On August 14, 2025, a significant data breach involving Cape Cod Five was discovered after Marquis Software Solutions Inc., a third-party digital and physical marketing vendor, detected suspicious activity on its network.
Marquis determined it was the victim of a ransomware attack, with the unauthorized party gaining access through its SonicWall firewall. The breach was limited to Marquis’ environment and did not impact Cape Cod Five’s internal systems. However, files containing sensitive customer information provided by Cape Cod Five were potentially accessed and acquired by the attackers.
The breach affected at least 974 Maine residents, as reported to the Maine Attorney General’s office. The exposed information in the Marquis data breach includes names, addresses, dates of birth, Social Security numbers or tax ID numbers and financial account numbers. All of these data types are considered personally identifiable information (PII), and exposure of such details can increase the risk of identity theft and fraud.
The breach was part of a larger incident affecting multiple financial institutions, but Cape Cod Five customers were among those whose data was specifically compromised due to the files Marquis held for them.
Cape Cod Five's response
Once the breach was discovered, Marquis, on behalf of Cape Cod Five and other affected clients, launched an immediate investigation with the help of cybersecurity experts and notified federal law enforcement. Marquis conducted a tho
Source: https://www.claimdepot.com/data-breach/cape-cod-five-via-marquis-software-solutions-2025
The Cape Cod Five Cents Savings Bank cybersecurity rating report: https://www.rankiteo.com/company/cape-cod-five-cents-savings-bank
"id": "CAP1764796594",
"linkid": "cape-cod-five-cents-savings-bank",
"type": "Ransomware",
"date": "12/2025",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'incident': {'affected_entities': [{'customers_affected': 'At least 974 Maine '
'residents',
'industry': 'Banking',
'location': 'United States',
'name': 'Cape Cod Five',
'size': None,
'type': 'Financial Institution'},
{'customers_affected': None,
'industry': 'Digital and physical '
'marketing',
'location': 'United States',
'name': 'Marquis Software Solutions Inc.',
'size': None,
'type': 'Third-party vendor'}],
'attack_vector': 'Third-party vendor compromise (SonicWall '
'firewall)',
'data_breach': {'data_encryption': None,
'data_exfiltration': 'Potentially acquired by '
'attackers',
'file_types_exposed': None,
'number_of_records_exposed': 'At least 974 '
'(Maine residents '
'only)',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High (PII)',
'type_of_data_compromised': ['Names',
'Addresses',
'Dates of birth',
'Social Security '
'numbers or tax ID '
'numbers',
'Financial account '
'numbers']},
'date_detected': '2025-08-14',
'description': 'A significant data breach involving Cape Cod '
'Five was discovered after Marquis Software '
'Solutions Inc., a third-party digital and '
'physical marketing vendor, detected suspicious '
'activity on its network. The breach was caused '
'by a ransomware attack where unauthorized '
"parties gained access through Marquis' SonicWall "
'firewall. Files containing sensitive customer '
'information provided by Cape Cod Five were '
'potentially accessed and acquired by the '
'attackers.',
'impact': {'brand_reputation_impact': 'Likely negative impact on '
"Cape Cod Five's brand "
'reputation',
'conversion_rate_impact': None,
'customer_complaints': None,
'data_compromised': 'Personally identifiable '
'information (PII)',
'downtime': None,
'financial_loss': None,
'identity_theft_risk': 'Increased risk of identity '
'theft and fraud',
'legal_liabilities': 'Potential legal liabilities due '
'to PII exposure',
'operational_impact': None,
'payment_information_risk': 'Risk of financial fraud '
'due to exposed financial '
'account numbers',
'revenue_loss': None,
'systems_affected': "Marquis Software Solutions' "
'network'},
'initial_access_broker': {'backdoors_established': None,
'data_sold_on_dark_web': None,
'entry_point': 'SonicWall firewall',
'high_value_targets': None,
'reconnaissance_period': None},
'investigation_status': 'Ongoing',
'motivation': 'Financial gain (ransomware)',
'post_incident_analysis': {'corrective_actions': None,
'root_causes': 'Third-party vendor '
'vulnerability '
'(SonicWall firewall)'},
'ransomware': {'data_encryption': None,
'data_exfiltration': 'Potential data exfiltration',
'ransom_demanded': None,
'ransom_paid': None,
'ransomware_strain': None},
'references': [{'date_accessed': None,
'source': "Maine Attorney General's office",
'url': None}],
'regulatory_compliance': {'fines_imposed': None,
'legal_actions': None,
'regulations_violated': None,
'regulatory_notifications': 'Reported '
'to Maine '
'Attorney '
"General's "
'office'},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': None,
'containment_measures': None,
'enhanced_monitoring': None,
'incident_response_plan_activated': 'Yes',
'law_enforcement_notified': 'Federal law '
'enforcement',
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': None,
'remediation_measures': None,
'third_party_assistance': 'Cybersecurity experts'},
'title': 'Cape Cod Five Data Breach via Third-Party Vendor '
'(Marquis Software Solutions)',
'type': 'Data Breach',
'vulnerability_exploited': 'SonicWall firewall vulnerability'}}