Cyber Incident Victim: Adyen
Date:
Apr 2025
Location:
Netherlands
Summary
Adyen reported that it mitigated a distributed denial-of-service attack aimed at disrupting its payment services. The company activated its DDoS protection infrastructure, which identified and filtered malicious traffic while allowing legitimate transactions to continue. As a result, there was no reported impact on merchant processing or shopper experience during the incident.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 0 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On April 21, 2025, Adyen published an article titled 'Incident update: Mitigating a DDoS attack on April 21, 2025 - Adyen' in its knowledge hub. The article is accessible via the URL https://www.adyen.com/knowledge-hub/mitigating-a-ddos-april-2025. The publication date of the article matches the date referenced in the title. This update was issued by Adyen to inform stakeholders about the ongoing situation.
The article describes that Adyen was engaged in mitigating a distributed denial of service attack that occurred on April 21, 2025. The update outlines the steps taken by Adyen to address the attack. No additional technical specifics about the attack vector, volume, or origin are included in the provided source. The communication focuses on the mitigation efforts undertaken by the company.
The source material does not contain further details regarding the impact on services, customer transactions, or system performance. It also does not disclose any information about attacker identity or motivation. Consequently, the known facts are limited to the existence of the incident update and its timing. This concludes the factual account based solely on the supplied evidence.