BridgePay Ransomware Attack Triggers Nationwide Payment Processing Outage

Merchants across the United States shift to cash as critical gateway services go offline.

Payment Infrastructure Hit by Ransomware

BridgePay Network Solutions confirmed that a ransomware attack disrupted its platform and forced key systems offline. The incident began on Friday and quickly expanded into a nationwide service failure.

Within hours, the company acknowledged the cybersecurity nature of the outage. By late evening, BridgePay formally confirmed ransomware involvement.

Law Enforcement and Forensics Engaged

In a February 6 update, BridgePay said it brought in federal authorities, including the Federal Bureau of Investigation and the United States Secret Service. External forensic and recovery specialists are also supporting the investigation.

Early findings suggest attackers did not access payment card data. The company reported that exposed files were encrypted and that investigators have no evidence of usable data leakage at this stage.

BridgePay has not yet named a ransomware group.

Merchants Forced Into Cash-Only Mode

As the outage spread, businesses across the country began notifying customers that card payments were unavailable. Several merchants cited a failure at their credit card processor rather than issues within their own environments.

The disruption affected public services as well. The City of Palm Bay warned residents that its online billing portal had gone offline because its third-party processor was down. Officials advised customers to pay in person or use alternative arrangements until restoration.

Other organizations, including Lightspeed Commerce, ThriftTrac, and the City of Frisco, also reported operational impact.

Core Systems Experienced Cascading Failure

BridgePay’s status communications showed severe disruption across multiple services, including:

• BridgeComm Gateway API
• PayGuardian Cloud API
• MyBridgePay virtual terminal
• Hosted payment pages
• PathwayLink portals

Monitoring first detected degraded performance around 3:29 a.m. The instability then escalated into a full outage.

Because many merchants rely on these integrations for authorization and settlement, the ripple effect reached storefronts and municipal services within hours.

Recovery May Take Time

BridgePay stated that teams are restoring systems in a secure and responsible manner. Meanwhile, investigators continue to analyze the intrusion and validate data integrity.

Payment infrastructure attacks create immediate real-world consequences. When transaction pipelines fail, commerce slows, customer experience suffers, and operational pressure rises quickly.

A Growing Trend in Financial Targeting

Ransomware operators increasingly focus on shared service providers. A single compromise can disrupt thousands of downstream businesses at once.

For CISOs and risk leaders, the lesson is clear: third-party resilience now sits at the center of operational continuity.