In a significant security incident, Qantas has reported that a cyber attack targeting a third-party customer service platform has potentially compromised the data of up to six million customers. This incident, which was detected on June 30, revealed "unusual activity" that exposed sensitive information such as names, email addresses, phone numbers, birth dates, and frequent flyer numbers.
Qantas Faces Major Data Breach Affecting Six Million Customers
Qantas Faces Major Data Breach Affecting Six Million Customers
Cyber attack compromises personal data while the airline assures operations remain unaffected.
Following the detection of the breach, Qantas acted swiftly to contain the incident and is currently investigating the full scope of the data compromised. While the airline has acknowledged that the scale of the stolen data is likely extensive, they have assured customers that critical information such as passport details, credit card numbers, and personal financial data were not affected by the breach. Furthermore, no frequent flyer accounts, passwords, or PIN numbers were compromised in the incident.
In light of the breach, Qantas has reached out to the Australian Federal Police, the Australian Cyber Security Centre, and the Office of the Australian Information Commissioner to report the incident. CEO Vanessa Hudson has expressed regret over the situation, acknowledging the unease it may cause among customers. She urged those with concerns to contact a dedicated support line and reassured the public that Qantas' overall operations and safety protocols remain intact.
This cyber attack comes shortly after an alert from the FBI regarding rising threats to the airline sector, noting that several other airlines like Hawaiian Airlines and WestJet have encountered similar cyber threats recently. The Qantas data breach adds to a troubling trend of cyber incidents in Australia, following notable breaches affecting AustralianSuper and Nine Media earlier this year.
In March 2025, the Office of the Australian Information Commissioner announced that the prior year had seen the highest number of recorded data breaches in Australian history, with the increase in security incidents predominantly attributed to malicious cyber activities. Australian Privacy Commissioner Carly Kind emphasized the need for enhanced security measures as both public and private sectors face escalating vulnerabilities to cyber attacks.
In light of the breach, Qantas has reached out to the Australian Federal Police, the Australian Cyber Security Centre, and the Office of the Australian Information Commissioner to report the incident. CEO Vanessa Hudson has expressed regret over the situation, acknowledging the unease it may cause among customers. She urged those with concerns to contact a dedicated support line and reassured the public that Qantas' overall operations and safety protocols remain intact.
This cyber attack comes shortly after an alert from the FBI regarding rising threats to the airline sector, noting that several other airlines like Hawaiian Airlines and WestJet have encountered similar cyber threats recently. The Qantas data breach adds to a troubling trend of cyber incidents in Australia, following notable breaches affecting AustralianSuper and Nine Media earlier this year.
In March 2025, the Office of the Australian Information Commissioner announced that the prior year had seen the highest number of recorded data breaches in Australian history, with the increase in security incidents predominantly attributed to malicious cyber activities. Australian Privacy Commissioner Carly Kind emphasized the need for enhanced security measures as both public and private sectors face escalating vulnerabilities to cyber attacks.
