Texas Cities Scramble After Ransomware Cripples Online Utility Payments
A ransomware attack on payment provider BridgePay has disrupted utility billing systems across several Texas cities. The incident began on Friday, 6 February 2026, forcing affected areas to suspend online card payments. Denton, Lewisville, Flower Mound, The Colony, Frisco, Coppell, and Bryan have all been impacted by the cyberattack.
The attack was first detected on 6 February, when Denton announced its utility customers could no longer pay bills with credit or debit cards. As a temporary measure, the city waived late fees and service disconnections from 6 to 13 February. Residents were directed to alternative payment methods, including Venmo, PayPal, bank eChecks, or in-person payments at customer service kiosks.
BridgePay confirmed the outage stemmed from a ransomware attack but assured customers that no card data had been compromised. The company is collaborating with cybersecurity experts, the FBI, and the U.S. Secret Service to investigate. A resolution timeline is expected within 24 to 48 hours.
Other affected cities, such as Lewisville, Flower Mound, and The Colony, responded by shutting down online payment systems and switching to cash or cheque transactions. Meanwhile, Texas Cyber Command—a state agency launched in autumn 2025 at the University of Texas at San Antonio—is assisting local governments in managing the fallout. This follows a 2024 report by state Rep. Giovanni Capriglione, which revealed that breaches had exposed sensitive data of over 15 million Texans.
The attack has forced multiple cities to adjust payment processes while investigations continue. BridgePay's recovery timeline remains pending, but affected residents still have access to alternative payment options. Texas Cyber Command's involvement highlights the state's growing focus on cybersecurity support for local governments.
