Marquis data breach impacts over 74 US banks credit unions
pPornHub extorted after hackers steal Premium member activity datappMicrosoft Recent Windows updates break VPN access for WSL usersppFrench Interior Ministry confirms cyberattack on email serversppBeware PayPal subscriptions abused to send fake purchase emailsppCellik Android malware builds malicious versions from Google Play appsppGhostPoster attacks hide malicious JavaScript in Firefox addon logosppAmazon disrupts Russian GRU hackers attacking edge network devicesppGrab a 2in1 openbox ASUS Chromebook for 160 free shippingppHow to access the Dark Web using the Tor BrowserppHow to enable Kernelmode Hardwareenforced Stack Protection in Windows 11ppHow to use the Windows Registry EditorppHow to backup and restore the Windows RegistryppHow to start Windows in Safe ModeppHow to remove a Trojan Virus Worm or other MalwareppHow to show hidden files in Windows 7ppHow to see hidden files in WindowsppQualys BrowserCheckppSTOPDecrypterppAuroraDecrypterppFilesLockerDecrypterppAdwCleanerppComboFixppRKillppJunkware Removal ToolppeLearningppIT Certification CoursesppGear GadgetsppSecurityppBest VPNsppHow to change IP addressppAccess the dark web safelyppBest VPN for YouTubeppppFinancial software provider Marquis Software Solutions is warning that it suffered a data breach that impacted dozens of banks and credit unions across the USppMarquis Software Solutions provides data analytics CRM tools compliance reporting and digital marketing services to over 700 banks credit unions and mortgage lendersppIn data breach notifications filed with US Attorney General offices Marquis says it suffered a ransomware attack on August 14 2025 after its network was breached through its SonicWall firewallppThis allowed the hackers to steal certain files from its systems during the attackppThe review determined that the files contained personal information received from certain business customers reads a notification filed with Maines AG officeppThe personal information potentially involved for Maine residents includes names addresses phone numbers Social Security numbers Taxpayer Identification Numbers financial account information without security or access codes and dates of birthppMarquis is now filing notifications on behalf of its customers in some cases breaking down the number of people impacted per bank in a state These notifications state that similar data was exposed in the attack for customers in other US statesppAccording to notifications filed in Maine Iowa and Texas over 400000 customers have been impacted from the following 74 banks and credit unionsppAt this time Marquis says that there is no evidence that data has been misused or published anywhereppHowever as previously reported by Comparitech a nowdeleted filing by Community 1st credit union claimed that Marquis paid a ransom which is done to prevent the leaking and abuse of stolen datappMarquis paid a ransomware shortly after 081425 On 102725 C1st was notified that nonpublic personal information related to C1st members was included in the Marquis breach reads the deleted notification seen by ComparitechppWhile the companys data breach notifications state only that it has taken steps to reduce the risk of this type of incident a filing by CoVantage Credit Union with the New Hampshire AG shares further details about how the company is increasing securityppThis notification states that Marquis has now enhanced its security controls by doing the followingppThese steps indicate that the threat actors likely gained access to the company network through a SonicWall VPN account a known tactic used by some ransomware gangs especially Akira ransomwareppWhile Marquis has not shared any further details about the ransomware attack the Akira ransomware gang has been targeting SonicWall firewalls to gain initial access to corporate networks since at least early September 2024ppAkira started breaching SonicWall SSL VPN devices in 2024 by exploiting the CVE202440766 vulnerability which allowed attackers to steal VPN usernames passwords and seeds to generate onetime passcodesppEven after SonicWall patched the bug many organizations didnt properly reset their VPN credentials allowing Akira to continue breaching patched devices with previously stolen credentialsppA recent report shows the group is still signing in to SonicWall VPN accounts even when MFA is enabled suggesting the attackers stole OTP seeds during the earlier exploitationppOnce Akira gets in through the VPN they move quickly to scan the network perform reconnaissance gain elevated privileges in the Windows Active Directory and steal data before deploying ransomwareppBroken IAM isnt just an IT problem the impact ripples across your whole businessppThis practical guide covers why traditional IAM practices fail to keep up with modern demands examples of what good IAM looks like and a simple checklist for building a scalable strategyppAskul confirms theft of 740k customer records in ransomware attackppThe Hidden Risk in Virtualization Why Hypervisors are a Ransomware MagnetppOpenAI discloses API customer data breach via Mixpanel vendor hackpp700Credit data breach impacts 58 million vehicle dealership customersppWhen Hackers Wear Suits Protecting Your Team from Insider Cyber ThreatsppThis notification states that Marquis has now enhanced its security controls by doing the following yada yada
A lot of these are very basic security steps Does this phrase imply that they were not doing these things consistently or at all before Seems likely given Sonicwall is implicated It just seems like yet another massive breach caused by the most basic of failures not updating firewall not enabling VPN MFA
Even the smallest of banks are required to perform these steps and regularly audited to make sure they do Why wasnt Marquis held to the same standardppNot a member yet Register NowppPornHub extorted after hackers steal Premium member activity datappSoundCloud confirms breach after member data stolen VPN access disruptedppMicrosoft December security updates cause Message Queuing failuresppReal access controls for real spreadsheets Opensource and selfhostableppNew webinar Learn how phishing attacks evolved throughout 2025 Register nowppEmpowering IT teams with intelligence driven cyber threat researchppDiscover how elite SOCs use NDR to protect their networksppStay one step ahead of new threats in the new year Join Huntress for the monthly Tradecraft TuesdayppTerms of Use Privacy Policy Ethics Statement Affiliate DisclosureppCopyright 2003 2025 Bleeping Computer LLC All Rights ReservedppNot a member yet Register NowppRead our posting guidelinese to learn what content is prohibitedp
A lot of these are very basic security steps Does this phrase imply that they were not doing these things consistently or at all before Seems likely given Sonicwall is implicated It just seems like yet another massive breach caused by the most basic of failures not updating firewall not enabling VPN MFA
Even the smallest of banks are required to perform these steps and regularly audited to make sure they do Why wasnt Marquis held to the same standardppNot a member yet Register NowppPornHub extorted after hackers steal Premium member activity datappSoundCloud confirms breach after member data stolen VPN access disruptedppMicrosoft December security updates cause Message Queuing failuresppReal access controls for real spreadsheets Opensource and selfhostableppNew webinar Learn how phishing attacks evolved throughout 2025 Register nowppEmpowering IT teams with intelligence driven cyber threat researchppDiscover how elite SOCs use NDR to protect their networksppStay one step ahead of new threats in the new year Join Huntress for the monthly Tradecraft TuesdayppTerms of Use Privacy Policy Ethics Statement Affiliate DisclosureppCopyright 2003 2025 Bleeping Computer LLC All Rights ReservedppNot a member yet Register NowppRead our posting guidelinese to learn what content is prohibitedp
