Marquis, a technology company used by hundreds of banks to analyze and visualize their customers’ data, says hundreds of thousands of people had their personal and sensitive financial information stolen in a ransomware attack last year. The Plano, Texas-based fintech company is notifying at least 672,075 people that hackers stole their information during the August 2025 cyberattack, according to a listing with Maine’s attorney general’s office. More than half of all those affected live in Texas, accor ...

This story was originally published on Cybersecurity Dive. To receive daily news and insights, subscribe to our free daily Cybersecurity Dive newsletter. UFP Technologies, a Massachusetts-based medical device maker, said it is investigating a cyberattack in mid-February that led to some of its company data being stolen or potentially destroyed, according to a regulatory filing.  The company said the attack, which was detected Feb. 14, impacted most of its IT network, as well as its billing and label-makin ...

Fintech giant Marquis is suing its firewall provider SonicWall, claiming that an earlier breach allowed hackers to steal sensitive information about customer firewalls that led to a ransomware attack on Marquis’ network. The lawsuit, filed Monday in the U.S. District Court for the Eastern District of Texas, seeks a jury trial. It claims the 2025 breach at SonicWall “exposed critical security information for Marquis and every customer that used SonicWall’s firewall cloud backup service.” Marquis’ chief ...

Core Viewpoint - DaVita Inc. is a leading healthcare provider in kidney care services, facing challenges from rising costs and a recent ransomware attack, but has shown strong quarterly performance leading to a year-to-date stock increase of 24% [1][2]. Company Overview - DaVita Inc. specializes in kidney care services, including dialysis treatments for chronic kidney failure patients, and is headquartered in Denver, Colorado with a market capitalization of $9.94 billion [1]. Stock Performance - Over the past year, DaVita's stock has declined by 18.2%, but it has rebounded with a 24% increase year-to-date [2]. - The stock reached a 52-week low of $101 on January 14, but has since increased by 39.4% from that level [2]. - In comparison, the S&P 500 Index gained 14% over the same period, indicating underperformance relative to the broader market [3]. Financial Results - DaVita reported a 9.9% year-over-year increase in Q4 revenue to $3.62 billion, driven by a 9% growth in dialysis patient service revenues to $3.40 billion [3]. - The company anticipates headwinds due to the expiration of the Affordable Care Act, but expects to offset these challenges with the elimination of cyber-incident impacts in 2025 [3]. Earnings Projections - Analysts expect DaVita's EPS to increase by 20.5% year-over-year to $2.41 for the current quarter, with further annual increases projected to $14.16 in fiscal 2026 and $16.90 in fiscal 2027 [4]. Analyst Ratings - Among eight Wall Street analysts covering DaVita, the consensus rating is a "Hold," with two "Strong Buy" ratings, five "Holds," and one "Moderate Sell" [5]. - The ratings configuration has become slightly more bullish, with the number of "Strong Buy" ratings increasing from one to two [5].

Fintech company Marquis is notifying dozens of U.S. banks and credit unions that they had customer data stolen in a cyberattack earlier this year. Details of the cyberattack emerged this week after Marquis filed data breach notices with several U.S. states confirming its August 14 incident as a ransomware attack. Texas-based Marquis is a marketing and compliance provider that allows banks and other financial institutions to collect and visualize all of their customer data in one place. The company count ...

Core Insights - The Washington Post has confirmed it was a victim of a hacking campaign linked to Oracle's E-Business Suite platform [1][4] - The hacking campaign, attributed to the Clop ransomware gang, exploited vulnerabilities in Oracle's software, affecting over 100 companies [2][3] - Clop has publicly claimed responsibility for the breach, indicating that the Post "ignored their security" [4][5] Company Impact - The breach allowed hackers to steal sensitive business data and employee records from multiple organizations, including The Washington Post, Harvard University, and American Airlines subsidiary Envoy [3][5] - Clop demanded a ransom of $50 million from one executive at an affected company, showcasing the high stakes involved in such cyberattacks [4] Industry Context - The incident highlights the growing threat of ransomware and extortion gangs targeting corporate software systems, emphasizing the need for enhanced cybersecurity measures [2][5] - The public disclosure of victims and stolen files is a common tactic used by ransomware gangs to exert pressure on organizations [5]

Core Insights - A notorious ransomware group, allegedly linked to Cl0p, is extorting large organizations by claiming to have stolen data from Oracle's E-Business Suite applications [1][2][4] Group Activities - The extortion emails began circulating on or before September 29, sent from hundreds of compromised third-party accounts, claiming data theft [2][4] - The emails exhibit poor English and grammar, typical of the group, and include contact details listed on Cl0p's website [3][4] Company Impact - Oracle's E-Business Suite is critical for core business operations, including financial, supply chain, and customer relationship management [2] - Cl0p has a history of targeting large companies with sophisticated malware, previously exploiting vulnerabilities in MOVEit, affecting hundreds of organizations [5] Cybersecurity Context - In June 2023, the US Cybersecurity and Infrastructure Security Agency labeled Cl0p as one of the largest phishing and malspam distributors, estimating over 3,000 organizations compromised in the US and 8,000 globally [6]

Core Insights - The data breach at UnitedHealth Group's tech unit, Change Healthcare, affected approximately 192.7 million individuals, making it the largest data breach in the U.S. healthcare industry to date [1][3][4] Group 1: Data Breach Details - The initial estimate of individuals impacted was 190 million, which was later revised to 192.7 million [2] - The breach was caused by the "Blackcat" ransomware group, leading to significant disruptions in claims processing across the nation [3] - Vulnerable information included health insurance member IDs, patient diagnoses, treatment information, social security numbers, and billing codes [4] Group 2: Financial Impact - Following the breach, Change Healthcare had to process $14 billion in backlogged healthcare claims after a month of service restoration efforts [4] - The cyberattack was noted to potentially reduce UnitedHealth Group's profit by $1.6 billion in 2024 [6] Group 3: Security Vulnerabilities - The hackers accessed the system through a Citrix portal that lacked multi-factor authentication, allowing them to move laterally within the systems [5][6] - The breach was disclosed in February, with the attack occurring on February 12, when compromised credentials were used for remote access [5]