Marquis Software Solutions Data Breach Affects Over 1M+ People

Marquis Software Solutions, a technology provider for banks and credit unions, recently experienced a major data breach that affected hundreds thousands of individuals across several states. The incident was first detected on Aug. 14, 2025, when Marquis identified suspicious activity on its network.

A subsequent investigation revealed that an unauthorized third party had accessed and acquired files containing sensitive customer data from Marquis’s systems. The exposed information includes names, addresses, dates of birth, Social Security numbers or tax ID numbers and financial account numbers.

The breach has affected a significant number of people across the United States including 354,289 individuals in Texas, 268,773 in Washington, 84,721 in South Carolina, 42,784 in Maine, 280,375 in Massachusetts, 22 in New Hampshire and 10,425 in Iowa, according to filings with state attorneys general.

The breach was discovered after Marquis paid a ransomware demand shortly after Aug. 14, 2025, but it was not until Oct. 27, 2025, that Marquis confirmed the extent of the data involved and began notifying affected institutions.

For more details, see the official disclosures made to the Maine, Massachusetts, California, New Hampshire, Texas, South Carolina, Vermont, Iowa and Washington Attorney Generals' offices.

Financial Institutions Impacted

The breach has affected a number of Marquis' downstream vendors that have made disclosures to various state attorneys general offices.

Banking institutions impacted include, but are not limited to:

• Community 1st Credit Union
• CoVantage Credit Union
• Maine State Credit Union
• BayFirst Financial
• Cape Code Five
• Norway Savings Bank
• Industrial Credit Union of Whatcom County
• Interior Federal Credit Union
• Bellwether Community Credit Union
• Time Bank
• Valley Strong Credit Union
• Suncoast Credit Union
• iQ Credit Union
• Sound Community Bank
• Gesa Credit Union

Marquis Software Solutions' response

Following the breach, Marquis took several steps to contain the incident and strengthen its cybersecurity posture. The company immediately launched an investigation with the help of cybersecurity experts and notified law enforcement. Marquis has since implemented enhanced security controls, including updating and patching firewall devices, rotating passwords, deleting unused accounts, enabling multifactor authentication, increasing firewall logging, applying stricter account lockout policies and geo-IP filtering, and deploying endpoint detection and response tools.

To support affected individuals, Marquis is offering complimentary credit monitoring and identity protection services through Epiq Privacy Solutions ID, typically for 12 to 24 months. These services include three-bureau credit monitoring, dark web monitoring, identity restoration assistance, lost wallet support and up to $1 million in identity theft insurance. Impacted individuals are being notified by mail with instructions on how to enroll in these services.

Given the nature of the breach and the types of data exposed, individuals should remain vigilant for signs of identity theft or fraud. Marquis recommends regularly reviewing account statements and credit reports, placing fraud alerts or security freezes on credit files, and taking advantage of the free credit monitoring being offered. The company has provided a dedicated response line for questions and additional support.