CP
cyberpings
BreachesHIGH

Data Breach - Marquis Exposes 672,000 Personal Records

TCTechCrunch Security·Reporting by Zack Whittaker
📰 3 sources·Summary by CyberPings Editorial·AI-assisted·Reviewed by Rohit Rana
Updated:
🎯

Basically, hackers stole personal information from over 672,000 people in a ransomware attack on Marquis.

Quick Summary

Marquis has revealed a ransomware attack affecting over 672,000 people. Personal and financial data, including Social Security numbers, were stolen. This breach raises serious security concerns for those affected.

What Happened

In August 2025, a significant ransomware attack targeted Marquis, a fintech company based in Plano, Texas. This attack has now been revealed to have compromised the personal and financial information of 672,075 individuals. Marquis, which provides data analysis services for banks, is currently notifying those affected about the breach. The company has disclosed that more than half of the victims reside in Texas.

The breach was not previously reported in detail, making this announcement crucial for understanding the scope of the incident. Hackers gained access to sensitive data, including names, dates of birth, postal addresses, and crucial financial information such as bank account details and credit card numbers.

Who's Affected

The breach has impacted a wide range of individuals, primarily customers of banks that utilize Marquis's services. With over 672,000 people affected, the scale of this incident is alarming. The fact that more than half of those affected are from Texas highlights the localized impact of the breach, but it also signifies a broader concern for customers nationwide who trust Marquis with their sensitive information.

Marquis's notification to the affected individuals serves as a reminder of the vulnerabilities present in the fintech sector. Customers are understandably anxious about the potential misuse of their personal and financial data.

What Data Was Exposed

The data stolen during the ransomware attack is particularly sensitive. Hackers accessed:

  • Names and dates of birth
  • Postal addresses
  • Bank account numbers
  • Credit and debit card details
  • Social Security numbers

This type of information can lead to serious consequences, including identity theft and financial fraud. The comprehensive nature of the data breach raises significant concerns about the security measures in place at Marquis and the potential for misuse of the stolen information.

What You Should Do

If you are one of the individuals affected by the Marquis data breach, it is essential to take immediate action to protect yourself. Here are some steps you should consider:

  • Monitor your financial accounts for any unauthorized transactions.
  • Change passwords for online banking and other sensitive accounts.
  • Consider enrolling in identity theft protection services that can help monitor your personal information.
  • Place a fraud alert on your credit report to prevent new accounts from being opened in your name.

Additionally, stay informed about any updates from Marquis regarding the breach. The company is currently addressing the situation, including a lawsuit against its firewall provider, SonicWall, for alleged security failings that led to the breach. This ongoing legal matter may provide further insights into how the attack occurred and what measures will be implemented to prevent future incidents.

🔒 Pro insight: The breach underscores the critical need for robust cybersecurity measures in fintech, especially regarding third-party vendor security.

Original article from

TCTechCrunch Security· Zack Whittaker
Read Full Article

Also covered by

THThe Record

Bank software vendor Marquis says more than 670,000 impacted by August breach

Read Article
BLBleepingComputer

Marquis: Ransomware gang stole data of 672K people in cyberattack

Read Article

Share

Related Pings

HIGHBreaches

Syria’s Security Failures Exposed by Government Account Hack

A recent hack exposed Syrian government accounts, revealing significant cybersecurity weaknesses. This incident raises concerns about the state’s digital security practices and its ability to communicate effectively. Experts warn that without urgent reforms, Syria's digital infrastructure remains at risk.

Wired Security·
LOWBreaches

T-Mobile - Clarifies Details on Recent Data Breach Incident

T-Mobile recently clarified a data breach involving an insider incident, impacting just one customer. Personal financial data remained secure, and the company has taken necessary precautions.

SecurityWeek·
HIGHBreaches

CBP Facility Codes Exposed in Quizlet Flashcards Leak

A Quizlet flashcard set has leaked sensitive information about US Customs and Border Protection facilities, raising serious security concerns.

Wired Security·
HIGHBreaches

Iran Handala Group Breaches Israeli Defence Contractor PSK Wind

Iranian hackers have breached PSK Wind Technologies, an Israeli defense contractor. Sensitive military data has been stolen, posing serious risks to national security. Organizations must strengthen their defenses against such cyber threats.

Security Affairs·
HIGHBreaches

Adobe Breach - Threat Actor Claims Leak of 13 Million Records

A hacker claims to have breached Adobe, leaking sensitive data including 13 million support tickets and employee records. This incident highlights serious third-party security risks.

Cyber Security News·
HIGHBreaches

Americans' Passports Stolen - Hacktivist Attack on Dubai Airport

A hacktivist group has reportedly stolen American passports from Dubai Airport. This breach raises serious concerns about identity theft and fraud risks. Travelers should monitor their information closely.

SC Media·