Fintech firm Marquis is notifying dozens of U.S. banks and credit score unions that that they had buyer information stolen in a cyberattack earlier this yr.
Particulars of the cyberattack emerged this week after Marquis filed information breach notices with a number of U.S. states confirming its August 14 incident as a ransomware assault.
Texas-based Marquis is a advertising and compliance supplier that permits banks and different monetary establishments to gather and visualize all of their buyer information in a single place. The corporate counts greater than 700 banking and credit score union clients on its web site. As such, Marquis has entry to and shops giant quantities of knowledge belonging to shopper banking clients throughout america.
No less than 400,000 individuals are up to now confirmed affected by the information breach, in line with legally required disclosures filed within the states of Iowa, Maine, Texas, Massachusetts, and New Hampshire that TechCrunch has reviewed.
Texas has the biggest variety of state residents up to now who had information stolen within the breach, affecting not less than 354,000 individuals.
Marquis stated in its discover with Maine’s legal professional basic that banking clients with the Maine State Credit score Union accounted for almost all of its information breach notifications, or round one-in-nine people who find themselves recognized to be affected all through the state.
The variety of people affected by the breach is predicted to rise as extra information breach notifications roll in from different states.
Marquis stated the hackers stole buyer names, dates of beginning, postal addresses, and monetary data, comparable to checking account, debit, and bank card numbers. Marquis stated the hackers additionally stole clients’ Social Safety numbers.
In response to its most up-to-date notices, Marquis blamed the ransomware assault on hackers who exploited a vulnerability in its SonicWall firewall. The vulnerability was thought-about a zero-day, which means the flaw was not recognized to SonicWall or its clients earlier than it was maliciously exploited by hackers.
Marquis didn’t attribute the ransomware assault to a specific group, however the Akira ransomware gang was reportedly behind the mass-hacks concentrating on SonicWall clients on the time.
TechCrunch requested Marquis whether it is conscious of the whole variety of individuals affected by the breach, and if Marquis obtained any communication from the hackers or if the corporate paid a ransom, however we didn’t hear again by the point of publication.
Are you aware extra in regards to the Marquis information breach? Do you’re employed at Marquis or an organization affected by the breach? We’d love to listen to from you. To securely contact this reporter, you possibly can attain out utilizing Sign by way of the username: zackwhittaker.1337
Take a look at the most recent reveals on every little thing from agentic AI and cloud infrastructure to safety and way more from the flagship Amazon Net Companies occasion in Las Vegas. This video is delivered to you in partnership with AWS.
