Qantas has confirmed a major data breach after hackers accessed a third-party platform containing the personal information of about 6 million customers. The airline detected unusual activity on Monday and took immediate action to secure its systems.
In an official statement released on Wednesday, Qantas said the cyberattack likely resulted in a “significant” amount of customer data being stolen. The compromised information includes names, email addresses, phone numbers, birth dates, and frequent flyer numbers. However, the airline clarified that credit card details, personal financial information, and passport data were not affected.
Qantas has reported the incident to relevant authorities, including the police, the Australian Cyber Security Centre, and the Office of the Australian Information Commissioner. The airline has also implemented extra security measures and has started notifying impacted customers.
Vanessa Hudson, Chief Executive Officer of Qantas Group, issued an apology to customers, stating, “Our customers trust us with their personal information and we take that responsibility seriously. We are contacting our customers today and our focus is on providing them with the necessary support.”
This breach comes at a challenging time for Qantas, which is still recovering from recent reputational setbacks. These include criticism over the sale of tickets for cancelled flights during the COVID-19 pandemic and the airline’s opposition to Qatar Airways’ expansion plans for Europe-bound routes.
Qantas hit a low point in last year’s World Airline Awards, dropping to 24th place, although it has since recovered, rising 10 spots in the 2025 rankings.
The leadership transition from former CEO Alan Joyce to Vanessa Hudson in 2023 also marked a turning point. Joyce resigned earlier than scheduled, acknowledging the need for urgent renewal within the airline.
Meanwhile, the FBI recently warned that a cybercriminal group known as Scattered Spider has broadened its targets to include airlines. The group is known for impersonating employees or contractors to deploy ransomware and steal data for extortion.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream formerly known as CIO News LinkedIn Account | The Mainstream formerly known as CIO News Facebook | The Mainstream formerly known as CIO News Youtube | The Mainstream formerly known as CIO News Twitter |The Mainstream formerly known as CIO News Whatsapp Channel | The Mainstream formerly known as CIO News Instagram
About us:
The Mainstream formerly known as CIO News is a premier platform dedicated to delivering latest news, updates, and insights from the tech industry. With its strong foundation of intellectual property and thought leadership, the platform is well-positioned to stay ahead of the curve and lead conversations about how technology shapes our world. From its early days as CIO News to its rebranding as The Mainstream on November 28, 2024, it has been expanding its global reach, targeting key markets in the Middle East & Africa, ASEAN, the USA, and the UK. The Mainstream is a vision to put technology at the center of every conversation, inspiring professionals and organizations to embrace the future of tech.
