U.S. fintech and data services provider Marquis has warned dozens of banks and credit unions that customer data was stolen during a ransomware attack earlier this year. The breach, first identified in August, affected at least 400,000 individuals across several U.S. states, with the number expected to increase as more institutions report findings.
TechCrunch reports that the attackers exploited a previously unknown vulnerability in a SonicWall firewall to gain access to Marquis systems. The stolen data includes names, addresses, dates of birth and Social Security numbers, along with bank account and payment card information. Marquis has not publicly confirmed whether a ransom demand was received or if communications occurred with the hacking group.
Supply chain risks in modern finance
Because Marquis provides data analytics, compliance and marketing services to more than 700 U.S. financial institutions, the breach illustrates how a single compromised vendor can create systemic exposure across the banking sector. Community lenders and regional credit unions are among the institutions now notifying customers.
For Europe, this incident mirrors the concerns at the heart of the EU Digital Operational Resilience Act, which seeks to reduce reliance on high risk third party providers. As financial firms continue shifting to cloud based and outsourced data services, regulators warn that cyberattacks targeting intermediaries could threaten broader financial stability.
The Marquis ransomware breach also reinforces the growing importance of strong digital identity protection. With highly sensitive personal data now widely exposed, both U.S. and European banks face heightened pressure to enhance security controls, fraud monitoring and customer authentication measures in the months ahead.