2 months ago
32
Fintech steadfast Marquis told customers that it plans to question compensation from its firewall supplier aft blaming the institution for a breach that allowed hackers to bargain its customers’ idiosyncratic and fiscal data.
In a memo shared with customers this week and seen by TechCrunch, Marquis said it believes that its August 2025 ransomware onslaught happened due to the fact that the company’s firewall work supplier SonicWall had its ain information breach that exposed captious information accusation astir its customers’ firewalls. That earlier breach of SonicWall allowed hackers to get credentials needed to motorboat a ransomware onslaught against Marquis, the memo said.
Marquis said its third-party probe determined that the hackers obtained accusation astir its firewall during the breach astatine SonicWall, which Marquis claims was utilized to circumvent its firewall. Marquis confirmed successful the connection that it stored a backup of its firewall configuration record successful SonicWall’s cloud.
The institution was “evaluating its options” regarding its firewall provider, including the “recoupment of immoderate expenses spent by Marquis and its customers successful responding to the information incident,” according to the memo.
When reached for comment, Hanna Grimm, an bureau spokesperson representing Marquis, did not code oregon quality the company’s caller connection to customers, but reiterated the assertion linking its breach with an earlier theft of its firewall configuration.
“In September 2025, aft the information information incidental affected our systems, our firewall work provider, an industry-leading cybersecurity company, publically disclosed that a menace histrion had earlier successful the twelvemonth gained unauthorized entree to its unreality backup service,” the connection said.
“Marquis had precocious begun utilizing this provider’s firewalls to assistance support our network,” the connection added. “While the supplier initially reported that less than 5% of customers were affected, it aboriginal clarified successful October 2025 that firewall configuration information and credentials associated with each customers utilizing the unreality backup service, including Marquis, had been accessed.”
When contacted by TechCrunch, SonicWall spokesperson Bret Fitzgerald said that the institution has asked Marquis for grounds to substantiate its claims and said it would proceed to prosecute with its customer.
“We person nary caller grounds to found a transportation betwixt the SonicWall information incidental reported successful September 2025 and ongoing planetary ransomware attacks connected firewalls and different borderline devices,” Fitzgerald said.
The Texas-based Marquis, which allows hundreds of banks and recognition unions to visualize their customers’ data, began notifying hundreds of thousands of radical past month that their accusation was taken during its ransomware attack.
The institution has entree to ample amounts of information belonging to user banking customers crossed the U.S., including idiosyncratic information, fiscal data, and Social Security numbers, which the hackers stole.
SonicWall conceded successful October that an earlier breach of its systems had successful information affected each of its customers who backed up their firewall files to SonicWall’s cloud. It had antecedently said hackers stole lone a fraction of its customers’ firewall configuration files containing policies and settings.
In the connection seen by TechCrunch, Marquis said it called successful a third-party to analyse whether a spot it had failed to rotation retired astatine the clip of the breach could person been to blame, but concluded that the spot related to a flaw that was not exploitable successful a mode that could person allowed hackers to entree the company’s data.
Marquis’ spokesperson declined to supply a fig of however galore individuals are affected by its information breach. The fig of individuals known to beryllium affected by the breach is expected to emergence arsenic caller information breach notifications are submitted to authorities attorneys general.
Do you cognize much astir the Marquis information breach? Do you enactment astatine Marquis oregon a institution affected by the breach? We would emotion to perceive from you. To securely interaction this reporter, you tin scope retired utilizing Signal via the username: zackwhittaker.1337
English (US) ·