Fintech company Marquis has notified dozens of U.S. banks and credit unions that customer data was stolen in a cyberattack earlier this year.
Details of the cyberattack emerged this week after Marquis filed data breach notifications in multiple U.S. states confirming the Aug. 14 incident was a ransomware attack.
Texas-based Marquis is a marketing and compliance provider that enables banks and other financial institutions to collect and visualize all their customer data in one place. The company has more than 700 bank and credit union customers listed on its website. As such, Marquis has access to and stores large amounts of data belonging to consumer banking customers across the United States.
To date, at least 400,000 people have been confirmed to have been affected by the data breach, according to legally required disclosures filed in Iowa, Maine, Texas, Massachusetts, and New Hampshire reviewed by TechCrunch.
Texas has so far had the highest number of state residents whose data was stolen in a data breach, with at least 354,000 people affected.
In a notice to the Maine Attorney General, Marquis said the majority of data breach notifications, roughly one in nine known victims statewide, come from Maine Credit Union bank customers.
The number of individuals affected by this breach is expected to further increase as data breach notifications from other states increase.
Marquis said the hackers stole financial information such as customers' names, dates of birth, addresses, bank accounts, debit cards, and credit card numbers. Marquis said the hackers also stole customers' Social Security numbers.
According to the latest notification, Marquis claimed the ransomware attack was the work of hackers who exploited vulnerabilities in the company's SonicWall firewall. This vulnerability is considered a zero-day, meaning the flaw was not known to SonicWall or its customers before it was maliciously exploited by hackers.
Although Marquis did not attribute the ransomware attack to a specific group, it was reported at the time that the Akira ransomware group was behind a mass hack targeting SonicWall customers.
TechCrunch asked Marquis if it knows the total number of people affected by the breach, if it received any communications from the hackers, or if the company paid a ransom, but did not hear back by press time.
Do you know more about the Marquis data breach? Do you work for Marquis or a company affected by the breach? We'd love to hear from you. To contact this reporter securely, use Signal using username zackwhittaker.1337.