Massive Marquis Data Breach Sends Shockwaves Through 74+ US Financial Institutions

Financial software provider Marquis Software Solutions has recently issued a warning about a data breach that affected numerous banks and credit unions in the United States. Marquis offers a range of services including data analytics, CRM tools, compliance reporting, and digital marketing to a wide customer base of over 700 financial institutions.

The breach, which occurred on August 14, 2025, was the result of a ransomware attack that targeted Marquis’ network through its SonicWall firewall. This security breach allowed hackers to steal certain files containing personal information from the company’s systems. The compromised data includes names, addresses, phone numbers, Social Security numbers, Taxpayer Identification Numbers, financial account details, and dates of birth.

Marquis has taken steps to notify affected customers and state authorities, detailing the extent of the breach and the potential impact on individuals. Notifications have been filed in various states, revealing that over 400,000 customers from 74 banks and credit unions have been affected by the breach.

Despite the breach, Marquis has assured that there is no evidence of the stolen data being misused or leaked. However, reports suggest that Marquis paid a ransom shortly after the attack to prevent the abuse of the compromised data.

In response to the breach, Marquis has enhanced its security measures by patching firewall devices, rotating passwords, deleting old accounts, enabling multi-factor authentication, and implementing other security protocols to prevent future incidents.

The ransomware attack on Marquis is believed to be linked to the Akira ransomware gang, known for targeting SonicWall firewalls to gain unauthorized access to corporate networks. The group exploited vulnerabilities in SonicWall SSL VPN devices to steal credentials and launch ransomware attacks on compromised systems.

Overall, the incident highlights the importance of robust cybersecurity measures in safeguarding sensitive data from cyber threats. Businesses are urged to stay vigilant and implement proactive security measures to mitigate the risk of data breaches and ransomware attacks.