illustration to promote cybersecurity submitted in the Cybersecurity Visuals Challenge 2019 hosted by OpenIDEO

Photo: John Hurley | CC BY 4.0 | Wikimedia Commons

Ransomware at Bank Vendor Marquis Exposes Data of 672,000 Customers

2h Developing 1 source 4 relevant data

A Texas-based fintech contractor called Marquis, which provides data analytics services to hundreds of U.S. banks, says a ransomware attack on its systems in August 2025 exposed highly sensitive personal and financial data for at least 672,075 people, more than half of them in Texas. The stolen information includes names, dates of birth, addresses, bank account details, debit and credit card numbers and Social Security numbers — enough for criminals to open accounts, take out loans or impersonate victims. Marquis has sued its firewall provider, SonicWall, alleging a flaw in SonicWall’s cloud backup service let attackers obtain firewall configuration files, encrypted credentials and detailed network-architecture data that effectively gave them a blueprint to penetrate Marquis’ network and deploy ransomware. The complaint further claims SonicWall knew its backup service had been compromised earlier in the year but initially downplayed the impact, delaying Marquis’ ability to protect its systems. A Marquis spokesperson says the company took affected systems offline, hired outside cybersecurity experts and notified law enforcement, but customers are only now learning that a little-known third-party vendor, not their bank itself, was holding such sensitive data. The case underscores how hidden fintech suppliers have become a soft underbelly in U.S. banking security and is likely to fuel pressure for tougher oversight of financial-sector vendors and clearer breach disclosure to consumers.

Cybersecurity and Ransomware Banking and Financial Data Security

📌 Key Facts

Fintech vendor Marquis reports at least 672,075 people affected by an August 2025 ransomware attack on its systems, with more than half of victims in Texas.
Exposed data includes names, dates of birth, home addresses, bank account information, debit and credit card numbers and Social Security numbers.
Marquis has filed a lawsuit accusing firewall provider SonicWall of gross negligence, alleging hackers exploited a compromised SonicWall cloud backup system that exposed firewall configuration files, encrypted credentials and detailed network architecture.
The lawsuit contends SonicWall knew of the cloud backup compromise but initially reassured customers that firewall protections were unaffected, which Marquis says delayed its defensive response.
Marquis says it took systems offline, engaged third-party cybersecurity experts and notified law enforcement after detecting the incident.

📊 Relevant Data

In 2024, individuals over the age of 60 accounted for the highest number of recorded cybercrime victims in the United States.

U.S. cybercrime victims by age 2024 — Statista

Total fraud losses reported by older adults (ages 60 and over) increased about fourfold from 2020 to 2024, from about $600 million to over $2.4 billion.

FTC Issues Annual Report to Congress on Agency's Actions to Protect Older Adults — Federal Trade Commission

65% of financial services organizations reported being hit by ransomware within the last year as of 2025.

Ransomware attacks in finance hit new high (Updated for 2026) — Invenio IT

In 2024, there were 1.10 million cases of identity theft reported in the United States, representing an increase of 241.39% over the past decade.

Identity Theft Statistics (2026) — WalletHub