When Vendors Become The Vulnerability: What The Marquis Software Breach Signals For Financial Institutions
Security Boulevard, December 10,2025
In December 2025, a ransomware attack on Marquis Software Solutions, a data analytics and marketing vendor serving the financial sector, compromised sensitive customer information held by multiple banks and credit unions, according to Infosecurity Magazine.
The attackers reportedly gained access through a known vulnerability in a firewall device connected to Marquis's remote-access systems. The incident underscores a growing challenge across the financial industry: third-party risk in an increasingly interconnected vendor ecosystem.
Vendor Breaches Are an Enterprise Risk
Marquis Software serves dozens of institutions, offering tools for customer engagement, data processing, and compliance. When a vendor with access to regulated financial data is breached, the impact reverberates across the ecosystem.