Nayax (NASDAQ: NYAX) details security incident, exfiltrated information
Rhea-AI Filing Summary
Nayax Ltd. reports on an information security incident first announced in July 2026. It states that system reviews and technical remediation are complete, systems have been cleared and confirmed free of unauthorized access, and production and core systems were not impacted, so business operations continue without disruption.
The company explains that exfiltrated information includes a copy of a backup of scanned documents, additional business-related information and mainly a backup of payment transaction records, which does not include sensitive payment authentication data such as cardholder names, CVV values or ID information, as such data is generally not retained. Many transactions involved digital wallets like Apple Pay and Google Pay, where single-use tokens have no value if disclosed. Nayax confirms all customer safeguarded funds were untouched and no unauthorized access to those accounts occurred. The Board of Directors has resolved not to comply with criminal extortion demands, viewing this as inconsistent with the long-term best interests of customers, partners, employees and shareholders.
The company has incurred, and may continue to incur, costs to respond to, remediate and investigate the attack. While the full financial impact, including insurance or indemnification offsets and any effect on customer behavior, is not yet determined, Nayax does not currently expect a material effect on its financial condition or results of operations. It continues to cooperate closely with law enforcement, and this report is incorporated by reference into its effective SEC and Israel Securities Authority registration statements.
Positive
- None.
Negative
- None.