Fintech company Marquis has disclosed plans to pursue compensation from its firewall provider SonicWall, attributing a 2025 data breach to vulnerabilities stemming from SonicWall’s own security incident. According to a memo shared with customers and reviewed by TechCrunch, Marquis asserts that the ransomware attack it experienced in August 2025 was facilitated by hackers exploiting security information exposed in SonicWall’s breach. The breach at SonicWall reportedly provided hackers with the credentials necessary to execute the ransomware attack on Marquis.
Marquis’ investigation revealed that the hackers leveraged data obtained from SonicWall to bypass its firewall protections. Notably, Marquis had stored a backup of its firewall configuration file in SonicWall’s cloud. As a response to the breach, Marquis is considering its next steps regarding its firewall provider, with a focus on recovering any costs incurred by the company and its clients in addressing the breach.
When approached for comment, a representative for Marquis did not contest the assertions made in the customer communication but reiterated the connection between Marquis’ breach and the earlier compromise of its firewall configuration by a threat actor who gained unauthorized access to SonicWall’s cloud backup service.
Source: TechCrunch