Qantas Confirms Data Breach Exposed Information of 5.7 Million Customers 

• One of Australia’s most significant cybersecurity breaches in recent years affected fewer customers than initially reported.
• Qantas Airways acknowledged that the total number of impacted individuals stands at 5.7 million after removing duplicates.
• Names, email addresses, phone numbers, birthdates, and home addresses of customers were exposed.

Australia's Qantas Airways has confirmed the hacked database initially contained approximately 6 million records, but after removing duplicates, the total number of affected individuals stands at 5.7 million. The airline disclosed a cyberattack last week.  

Among these, more than 1 million customers had their sensitive personal information accessed, including phone numbers, birthdates, and home addresses. Additionally, the names and email addresses of another 4 million customers were also compromised.  

Hackers gained access to a third-party customer servicing platform linked to one of the company’s airline contact centers and are now extorting Qantas.

Crucially, no evidence thus far indicates that the accessed data has been leaked or used maliciously for now. However, the airline remains on high alert, actively monitoring the situation to prevent potential misuse of the exposed information.  

Qantas Group CEO Vanessa Hudson outlined the company’s immediate and ongoing efforts to address the data breach and enhance its cybersecurity framework. 

“Since the incident, we have put in place a number of additional cybersecurity measures to further protect our customers' data, and are continuing to review what happened,” Hudson stated in her remarks, cited by Reuters.  

Recently, the FBI issued a warning about cybersecurity threats in the aviation sector, highlighting the tactics employed by entities such as the Scattered Spider group. 

The Qantas data breach has been highlighted as one of the most high-profile incidents since 2022, when Australian firms Optus and Medibank faced massive cyberattacks.  

Customers are encouraged to be cautious of phishing attempts and regularly review their personal account security for added protection.

Related

Operation Serengeti 2.0: Trend Micro Backs INTERPOL in Record Cybercrime Crackdown

Salesloft Drift Breach Extends to Other Connected Systems, Salesforce Sued

Gambler Panel Scam Operations with Affiliate Network Target Victims Through Fake Online Casinos

Toyota India (Kirloskar Motor) May Be Hit by Black Nevas Ransomware Attack

US Treasury Sanctions Four Related to IT Worker Scheme Network Funding North Korea's Weapons Programs

PromptLock First AI-Powered Ransomware Uses Ollama API for Dynamic Attacks

Your Weekly Cybersecurity Briefing

Get expert insights on threats, breaches, scams, and security trends — delivered every Saturday.

Subscribe for Free

Please enter a valid email address.

Most Popular

Operation Serengeti 2.0: Trend Micro Backs INTERPOL in Record Cybercrime Crackdown

IPVanish Expands Privacy and Security with RAM-Only Servers and OpenVPN Support on iOS

Salesloft Drift Breach Extends to Other Connected Systems, Salesforce Sued

Gambler Panel Scam Operations with Affiliate Network Target Victims Through Fake Online Casinos

Toyota India (Kirloskar Motor) May Be Hit by Black Nevas Ransomware Attack

US Treasury Sanctions Four Related to IT Worker Scheme Network Funding North Korea's Weapons Programs

Operation Serengeti 2.0: Trend Micro Backs INTERPOL in Record Cybercrime Crackdown

IPVanish Expands Privacy and Security with RAM-Only Servers and OpenVPN Support on iOS

Salesloft Drift Breach Extends to Other Connected Systems, Salesforce Sued

Gambler Panel Scam Operations with Affiliate Network Target Victims Through Fake Online Casinos

Toyota India (Kirloskar Motor) May Be Hit by Black Nevas Ransomware Attack

US Treasury Sanctions Four Related to IT Worker Scheme Network Funding North Korea's Weapons Programs