Hacked customer data from LendingTree subsidiary is being auctioned: report

By Bill Peters

LendingTree still determining whether it was hit by a broader hacking effort against Snowflake customers, Bloomberg reports

Hackers are auctioning off consumer data from QuoteWizard, a subsidiary of the lending platform LendingTree Inc., Bloomberg News reported on Thursday.

Citing a person familiar with the matter, Bloomberg reported the breach hadn't affected operations, but that LendingTree (TREE) was still trying to gauge the impact, after discovering unauthorized activity on a database hosted by Snowflake Inc. (SNOW), a cloud-data platform.

Bloomberg said it wasn't yet clear how the data theft occurred, and that LendingTree was still trying to figure out if it was affected by a broader effort by hackers to steal data from Snowflake's customers via stolen login details.

"We have not identified evidence suggesting this activity was caused by a vulnerability, misconfiguration or breach of Snowflake's platform," Brad Jones, Snowflake's chief information security officer, said in a statement in response to a MarketWatch request for comment.

LendingTree did not immediately respond to a request for comment.

Snowflake and the cybersecurity firm Mandiant, which is part of Alphabet's (GOOG) (GOOGL) Google, have said that they have "notified approximately 165 potentially exposed organizations" in the weeks since evidence of the hacking campaign first emerged.

Shares of LendingTree fell 2.5% after hours, after finishing the regular session 3.3% lower. Snowflake's shares, which closed regular trading 0.8% lower, were down 0.3% late Thursday.

-Bill Peters

This content was created by MarketWatch, which is operated by Dow Jones & Co. MarketWatch is published independently from Dow Jones Newswires and The Wall Street Journal.

(END) Dow Jones Newswires

06-20-24 1838ET

Copyright (c) 2024 Dow Jones & Company, Inc.