Currencycloud experienced a minor incident on October 24, 2025 affecting Paydirect.io / Direct, lasting 2h 3m. The incident has been resolved; the full update timeline is below.
Affected components
Update timeline
- identified Oct 24, 2025, 08:21 AM UTC
We are aware of an issue affecting a subset of customers who are unable to complete payment transactions via DIRECT. Our team is actively investigating and working to resolve the issue as quickly as possible. We'll provide updates as soon as more information is available.
- resolved Oct 24, 2025, 10:24 AM UTC
We have identified and resolved the issue affecting a subset of customers using DIRECT for payment transactions. All services are now operating normally. Thank you for your patience, and we apologise for any inconvenience caused.
- postmortem Nov 06, 2025, 04:48 PM UTC
# Overview A service disruption was experienced on the Direct platform, initially affecting login access and subsequently payment creation. The incident was promptly resolved, and normal service was restored. # Client Impact A number of customers were unable to log in or complete payments via Direct. Support channels were engaged as portal access and payment flows were unavailable for an approximately 2-hour period. # Root Cause Legitimate login requests were blocked by an overly broad custom web application firewall rule matching specific content patterns. Subsequent payment validation was blocked by additional content‑scanning rules within the same firewall suite. # Remediation The blocking firewall rule was revised, and the related content‑scanning rules were disabled to restore normal request handling. Post‑change verification was completed, the status page was updated, and monitoring was increased.