Qantas

History

2025: Data breach of 6 million customers

On July 2, 2025, the largest Australian airline Qantas reported a cyber attack on its IT infrastructure. As a result of the hacker invasion, the personal data of about 6 million customers leaked.

Qantas said in a statement that the attackers attacked the carrier's contact center, after which they gained access to a third-party customer service platform. As a result, cybercriminals had at their disposal such information as the names of passengers, their email addresses, phone numbers, dates of birth and some other data. This information can be used for various fraudulent purposes, for example, to organize personalized phishing emails to steal funds.

𝓲

Фото: Reuters

Qantas itself claims that the hacked platform does not store customer passport and credit card data, as well as any other financial information. Suspicious activity was first identified on June 30, 2025. Immediately thereafter, the airline took the necessary protective measures. Specialists from the Australian Center, the cyber security Australian Federal Police and independent experts in the field are involved in the investigation of the incident. information security Qantas does not specify exactly how much personal data was stolen, noting only that it is "significant." Whether the cyber attack is related to the introduction of ransomware into the air carrier's IT infrastructure is also not clear.

We recognise the uncertainty this situation creates and sincerely apologise to customers. Qantas is responsible for the protection of personal data. We will provide passengers with all the necessary support, - said the CEO of the airline Vanessa Hudson[1]

Notes