{"id":1223,"date":"2025-07-10T08:53:20","date_gmt":"2025-07-10T08:53:20","guid":{"rendered":"https:\/\/ft365.org\/index.php\/2025\/07\/10\/qantas-confirms-5-7-million-customers-hit-by-data-breach\/"},"modified":"2025-07-10T08:53:20","modified_gmt":"2025-07-10T08:53:20","slug":"qantas-confirms-5-7-million-customers-hit-by-data-breach","status":"publish","type":"post","link":"http:\/\/ft365.org\/index.php\/2025\/07\/10\/qantas-confirms-5-7-million-customers-hit-by-data-breach\/","title":{"rendered":"Qantas Confirms 5.7 Million Customers Hit by Data Breach"},"content":{"rendered":"
\n

\"Photo<\/p>\n<\/div>\n

\n
\n

Qantas has confirmed that nearly six million customers have had their personal data compromised in\u00a0a recent breach.<\/p>\n

The Australian airline said that most (four million) of those affected had their name, email address and Qantas Frequent Flyer details exposed in the incident. Of these individuals, 1.2 million had only their name and email compromised.<\/p>\n

Of the remaining 1.7 million:<\/p>\n

    \n
  • 1.3 million customers had their residential and\/or business address compromised<\/li>\n
  • 1.1 million had their date of birth compromised<\/li>\n
  • 900,000 had records including their mobile, landline or business phone number revealed<\/li>\n
  • 400,000 had their gender exposed<\/li>\n
  • 10,000 had details on meal preferences stolen\u00a0<\/li>\n<\/ul>\n

    Those affected are currently being emailed by the airline to notify them of the specific data types taken in the raid.\u00a0<\/p>\n

    Qantas claimed that there\u2019s no evidence the stolen data has been released. It also confirmed that no card, financial or passport data was compromised \u2013 nor were passwords, PINs or logins.<\/p>\n

    However, even limited personal information like names, email addresses and frequent flyer numbers could be used by fraudsters to make phishing campaigns more convincing. These could be designed to elicit more sensitive financial information if, for example, scammers sent emails\/texts impersonating Qantas.\u00a0<\/p>\n

    Just days before Qantas revealed news of the data breach,\u00a0the FBI warned that threat actors\u00a0from the infamous Scattered Spider collective were targeting the airline industry, although it\u2019s still unclear whether they are responsible for this incident.<\/p>\n

    Read more about the Qantas cyber-attack: Qantas Reveals \u201cSignificant\u201d Contact Center Data Breach<\/em><\/p>\n

    The Australian firm did confirm on Monday that\u00a0an unnamed threat actor\u00a0had contacted it, perhaps in a bid to extort the company.<\/p>\n

    The original attack bore some of the hallmarks of a Scattered Spider campaign, given that it involved the targeting of a call center.<\/p>\n

    Actors linked to the group, many of whom are native English speakers, are known to be adept at socially engineering IT helpdesk and call center staff into handing over or resetting passwords.<\/p>\n

    In this case, they were able to gain access to a third-party customer servicing platform, and from there, data on 5.7 million Qantas customers.<\/p>\n

    Qantas Responds<\/h2>\n

    Qantas group CEO, Vanessa Hudson, said the firm had taken additional security measures to help prevent a similar event occurring in the future.<\/p>\n

    \u201cWe remain in constant contact with the National Cyber Security Coordinator, Australian Cyber Security Centre and the Australian Federal Police. I would like to thank the various agencies and the Federal Government for their continued support,\u201d she added.<\/p>\n

    The airline urged customers affected by the breach to:<\/p>\n