Hackers Leak Personal Data of 5 Million Qantas Customers on Dark Web
A cybercriminal group has released personal records of 5 million Qantas customers on the dark web after the airline did not meet their ransom demand.
The breach is part of a larger global incident affecting over 40 companies, with reports suggesting up to 1 billion customer records may have been exposed.
The group, known as Scattered Lapsus$ Hunters, posted an extortion message on a dark web data leaks site last week, threatening to release stolen information unless paid. The Qantas data, taken from a Salesforce database during a June cyberattack, included email addresses, phone numbers, birth dates, and frequent flyer numbers. No financial or passport details were compromised.
On Saturday, the hackers labeled the data as “leaked” and warned: “Don’t be the next headline, should have paid the ransom.”
Jeremy Kirk, an executive editor specializing in cybersecurity threats, confirmed that 44 companies were impacted, including Gap, Vietnam Airlines, Toyota, Disney, McDonald’s, Ikea, and Adidas. He noted the group has operated for some time and is known for targeting interconnected corporate systems.
A Qantas representative stated that the airline remains focused on monitoring the situation and assisting affected customers. “We continue to provide a 24/7 support line and identity protection guidance,” the spokesperson said.
Salesforce, meanwhile, denied any compromise of its platform and stated it would not comply with extortion demands. “Our investigation, conducted with external experts, found these threats relate to past or unverified incidents. We are working with affected customers,” the company said.
The stolen global data, obtained between April 2024 and September 2025, includes personal and contact details of customers and employees, such as birth dates, purchase histories, and passport numbers.
“No company wants to see millions of customer records exposed online,” Kirk remarked. “It’s harmful for businesses and the individuals involved.”
In July, Qantas secured a court order from the NSW Supreme Court to block further distribution or misuse of the stolen data. While no financial details were leaked, experts warn that exposed personal information could still be exploited for fraud.
Read next
US Postal Service faces cash shortage by Feb 2027, agency chief warns
The United States Postal Service faces a cash shortfall within the next twelve months unless Congress removes the borrowing limit imposed on the agency, the postmaster general warned.
Speaking to the Associated Press, David Steiner said the service – which funds its operations through stamps and fees rather than tax revenue
UniCredit launches aggressive bid for Commerzbank as European takeover war intensifies
Two major European banks have entered a €35 billion (£30 billion) takeover contest after Italy’s UniCredit intensified its long‑standing bid for German lender Commerzbank, despite firm resistance from the German government.
UniCredit initially acquired a 9 % stake in Commerzbank in September 2024 and has since increased its holding
IEA weighs tapping additional oil reserves amid Iran conflict driving up prices
The international energy regulator is weighing another release of emergency crude reserves into the world market to temper climbing oil prices, after cautioning that market recovery will be slow following the ongoing strait of Hormuz crisis.
Fatih Birol, chief of the International Energy Agency, noted that member nations still hold