BridgePay payments system knocked offline by ransomware attack

1. Pro
2. Security

BridgePay payments system knocked offline by ransomware attack News By Sead Fadilpašić published 9 February 2026

US Secret Service is involved

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.

(Image credit: Future)

• Copy link
• Facebook
• X
• Whatsapp
• Reddit
• Pinterest
• Flipboard
• Threads
• Email

Share this article 0 Join the conversation Follow us Add us as a preferred source on Google Newsletter Tech Radar Get the TechRadar Newsletter

Sign up for breaking news, reviews, opinion, top tech deals, and more.

Contact me with news and offers from other Future brands Receive email from us on behalf of our trusted partners or sponsors By submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

You are now subscribed

Your newsletter sign-up was successful

An account already exists for this email address, please log in. Subscribe to our newsletter

• BridgePay hit by ransomware attack, forcing payment gateway services offline across the US
• Company says no payment card data compromised; investigation ongoing with forensic teams including US Secret Service
• Outage disrupted merchants nationwide, impacting APIs, virtual terminals, and forcing many to accept cash only

BridgePay, a major US payment gateway, suffered a ransomware attack late last week that knocked its services offline and caused problems for services across the country.

On a dedicated incident response page, BridgePay said on Friday that the outage it was experiencing, which forced its systems temporarily offline, was the result of a ransomware attack.

To contain and mitigate the threat, the company brought in specialized forensic and recovery teams, including the US Secret Service forensic team.

You may like

• Over 70 US banks and credit unions affected by Marquis ransomware breach - here's what we know
• Marquis confirms data breach, point finger of blame at SonicWall firewall
• US Treasury offers cautious optimism as ransomware payments decline

Attacker identity unknown

“Initial forensic findings indicate that no payment card data has been compromised, and any files that may have been accessed were encrypted,” the notification reads. “At this time, there is no evidence of usable data exposure.”

The newest update, posted on Sunday afternoon, said the investigation, as well as remediation efforts, were still ongoing.

So far, we don’t know who the threat actors are, or how they broke in. Usually, cybercriminals would either exploit a vulnerability in network-connected devices, or obtain login credentials through social engineering and phishing.

Also, the crooks would exfiltrate sensitive data from compromised systems, as leverage during the negotiation process. They would usually demand payment in Bitcoin, in exchange for deleting the data. For victims that don’t comply, their data ends up on the dark web.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Contact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsorsBy submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

The effects of the attack are felt throughout industries. BleepingComputer reports that many US merchants and organizations were forced to accept only cash. Multiple services were affected, including BridgePay Gateway API (BridgeComm), PayGuardian Cloud API, MyBridgePay virtual terminal and reporting, and many others.

Via BleepingComputer

The best antivirus for all budgetsOur top picks, based on real-world testing and comparisons

➡️ Read our full guide to the best antivirus1. Best overall:Bitdefender Total Security2. Best for families:Norton 360 with LifeLock3. Best for mobile:McAfee Mobile Security

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

Sead FadilpašićSocial Links Navigation

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

View More

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Logout Read more Over 70 US banks and credit unions affected by Marquis ransomware breach - here's what we know    Marquis confirms data breach, point finger of blame at SonicWall firewall    US Treasury offers cautious optimism as ransomware payments decline    Hacked company CTO refuses to pay ransom demand, donates money to funding research instead    Emergency alert systems across US disrupted following OnSolve CodeRED cyberattack    Top infostealer disrupted after criminals lose server access    Latest in Security 'Digital squatting' hits new levels as hackers target brand domains    Flickr confirms data breach, tells customers their private info may have been affected - here's what we know    Top photo ID apps leak user data - over 150,000 thought to have been affected    Conduent data breach might have been much worse than initially expected    A fresh wave of Zendesk spam emails is hitting users across the world    Anthropic says its new Opus 4.6 platform found over 500 previously unknown high-severity security flaws in open-source libraries during testing    Latest in News Proton VPN has just fixed this issue on Windows – you can now use three critical features together    Microsoft hasn't just dropped support for loads of printers in Windows 11    The iPhone 17e could land ‘imminently’ – and with no price rise    The next PlayStation State of Play is this week and will last for more than an hour    Noisy FPV drones are dividing viewer opinion at the Winter Olympics    The Xiaomi 18 Pro could be the first phone with two 200MP cameras    LATEST ARTICLES

1. 1Scared your printer will stop working with Windows 11? Don't be — here's what you need to know about Microsoft's support plans
2. 2Is Apple Fitness+ running out of gas? Fresh rumors suggest it’s ‘under review’ – and could be folded into the Health app
3. 3I tested the Lenovo ThinkVision P27Q-40 - and it's the IT manager’s dream display, allowing for fleet control at scale, reliability by users, and ease of use for all
4. 4We might finally be getting Linux 7.0 at last
5. 5I tested the Lenovo ThinkPad X13 Gen 6 - a featherlight business laptop that's good for on-the-go productivity and only let down by the screen