Maine State Credit Union Breach Impacts 38,334 in Maine

On August 14, 2025, a significant data breach involving Maine State Credit Union was discovered after Marquis Software Solutions Inc., a third-party digital and physical marketing vendor, detected suspicious activity on its network.

The investigation revealed Marquis was the victim of a ransomware attack, with the unauthorized party gaining access to the network through its SonicWall firewall. This breach allowed the attacker to potentially acquire files containing sensitive information from Marquis’ systems.

According to a disclosure filed with the Maine Attorney General’s office on Dec. 2, 2025, the Marquis cybersecurity incident impacted 38,334 Maine residents associated with Maine State Credit Union. The types of consumer information exposed included names, addresses, phone numbers, Social Security numbers, Taxpayer Identification Numbers, financial account information and dates of birth.

This information is considered personally identifiable information (PII), and significantly raises the risk of identity theft and fraud for impacted individuals.

Maine State Credit Union’s response

After discovering the breach, Marquis promptly launched an investigation, engaged cybersecurity experts through legal counsel and notified federal law enforcement. Marquis then conducted a thorough review of the compromised files to determine the scope and nature of the data involved. By late October, Marquis began notifying affected business customers, including Maine State Credit Union, and worked with them to coordinate notifications to impacted individuals.

For those affected, Marquis is working with its business customers to provide written notifications and complimentary credit monitoring and identity theft protection services through Epiq Privacy Solutions ID.

If you believe your personal information may have been compromised in this breach:

• Carefully review any notice or communication you receive from Maine State Credit Union or Marquis Software Solutions.
• Sign up for the free Epiq Privacy Solutions ID identity theft and monitoring services offered by the company.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with the major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.