Cybersource Outage History

Cybersource experienced an issue with their Payer Authentication Service that caused enrollment errors for some clients and also impacted other services including Flex, Rest API, SCMP, Secure Acceptance, and Webhooks, with some services returning ESYSTEM or ETIMEOUT errors. The primary Payer Authentication issue was mitigated within approximately 12 minutes on March 18, 2026, though the incident remained under monitoring until full resolution on March 20, 2026. Cybersource conducted an internal review to prevent future occurrences.

Cybersource's REST API experienced service degradation from March 13-16, 2026, where merchants encountered field validation errors and transaction failures when submitting IPv6 IP addresses in the "deviceInformation.ipAddress" field. Merchants could work around the issue by using IPv4 addresses only or leaving the IP address field blank. The issue was resolved after 23.2 hours when a fix was implemented and rolled out to production.

Cybersource experienced a settlement and batching disruption affecting FDI Global and FDC Compass for a small number of Mastercard transactions, causing merchants to receive "Invalid Cardholder Account Number" errors and funding settlement issues. The root cause was identified as an internal issue at an ecosystem partner that impacted downstream settlement processing. The incident lasted approximately 306 hours from March 3-17, 2026, and was resolved when the ecosystem partner fixed their issue and processed settlement for all impacted transactions.

Cybersource's Webhooks Service experienced a disruption specifically affecting National Australia Bank from March 1, 2026 at 14:14 GMT to March 2, 2026 at 10:55 GMT, lasting approximately 51 hours. Merchants and users experienced delays and disruptions in real-time data transfers between applications and notification services. The issue was mitigated on March 2nd with continued monitoring, then fully resolved on March 4th with normal webhook functionality restored.