QuoteWizard Details
QuoteWizard
Seattle, WA • 460 employees • Insurance
Industry
Insurance
Security Incidents
1
QuoteWizard is an online insurance comparison platform that connects consumers with insurance providers, helping them find the best rates for various insurance types, including auto, home, renters, health, and Medicare. Founded in 2006 and headquartered in Seattle, QuoteWizard has grown from a small startup to a company with over 460 employees across offices in Seattle, Denver, and Cleveland. Now part of the LendingTree network, QuoteWizard has served over 50 million people, providing end-to-end solutions for insurance shoppers and agents.
Security Incidents
QuoteWizard Breach of Jun 2024
Show more
The stolen data included customer details, partial credit card numbers, and insurance quotes, raising significant privacy concerns.
Additionally, Snowflake customers with single-factor authentication were particularly targeted in this campaign.
Severity Score
Significant
Type
3rd Party CompromiseSummary
LendingTree's subsidiary, QuoteWizard, was potentially affected by a cybersecurity incident linked to Snowflake, following a wider attack on Snowflake customers. Hackers allegedly stole sensitive information from QuoteWizard, including customer details and partial credit card numbers, and offered it for $2 million on the dark web. Snowflake's investigation, conducted by CrowdStrike and Mandiant, revealed the breach stemmed from compromised credentials rather than vulnerabilities in Snowflake's core platform. Mandiant reported that the threat actors are financially motivated, based in North Ame...Show more
Severity
The breach affecting LendingTree's subsidiary, QuoteWizard, was severe, with hackers allegedly stealing sensitive information of over 190 million customers, including partial credit card numbers and insurance quotes. The stolen data was offered on the dark web for $2 million, indicating a significant security lapse. The breach stemmed from compromised credentials used to access Snowflake databases, rather than vulnerabilities in Snowflake's core platform.Impact
The breach primarily affected customers of LendingTree's subsidiary, QuoteWizard, with hackers allegedly obtaining sensitive information of over 190 million individuals.The stolen data included customer details, partial credit card numbers, and insurance quotes, raising significant privacy concerns.
Additionally, Snowflake customers with single-factor authentication were particularly targeted in this campaign.
Other incidents caused by this QuoteWizard incident
KEEP YOUR ENVIRONMENT SECURE
Weak credentials are the leading cause of breaches. Beyond Identity can help.
See MFA exploits in action
Watch how adversaries exploit companies in quick videos