LendingTree LLC

LendingTree LLC, an online lending marketplace, was implicated in a massive data breach tied to the Snowflake cybersecurity incident, which affected up to 165 organizations, including Ticketmaster, Advance Auto, and the Los Angeles Unified School District. The breach resulted in the compromise of LendingTree’s customer data, exposing sensitive personal and financial information. The incident led to a proposed class-action lawsuit, with a federal court ruling that LendingTree’s arbitration clause was unenforceable due to insufficient notice to affected customers. The breach stemmed from a third-party cloud provider (Snowflake) vulnerability, exploited by cybercriminals to access and exfiltrate customer records. The exposed data likely included financial details, loan applications, and personally identifiable information (PII), increasing risks of identity theft, fraud, and reputational damage for LendingTree. The legal fallout and loss of customer trust further compound the financial and operational repercussions for the company.

Source: https://news.bloomberglaw.com/us-law-week/lendingtree-barred-from-arbitrating-snowflake-data-breach-claims

TPRM report: https://www.rankiteo.com/company/lendingtree

"id": "len3792637103125",
"linkid": "lendingtree",
"type": "Breach",
"date": "10/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Financial Services (Online Lending '
                                    'Marketplace)',
                        'name': 'LendingTree LLC',
                        'type': 'Company'},
                       {'customers_affected': 'Up to 165 organizations',
                        'industry': 'Cloud Data Warehousing',
                        'name': 'Snowflake Inc.',
                        'type': 'Company'},
                       {'industry': 'Entertainment (Ticket Sales)',
                        'name': 'Ticketmaster',
                        'type': 'Company'},
                       {'industry': 'Retail (Automotive Parts)',
                        'name': 'Advance Auto',
                        'type': 'Company'},
                       {'industry': 'Education',
                        'location': 'Los Angeles, California, USA',
                        'name': 'Los Angeles Unified School District',
                        'type': 'Government Entity'}],
 'data_breach': {'data_exfiltration': True,
                 'type_of_data_compromised': ['Customer Data']},
 'description': 'LendingTree LLC, an online lending marketplace, was one of up '
                'to 165 companies affected by the Snowflake data cloud breach. '
                'A federal court ruled that LendingTree could not enforce its '
                'arbitration clause, allowing a proposed class lawsuit to '
                'proceed over compromised customer data. The breach impacted '
                'multiple organizations, including Ticketmaster, Advance Auto, '
                'and Los Angeles Unified School District.',
 'impact': {'brand_reputation_impact': True,
            'customer_complaints': True,
            'data_compromised': True,
            'legal_liabilities': True},
 'investigation_status': 'Ongoing (Class Lawsuit Proceeding)',
 'references': [{'source': 'US District Court for the District of Montana'}],
 'regulatory_compliance': {'legal_actions': ['Class Lawsuit (Proposed)']},
 'title': 'LendingTree Data Compromise in Snowflake Cybersecurity Incident',
 'type': ['Data Breach', 'Third-Party Breach']}

LendingTree LLC

Aura: If you're caught up in the Aura data breach, NordVPN's Dark Web monitoring can save your skin

Mossad: Handala Hackers Releases Massive Data Breach of Former Mossad Chief

DHJJ and Ltd.: DHJJ, Ltd. Data Breach Alert Issued By Wolf Haldenstein