RICHLAND, Wash. --The widening ransomware breach at Marquis Software Solutions has now reached another large credit union, with $6.4-billion Gesa Credit Union here confirming that member data was compromised through the vendor’s systems.
According to a disclosure filed with the Washington Attorney General on Nov. 26, the breach traces back to Aug. 14, when Marquis detected unauthorized access to its network and launched a forensic investigation with outside cybersecurity experts. The investigation determined that an unauthorized third party accessed Marquis’ systems and acquired certain files tied to Gesa, reported Levi & Korsinsky, LLP, in a release.
Impacted data may include first and last names, dates of birth, Social Security numbers, financial account information, payment card data, and taxpayer identification numbers. Marquis has begun mailing notification letters to affected individuals, and compensation may be available to those whose sensitive information was compromised.
As CUToday.info previously reported, Marquis— which serves more than 700 financial institutions—has confirmed the incident as a ransomware attack tied to a zero-day vulnerability in its SonicWall firewall. State filings reviewed by TechCrunch indicate at least 400,000 individuals across multiple states have already been affected, a figure expected to grow as additional disclosures are filed.
Gesa now joins CoVantage Credit Union and Maine State Credit Union among those publicly confirmed as impacted, reinforcing expectations that more credit unions will report exposure in the coming weeks as the full scope of the breach continues to emerge.