Cape Cod Five Data Breach Compromises SSNs & Dates of Birth

On August 14, 2025, a significant data breach involving Cape Cod Five was discovered after Marquis Software Solutions Inc., a third-party digital and physical marketing vendor, detected suspicious activity on its network.

Marquis determined it was the victim of a ransomware attack, with the unauthorized party gaining access through its SonicWall firewall. The breach was limited to Marquis’ environment and did not impact Cape Cod Five’s internal systems. However, files containing sensitive customer information provided by Cape Cod Five were potentially accessed and acquired by the attackers.

The breach affected at least 974 Maine residents, as reported to the Maine Attorney General’s office. The exposed information in the Marquis data breach includes names, addresses, dates of birth, Social Security numbers or tax ID numbers and financial account numbers. All of these data types are considered personally identifiable information (PII), and exposure of such details can increase the risk of identity theft and fraud.

The breach was part of a larger incident affecting multiple financial institutions, but Cape Cod Five customers were among those whose data was specifically compromised due to the files Marquis held for them.

Cape Cod Five's response

Once the breach was discovered, Marquis, on behalf of Cape Cod Five and other affected clients, launched an immediate investigation with the help of cybersecurity experts and notified federal law enforcement. Marquis conducted a thorough review of the accessed files to determine the scope of the data involved.

Between Oct. 27 and Nov. 25, 2025, Marquis began notifying affected business customers and working with them to facilitate appropriate notifications to individuals and regulatory bodies.

If you receive notification from Cape Cod Five or Marquis Software Solutions about this breach, you may want to:

• Sign up for the free Epiq Privacy Solutions ID identity theft protection services, offered by Marquis.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.