In a significant cybersecurity development, a key software provider to the banking sector has acknowledged that hackers successfully extracted personal and financial records of more than 672,000 individuals through a ransomware operation conducted last year. Marquis Software Solutions, a Plano, Texas-based enterprise, is known for furnishing banks and credit unions with advanced marketing strategies, compliance management software, and customer engagement technologies.
Serving an extensive network of over 700 financial entities nationwide, the company plays a vital role in helping institutions manage client relationships and meet stringent regulatory standards.
Recent disclosures indicate that 672,075 people had their sensitive details unlawfully obtained in the August 2025 cyber incident.
These affected parties are customers of various banks and credit unions that partner with Marquis for data handling and analytical services.
The intrusion was detected on August 14, 2025, prompting an immediate internal probe.
Further examination revealed that the perpetrators exploited a vulnerability associated with the company’s SonicWall firewall system to infiltrate the network.
Importantly, the firm has reassured clients that the attack remained confined to their infrastructure alone, leaving the core systems of partner financial institutions untouched.
Nevertheless, substantial volumes of customer files were exfiltrated during the breach.
Among the stolen elements were comprehensive personal identifiers such as individuals’ names, birth dates, home addresses, phone numbers, and Social Security numbers, alongside critical financial data including checking and savings account numbers plus debit and credit card particulars.
This potent mix of information heightens the potential for sophisticated identity fraud schemes and unauthorized transactions.
The company has initiated widespread notification campaigns to inform those whose records were involved, fulfilling obligations under data privacy laws.
As part of its mitigation efforts, Marquis is extending free enrollment in identity theft protection programs featuring credit surveillance tools.
Officials at the firm have stressed their dedication to swift resolution and have engaged federal authorities in the investigation process.
Additionally, the organization has pursued legal recourse against SonicWall, attributing part of the security failure to issues with the third-party firewall solution.
This case exemplifies the escalating dangers posed by supply chain attacks within the financial industry.
With institutions depending heavily on specialized vendors for essential operations, a single breach can ripple across numerous organizations and impact vast numbers of consumers.
Ransomware syndicates frequently single out such intermediaries precisely because of the treasure trove of aggregated data they maintain.
Security analysts advise affected customers to exercise heightened vigilance.
Key actions include scrutinizing bank and credit card statements for any irregular activity, requesting free credit reports from major agencies, and establishing fraud alerts or full credit freezes.
Consumers are also urged to avoid clicking suspicious links or sharing details in response to unsolicited communications that could stem from the incident.
Ultimately, the event underscores the imperative for enhanced cybersecurity protocols among all players in the financial ecosystem.
Both providers and their clients must prioritize ongoing risk assessments and collaborative defense strategies to better shield consumer information in an increasingly hostile digital environment.