{"id":217383,"date":"2026-02-25T10:54:00","date_gmt":"2026-02-25T15:54:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/02\/25\/marquis-sues-sonicwall-over-backup-breach-that-led-to-ransomware-attack\/"},"modified":"2026-02-25T15:10:41","modified_gmt":"2026-02-25T20:10:41","slug":"marquis-sues-sonicwall-over-backup-breach-that-led-to-ransomware-attack","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/02\/25\/marquis-sues-sonicwall-over-backup-breach-that-led-to-ransomware-attack\/","title":{"rendered":"Marquis sues SonicWall over backup breach that led to ransomware attack"},"content":{"rendered":"<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/marquis-sues-sonicwall-over-backup-breach-that-led-to-ransomware-attack\/\">Marquis sues SonicWall over backup breach that led to ransomware attack<\/a><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/marquis-sues-sonicwall-over-backup-breach-that-led-to-ransomware-attack\/\">https:\/\/www.bleepingcomputer.com\/news\/security\/marquis-sues-sonicwall-over-backup-breach-that-led-to-ransomware-attack\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-02-25 10:54:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.bleepingcomputer.com\">www.bleepingcomputer.com<\/a><\/p>\n<p style=\"text-align:center\">\n<p>Marquis Software Solutions has filed a lawsuit against SonicWall, accusing the cybersecurity company of gross negligence and misrepresentation that allegedly led to a ransomware attack disrupting operations at 74 U.S. banks.<\/p>\n<p>On August 14, 2025, hackers breached Marqui&#8217;s network in a ransomware attack\u00a0after compromising\u00a0a SonicWall firewall. The attacker stole files containing personal information received from business partners.<\/p>\n<p>The details included\u00a0names, addresses, phone numbers, Social Security numbers, Taxpayer Identification Numbers, and financial account information.<\/p>\n<p> <img decoding=\"async\" src=\"https:\/\/www.bleepstatic.com\/c\/w\/ai-security-board-report-template.jpg\" alt=\"Wiz\" style=\"margin-top: 0px;\"\/><\/p>\n<p>Marquis provides data analytics, CRM tools, compliance reporting, and digital marketing services, with a clientele that includes more than 700 banks, credit unions, and mortgage lenders.<\/p>\n<p>In January 2026, Marquis officially accused SonicWall of security failures after determining that the hackers\u00a0had not exploited an unpatched flaw in its firewall, as previously assumed. Instead, it was discovered that the attacker\u00a0leveraged configuration data extracted from the vendor\u2019s cloud backup infrastructure.<\/p>\n<p>The cause of the breach was a security gap that SonicWall introduced in its MySonicWall cloud backup service via an API code change in February 2025.<\/p>\n<p>The vulnerability allowed unauthorized access to firewall configuration backup files stored in SonicWall\u2019s cloud, which contain AES-256 encrypted credentials, configuration data, and MFA scratch codes.<\/p>\n<p>The cybersecurity vendor disclosed the incident only three weeks later and initially estimated it impacted 5% of its customer base, but later confirmed that all clients were impacted.<\/p>\n<p>An investigation from incident response company Mandiant revealed that the attack was\u00a0carried out by state-sponsored hackers.<\/p>\n<p>Marquis states\u00a0that at the time of the attack, its SonicWall firewall was up to date, multi-factor authentication (MFA) was enabled, and additional security controls were in place, but\u00a0the threat actor&#8230;<\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/marquis-sues-sonicwall-over-backup-breach-that-led-to-ransomware-attack\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Marquis sues SonicWall over backup breach that led to ransomware attack https:\/\/www.bleepingcomputer.com\/news\/security\/marquis-sues-sonicwall-over-backup-breach-that-led-to-ransomware-attack\/ Publish Date: 2026-02-25&#8230;<\/p>\n","protected":false},"author":1,"featured_media":217384,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.bleepstatic.com\/content\/hl-images\/2026\/01\/29\/Marquis.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,30,24,34,27],"class_list":["post-217383","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-breach","tag-cybersecurity","tag-threat-actor","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/217383"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=217383"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/217383\/revisions"}],"predecessor-version":[{"id":217385,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/217383\/revisions\/217385"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/217384"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=217383"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=217383"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=217383"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}