BridgePay Network Solutions Ransomware Attack

📅 2026-02-06 🏢 BridgePay Network Solutions (payment gateway platform)

Incident Details

On February 6, 2026 (starting at ~03:29 AM EST), a ransomware attack hit BridgePay Network Solutions, a payment gateway serving merchants, municipalities, and integrators. The attack knocked offline BridgePay Gateway API (BridgeComm), Pay Guardian Cloud API, virtual terminals, hosted payment pages, and Pathway Link gateways — forcing many customers into cash-only operations for at least four days. BridgePay engaged the FBI, U.S. Secret Service, and external forensic teams. Initial investigation indicated no payment card data was compromised (any potentially accessed data was encrypted). The specific ransomware family and initial access vector were not publicly identified.

Technical Details

Initial Attack Vector: Unknown; ransomware deployed against BridgePay's payment processing infrastructure
Vendor / Product: BridgePay Network Solutions (payment gateway platform)

Timeline

2026-02-06 Breach occurred
2026-02-06 Publicly disclosed