Qantas Airways said a cyberattack compromised the personal details of around six million customers, marking one of Australia's most significant data breaches in recent years.
The airline has disclosed that a hacker accessed personal data via a third-party customer service platform, in what the airline described as a major cyber security breach.
The compromised information includes names, contact details, birth dates and frequent flyer numbers, though Qantas said passwords, PINs and login credentials were not affected. There was no impact on flight safety or operations, the airline said.
The breach was detected after unusual activity was noticed on a call centre platform operated by an external vendor. Qantas has not identified the vendor or the specific group responsible but confirmed the incident is under investigation.
“We are continuing to investigate the proportion of the data that has been stolen, though we expect it will be significant,” Qantas said in a statement.
The airline reported the incident to the Australian Cyber Security Centre, the Office of the Australian Information Commissioner, and the Australian Federal Police. The ACSC declined to comment, while the AFP said only that it was aware of the incident.
The U.S. Federal Bureau of Investigation recently warned that a cybercrime group known as Scattered Spider has been targeting airlines. Although Qantas has not attributed the attack to any specific group, cybersecurity experts said the incident shared hallmarks of similar breaches.
Charles Carmakal, chief technology officer at Mandiant, a cybersecurity firm owned by Alphabet, said it was too early to confirm if Scattered Spider was responsible. However, he warned that airlines globally should be on “high alert” for social engineering attacks.
Mark Thomas, Australian director at cybersecurity company Arctic Wolf, said the apparent scale and coordination of recent airline breaches is “particularly alarming.”
Qantas shares were down 2.4% in afternoon trading, underperforming the broader market, which was up 0.8%.
The breach comes at a sensitive time for the airline, which is attempting to rebuild trust following reputational damage during and after the COVID-19 pandemic. The carrier previously faced public backlash over mass layoffs, cancelled ticket sales, and controversy surrounding its influence on government aviation policy.
Chief Executive Vanessa Hudson, who took office in 2023, said the airline was taking the incident seriously.
“We recognise the uncertainty this will cause,” she said. “Our customers trust us with their personal information and we take that responsibility seriously.”
The incident is among the most high-profile cyber breaches in Australia since attacks on telecommunications giant Optus and insurer Medibank in 2022. Those cases led to tougher cyber resilience laws, including mandatory compliance and incident reporting.
Azerbaijani President Ilham Aliyev has announced the lifting of restrictions on the transit of goods to Armenia through Azerbaijani territory, during ...
Azerbaijan and Kazakhstan signed a joint declaration and pledged closer cooperation on Tuesday, as their presidents hailed a new era of regional conne...
Turkish nationalist leader Devlet Bahceli said the breakaway Turkish Cypriot state should hold a parliamentary vote to join Türkiye, two days after T...
The Zangezur Corridor is progressing steadily, with hopes it could open by the end of 2028, President of Azerbaijan Ilham Aliyev said in a statement t...
Presidents of Kazakhstan and Azerbaijan have reviewed a new development plan for the Middle Corridor, a key trade route linking China to Europe via Ce...
Azerbaijan and Kazakhstan signed a joint declaration and pledged closer cooperation on Tuesday, as their presidents hailed a new era of regional connectivity and peace following a summit in Astana.
Turkish nationalist leader Devlet Bahceli said the breakaway Turkish Cypriot state should hold a parliamentary vote to join Türkiye, two days after Turkish Cypriots elected a candidate in favour of restarting talks with Greek Cypriots.
Presidents of Kazakhstan and Azerbaijan have reviewed a new development plan for the Middle Corridor, a key trade route linking China to Europe via Central Asia and the South Caucasus.
U.S. Vice President JD Vance arrived in Israel on Tuesday as Washington seeks to stabilise the fragile Gaza ceasefire and press Israel and Hamas toward deeper concessions in upcoming talks.
At least 69 people have died and almost 150 injured following a powerful 6.9-magnitude earthquake off the coast of Cebu City in the central Visayas region of the Philippines, officials said, making it one of the country’s deadliest disasters this year.
A tsunami threat was issued in Chile after a magnitude 7.8 earthquake struck the Drake Passage on Friday. The epicenter was located 135 miles south of Puerto Williams on the north coast of Navarino Island.
The war in Ukraine has reached a strategic impasse, and it seems that the conflict will not be solved by military means. This creates a path toward one of two alternatives: either a “frozen” phase that can last indefinitely or a quest for a durable political regulation.
A shooting in Nice, southeastern France, left two people dead and five injured on Friday, authorities said.
Snapchat will start charging users who store more than 5GB of photos and videos in its Memories feature, prompting backlash from long-time users.
Turkish nationalist leader Devlet Bahceli said the breakaway Turkish Cypriot state should hold a parliamentary vote to join Türkiye, two days after Turkish Cypriots elected a candidate in favour of restarting talks with Greek Cypriots.
U.S. Vice President JD Vance arrived in Israel on Tuesday as Washington seeks to stabilise the fragile Gaza ceasefire and press Israel and Hamas toward deeper concessions in upcoming talks.
Poland and Romania detained eight people suspected of planning sabotage on behalf of Russia, authorities in Warsaw said on Tuesday, with three arrests concerning an alleged new plan to send exploding parcels, this time to Ukraine.
Nigerian police used teargas and blocked major roads in Abuja to halt protests against the ongoing detention of separatist leader Nnamdi Kanu, who is on trial for terrorism charges on Monday.
Crime gangs across Europe are increasingly stealing gold and jewels from cash-strapped museums such as the Louvre, but while police often catch the thieves, recovering the priceless items remains a challenge.
You can download the AnewZ application from Play Store and the App Store.
What is your opinion on this topic?
Leave the first comment