Marquis Software Solutions, a Texas-based technology provider serving over 500 banks and credit unions, detected unauthorized network activity on **August 14, 2025**. A third-party breach investigation confirmed that an attacker accessed and exfiltrated sensitive files from its systems, exposing personally identifiable information (PII) of individuals associated with clients like CoVantage Credit Union. The compromised data included **names, addresses, phone numbers, Social Security numbers, financial account details, and dates of birth**—high-risk information for identity theft and financial fraud. Notifications to affected individuals began in **late October 2025**, with at least **22 New Hampshire residents confirmed impacted** as of November 26, 2025. While the breach was isolated to Marquis’ environment (sparing CoVantage’s internal systems), the scale of exposed data—particularly **SSNs and financial records**—poses severe risks of fraud, phishing, and long-term identity exploitation. Marquis offered **24 months of credit monitoring** via Epiq Privacy Solutions, but the incident underscores systemic vulnerabilities in third-party vendors handling sensitive financial data. Legal firms are pursuing class-action lawsuits for compensation, citing negligence in safeguarding consumer information.
Source: https://www.claimdepot.com/investigations/covantage-credit-union-data-breach-2025
Marquis cybersecurity rating report: https://www.rankiteo.com/company/marquis-software-solutions
"id": "MAR1463814112725",
"linkid": "marquis-software-solutions",
"type": "Breach",
"date": "8/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Financial Services',
'location': 'Antigo, Wisconsin, USA (serves Wisconsin, '
'Michigan, and Illinois)',
'name': 'CoVantage Credit Union',
'size': '170,000+ members',
'type': 'Credit Union'},
{'industry': 'Software and Digital Services',
'location': 'Texas, USA',
'name': 'Marquis Software Solutions',
'size': 'Serves 500+ banks and credit unions '
'nationwide',
'type': 'Technology Company'}],
'customer_advisories': ['Enroll in 24 months of complimentary credit '
'monitoring and identity protection (via Epiq Privacy '
'Solutions ID)',
'Monitor accounts and credit reports for suspicious '
'activity',
'Follow FTC guidelines for fraud alerts or credit '
'freezes'],
'data_breach': {'data_exfiltration': 'Potentially acquired by unauthorized '
'third party',
'personally_identifiable_information': ['Names',
'Addresses',
'Phone numbers',
'Social Security '
'numbers',
'Dates of birth'],
'sensitivity_of_data': 'High (includes SSNs, financial '
'account info)',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Financial Data']},
'date_detected': '2025-08-14',
'description': 'Shamis & Gentile P.A. is investigating a data breach at '
'CoVantage Credit Union and Marquis Software Solutions, where '
'sensitive personally identifiable information (PII) of '
'individuals may have been exposed. The breach was detected on '
"August 14, 2025, in Marquis Software Solutions' network, with "
'notifications to affected individuals beginning in late '
'October 2025. Marquis is offering 24 months of complimentary '
'credit monitoring and identity protection services to '
'affected individuals.',
'impact': {'data_compromised': ['Names',
'Addresses',
'Phone numbers',
'Social Security numbers',
'Financial account information',
'Dates of birth'],
'identity_theft_risk': 'High (PII exposed)',
'payment_information_risk': 'High (financial account information '
'exposed)',
'systems_affected': "Marquis Software Solutions' systems "
"(CoVantage Credit Union's internal systems "
'were not impacted)'},
'investigation_status': 'Ongoing (Shamis & Gentile P.A. investigating for '
'potential class action)',
'recommendations': ['Review account statements and credit reports for '
'unauthorized activity',
'Place a fraud alert or security freeze on credit reports',
'Report suspicious activity to financial institutions, '
'law enforcement, and the FTC',
'Contact state attorney general’s office for guidance',
'Enroll in offered credit monitoring and identity '
'protection services'],
'references': [{'source': 'Shamis & Gentile P.A. Investigation Notice'},
{'source': 'Federal Trade Commission (FTC) guidance'},
{'date_accessed': '2025-11-26',
'source': 'New Hampshire Attorney General’s office breach '
'report'}],
'regulatory_compliance': {'legal_actions': 'Potential class action lawsuit '
'(Shamis & Gentile P.A. '
'investigating)',
'regulatory_notifications': 'Reported to New '
'Hampshire Attorney '
'General’s office (22 '
'NH residents '
'affected)'},
'response': {'communication_strategy': 'Notifications sent to affected '
'individuals in late October 2025; '
'breach reported to New Hampshire '
'Attorney General on November 26, 2025',
'incident_response_plan_activated': 'Yes (cybersecurity experts '
'engaged)',
'recovery_measures': '24 months of complimentary credit '
'monitoring and identity protection '
'services (via Epiq Privacy Solutions ID)',
'third_party_assistance': 'Yes (expert engaged to identify '
'affected individuals)'},
'stakeholder_advisories': 'Notifications sent to affected individuals; breach '
'reported to New Hampshire Attorney General',
'threat_actor': 'Unauthorized third party',
'title': 'CoVantage Credit Union and Marquis Software Solutions Data Breach',
'type': 'Data Breach'}