Qantas Hit by Cybersecurity Incident, Impacting Up to 6 Million Customers
Qantas has confirmed a significant cybersecurity breach that may have compromised the personal records of as many as 6 million customers.
The airline stated on Wednesday that the affected system, a third-party platform used by its customer service center, has since been secured. While the breach involved customer data—including names, email addresses, phone numbers, birth dates, and frequent flyer numbers—it did not extend to credit card details, financial records, or passport information. Frequent flyer accounts, along with passwords and login credentials, were also unaffected.
The unusual activity was first detected on Monday, prompting immediate action to contain the issue. Qantas is currently assessing the extent of the data compromise but anticipates it to be substantial.
The airline has notified the Australian Cyber Security Centre, the Office of the Australian Information Commissioner, and the Australian Federal Police. CEO Vanessa Hudson confirmed that independent cybersecurity experts have been engaged to investigate the incident. Customers will receive updates via a dedicated support line and a website page as the investigation unfolds.
"We deeply regret the concern this situation may cause our customers," Hudson said. "Protecting their personal data is a responsibility we take very seriously. We are reaching out to customers today to provide them with the necessary assistance."
Cybersecurity incidents continue to rise in Australia. Earlier this year, multiple superannuation funds experienced breaches, leading to over $500,000 being stolen from customers’ accounts.
In May, the Office of the Australian Information Commissioner reported a 25% increase in data breaches during 2024 compared to the previous year. Between July and December 2024 alone, 595 breaches were recorded, bringing the annual total to 1,113—a significant jump from 2023's 893 incidents.
A majority of the breaches stemmed from malicious or criminal activity, with phishing accounting for 34% of cases and ransomware making up 24%. Most incidents impacted fewer than 5,000 individuals, though two breaches affected between 500,000 and 1 million people. The compromised data primarily included contact details, identification records, and financial or health information.
The healthcare sector reported the highest number of breaches (121), followed by government (100), finance (54), legal and accounting (36), and retail (34).
Read next
Ryanair plane had only six minutes of fuel upon Manchester landing, records show
Flight Narrowly Avoids Disaster After Storm Diversion
An inquiry has been launched after a Ryanair flight, struggling against severe winds during storm Amy last week, landed at Manchester Airport with only six minutes’ worth of fuel remaining.
The aircraft had been transporting passengers from Pisa, Italy, to Prestwick, Scotland, on
"Qantas customer data for 5 million exposed as hackers release info post-ransom deadline"
Hackers Leak Personal Data of 5 Million Qantas Customers on Dark Web
A cybercriminal group has released personal records of 5 million Qantas customers on the dark web after the airline did not meet their ransom demand.
The breach is part of a larger global incident affecting over 40 companies,
Investors flee record-high UK stocks as EU set to hike steel tariffs
Investors Withdraw Record Sums from Equity Funds Amid High Market Valuations
Data reveals that investors in the UK have withdrawn an unprecedented amount of money from equity funds over the past three months, driven by concerns over soaring stock market valuations.
According to the latest figures from Calastone, the largest