Qantas Airways said a cyberattack compromised the personal details of around six million customers, marking one of Australia's most significant data breaches in recent years.
The airline has disclosed that a hacker accessed personal data via a third-party customer service platform, in what the airline described as a major cyber security breach.
The compromised information includes names, contact details, birth dates and frequent flyer numbers, though Qantas said passwords, PINs and login credentials were not affected. There was no impact on flight safety or operations, the airline said.
The breach was detected after unusual activity was noticed on a call centre platform operated by an external vendor. Qantas has not identified the vendor or the specific group responsible but confirmed the incident is under investigation.
“We are continuing to investigate the proportion of the data that has been stolen, though we expect it will be significant,” Qantas said in a statement.
The airline reported the incident to the Australian Cyber Security Centre, the Office of the Australian Information Commissioner, and the Australian Federal Police. The ACSC declined to comment, while the AFP said only that it was aware of the incident.
The U.S. Federal Bureau of Investigation recently warned that a cybercrime group known as Scattered Spider has been targeting airlines. Although Qantas has not attributed the attack to any specific group, cybersecurity experts said the incident shared hallmarks of similar breaches.
Charles Carmakal, chief technology officer at Mandiant, a cybersecurity firm owned by Alphabet, said it was too early to confirm if Scattered Spider was responsible. However, he warned that airlines globally should be on “high alert” for social engineering attacks.
Mark Thomas, Australian director at cybersecurity company Arctic Wolf, said the apparent scale and coordination of recent airline breaches is “particularly alarming.”
Qantas shares were down 2.4% in afternoon trading, underperforming the broader market, which was up 0.8%.
The breach comes at a sensitive time for the airline, which is attempting to rebuild trust following reputational damage during and after the COVID-19 pandemic. The carrier previously faced public backlash over mass layoffs, cancelled ticket sales, and controversy surrounding its influence on government aviation policy.
Chief Executive Vanessa Hudson, who took office in 2023, said the airline was taking the incident seriously.
“We recognise the uncertainty this will cause,” she said. “Our customers trust us with their personal information and we take that responsibility seriously.”
The incident is among the most high-profile cyber breaches in Australia since attacks on telecommunications giant Optus and insurer Medibank in 2022. Those cases led to tougher cyber resilience laws, including mandatory compliance and incident reporting.
An Iranian drone and missile attack struck Kuwait International Airport early Wednesday, injuring several people, damaging Terminal 1 and forcing flig...
At least 21 people, including 18 foreign nationals, have died after a devastating fire swept through a hotel in India's capital, Delhi, on Wednesday. ...
Iran’s Revolutionary Guards (IRGC) said on Wednesday that they had targeted the U.S. Fifth Fleet headquarters in Bahrain and a U.S. air base in the ...
Kazakhstan has used a high-level visit by Hong Kong Chief Executive John Lee to promote itself as a gateway to Central Asia, offering investors access...
Georgian and American law enforcement agencies have dismantled two criminal groups that charged hundreds of Georgians to build fabricated asylum cases...
An Iranian drone and missile attack struck Kuwait International Airport early Wednesday, injuring several people, damaging Terminal 1 and forcing flight diversions, Kuwaiti authorities said.
At least 21 people, including 18 foreign nationals, have died after a devastating fire swept through a hotel in India's capital, Delhi, on Wednesday. The blaze is among the deadliest fires recorded in the city since 2022.
Kazakhstan has used a high-level visit by Hong Kong Chief Executive John Lee to promote itself as a gateway to Central Asia, offering investors access to industrial projects worth more than $100 billion and a growing regional market.
Protesters chanted “I can’t breathe” and threw bins at police in Southampton on Tuesday (2 June) after footage emerged showing murdered teenager Henry Nowak being arrested as he lay dying from a stab wound.
Severe Tropical Storm Jangmi brought heavy rain, power cuts and transport disruption across Japan on Wednesday (3 June) as it tracked towards the greater Tokyo region.
Police officers were pelted with missiles during violent clashes at a protest near the Southampton, UK, home of convicted murderer Vickrum Digwa, as anger continued to grow over the handling of the fatal stabbing of 18-year-old Henry Nowak.
Competing narratives continue to shape perceptions of the war in Ukraine, with Russian leadership suggesting a possible end phase while Ukrainian officials warn of renewed large-scale attacks and ongoing escalation risks.
An Iranian drone and missile attack struck Kuwait International Airport early Wednesday, injuring several people, damaging Terminal 1 and forcing flight diversions, Kuwaiti authorities said.
Global weather forecasters predict a strong El Niño will develop in the second half of 2026, bringing hotter, drier conditions to much of Asia while increasing rainfall in parts of North and South America.
Protesters chanted “I can’t breathe” and threw bins at police in Southampton on Tuesday (2 June) after footage emerged showing murdered teenager Henry Nowak being arrested as he lay dying from a stab wound.
Thousands of people have taken to the streets in Albania in recent days to protest against a luxury tourism project linked to Jared Kushner, the son-in-law of U.S. President Donald Trump, and his wife Ivanka Trump.
Bolivia’s Defence Minister has resigned amid widening unrest over government austerity measures, which have led to protesters blocking roads into the country’s two largest cities.
Severe Tropical Storm Jangmi brought heavy rain, power cuts and transport disruption across Japan on Wednesday (3 June) as it tracked towards the greater Tokyo region.
Start your day informed with the AnewZ Morning Brief. Here are the top stories for the 3 June, covering the latest developments you need to know.
You can download the AnewZ application from Play Store and the App Store.
What is your opinion on this topic?
Leave the first comment