SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Data Breaches

Marquis Data Breach Affects 672,000 Individuals

It was previously estimated that more than 1.6 million people may be affected by the Marquis data breach.
Bank data breach

Marquis, a provider of marketing and compliance solutions for credit unions and banks, revealed this week that a data breach disclosed last year affects roughly 672,000 individuals.

The Texas-based company discovered in August 2025 that hackers had gained access to its systems. 

In a notification made public in December, it reported that the attackers had stolen personal information such as names, addresses, SSNs, dates of birth, taxpayer identification numbers, and financial information, including payment card numbers. The information was stored by Marquis on behalf of dozens of the 700 banks and credit unions it serves.

In its initial data breach disclosure, Marquis did not share the total number of affected individuals. However, based on numbers provided to authorities in various US states about impacted people in their respective states, along with disclosures made by the affected financial institutions themselves, it was previously estimated that at least 780,000 had been hit.

Comparitech estimated in February 2026 that as many as 1.6 million people could be affected. 

However, Marquis told the Maine Attorney General’s Office this week that just over 672,000 are affected. 

Advertisement. Scroll to continue reading.

If 672,000 is the actual number of impacted individuals, some of the numbers shared by banks and credit unions may include overlapping customers who hold accounts at multiple institutions.

No cybercrime group has taken credit for the attack on Marquis, but Comparitech previously reported that a now-removed data breach notice from an Iowa credit union revealed that Marquis had paid a ransom, a claim that the fintech company has yet to confirm.

The company did not immediately respond to SecurityWeek’s request to confirm or deny the claim. 

Marquis previously said the attack exploited a SonicWall firewall vulnerability. Around the time the company discovered the attack, the Akira ransomware group had ramped up its exploitation of SonicWall firewall flaws.

Related: Security Firm Aura Discloses Data Breach Impacting 900,000 Records

Related: Robotic Surgery Giant Intuitive Discloses Cyberattack

Related: Oracle EBS Hack: Only 4 Corporate Giants Still Silent on Potential Impact

Written By

Eduard Kovacs (@EduardKovacs) is senior managing editor at SecurityWeek. He worked as a high school IT teacher before starting a career in journalism in 2011. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

More from

Latest News

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Webinar: A Step-by-Step Approach to AI Governance
April 28, 2026

With "Shadow AI" usage becoming prevalent in organizations, learn how to balance the need for rapid experimentation with the rigorous controls required for enterprise-grade deployment.

Register

Virtual Event: Threat Detection and Incident Response Summit
May 20, 2026

Delve into big-picture strategies to reduce attack surfaces, improve patch management, conduct post-incident forensics, and tools and tricks needed in a modern organization.

Register

People on the Move

Chris Sistrunk has been promoted to Practice Leader for Mandiant's OT Security Consulting.

Nudge Security has appointed Patrick Dillon as its Chief Revenue Officer.

AutoNation has appointed Brian Fricke as Chief Information Security Officer.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.