A significant cybersecurity incident affecting multiple U.S. financial institutions came to light on November 26, 2025, when Marquis Software Solutions notified affected customers of a ransomware attack.
The breach, discovered on August 14, 2025, compromised the personal information of thousands of customers across numerous banks and credit unions throughout the United States.
Marquis Software Solutions, a digital and physical marketing and communications vendor based in Plano, Texas, fell victim to an external system breach when an unauthorized third party gained access to its network.
The company immediately launched an investigation and engaged cybersecurity experts to determine the scope of the incident. Federal law enforcement was also notified of the attack.
The investigation revealed that the attackers potentially accessed and acquired specific files containing sensitive personal information.
Significantly, the breach was limited to Marquis’ environment, and the internal systems of the affected financial institutions remained secure.
However, the nature of Marquis’s business, processing customer data on behalf of its clients, meant that substantial amounts of personal information were at risk.
The compromised data includes names, addresses, phone numbers, Social Security numbers, taxpayer identification numbers, financial account information without security codes, and dates of birth.
According to the notification documents, at least 42,784 Maine residents were affected, representing one of the most significant impacts documented so far.
The breach impacted numerous financial institutions, including Community 1st Credit Union, with over 6,500 affected individuals in Iowa alone; Time Bank, with approximately 3,942 affected Iowa residents; and various smaller regional banks and credit unions.
To date, Marquis reports having no evidence of misuse or attempted misuse of the compromised personal information.
However, given the sensitivity of the exposed data, authorities and the company are treating the matter with utmost seriousness.
In response to the incident, Marquis took immediate containment measures to secure its network environment and prevent further unauthorized access.
The company subsequently implemented additional security technologies and processes to strengthen its overall security posture and avoid similar incidents in the future.
To help protect affected individuals, Marquis is offering complimentary credit monitoring and identity theft protection services through Epiq Privacy Solutions ID for 12 to 24 months.
This service includes credit monitoring with alerts, dark web monitoring, credit protection services, and identity restoration assistance.
Affected customers began receiving written notification on November 26, 2025, with notifications continuing over the following weeks.
The company encouraged individuals to remain vigilant by reviewing account statements and credit reports for unauthorized activity over the next 12 to 24 months and to take advantage of the complimentary monitoring services offered.
A dedicated response line has been established for individuals with questions or concerns, available at 855-403-1764 from 9 a.m. to 9 p.m. Eastern Time, Monday through Friday.
This breach underscores the ongoing vulnerability of third-party service providers in the financial sector. It underscores the importance of robust cybersecurity measures across all organizations that handle sensitive customer data.
Follow us on Google News, LinkedIn, and X to Get Instant Updates and Set GBH as a Preferred Source in Google.