure of material information.

Financially, Nayax reported $400 million in 2025 revenue (a 24% year-over-year increase) and a $35.5 million net profit, reversing a loss in 2024. The company projects $510–$520 million in revenue for 2026, though it recently implemented cost-cutting measures, including layoffs of 32 employees (3% of its workforce).

Nayax reiterated that the incident was contained to a non-core cloud account and that it is working with cybersecurity experts to mitigate further risks.

Source: https://www.calcalistech.com/ctechnews/article/rjpeasiqfg

Nayax TPRM report: https://www.rankiteo.com/company/nayax

"id": "nay1783513897",
"linkid": "nayax",
"type": "Breach",
"date": "7/2026",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'industry': 'Payment and processing solutions',
                        'location': 'Israel, USA',
                        'name': 'Nayax',
                        'type': 'Fintech'}],
 'attack_vector': 'Cloud account compromise',
 'data_breach': {'data_exfiltration': 'Alleged (under assessment)'},
 'description': 'Fintech firm Nayax disclosed a security incident involving '
                'anomalous activity detected in a cloud account belonging to '
                'one of its subsidiaries. The breach was linked to a targeted '
                'extortion threat on dark web forums, with attackers '
                'threatening to release allegedly exfiltrated data. Nayax '
                'confirmed its core systems remained unaffected and business '
                'operations continued without disruption.',
 'impact': {'downtime': 'None',
            'operational_impact': 'None',
            'systems_affected': 'Non-core cloud account'},
 'initial_access_broker': {'entry_point': 'Cloud account'},
 'investigation_status': 'Ongoing',
 'motivation': 'Extortion',
 'references': [{'source': 'U.S. Securities and Exchange Commission (SEC)'}],
 'regulatory_compliance': {'regulatory_notifications': 'SEC'},
 'response': {'communication_strategy': 'Public disclosure to SEC and stock '
                                        'exchanges',
              'containment_measures': 'Blocked the compromised account',
              'incident_response_plan_activated': 'Yes',
              'law_enforcement_notified': 'Yes (Israel and U.S.)',
              'third_party_assistance': 'Cybersecurity experts'},
 'title': 'Nayax Cloud Security Incident Amid Extortion Threats',
 'type': 'Extortion'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.