Cyberattack against airline: Personal information of 6 million costumers accessed

The hacker got access to a third-party customer service platform containing the information.

What is happening?

Australias largest airline, Qantas, has confirmed a significant data breach, marking Australia’s largest cybersecurity incident in years.

Extend under investigation

A hacker infiltrated a third-party platform used by a call centre, compromising the personal details of roughly six million customers.

The airline is currently investigating the extent of the stolen data.

Personal Information at Risk

The stolen data includes names, email addresses, phone numbers, birth dates, and frequent flyer numbers.

Qantas said passwords, PINs, and login credentials were not accessed, but the sheer volume of exposed information has raised serious privacy concerns.

Swift Response from Qantas

Upon detecting unusual activity, Qantas took immediate action to contain the breach.

The company has since involved key Australian authorities, including the Cyber Security Centre, the Information Commissioner, and the Federal Police, as investigations continue.

Source of the Breach Unclear

Qantas did not disclose the location of the affected call centre or specify which customers were impacted.

While the breach targeted a third-party customer service platform, the identity of the hacker group responsible remains unconfirmed.

Scattered Spider Suspected

The cybercrime group Scattered Spider has been flagged by the FBI for recent attacks on airlines.

Although Qantas has not attributed the breach to any group, cybersecurity experts suggest the methods used align with the tactics employed by Scattered Spider, such as impersonating IT staff to gain internal access.

Industry-Wide Threat

This breach follows similar cyberattacks on Hawaiian Airlines and Canada’s WestJet.

Experts warn that airline companies globally should be on alert for sophisticated social engineering tactics, which are increasingly being used to breach corporate systems.

Market Impact

News of the breach rattled investors, with Qantas shares dropping 2.4% by mid-afternoon—contrasting with an overall market rise of 0.8%.

A Blow to Rebuilding Trust

The timing of the breach is especially damaging as Qantas works to repair its public image following a series of controversies during and after the COVID-19 pandemic.

A Troubled Recent History

Qantas faced criticism for illegally dismissing thousands of ground staff during the pandemic while receiving government aid.

The airline also admitted to selling tickets for flights that had already been cancelled, further eroding public trust.

Political Backlash

The airline came under fire for allegedly lobbying the Australian government to block Qatar Airways from expanding flights—an accusation Qantas denies.

The move was later criticised for harming competition and keeping airfares high.

CEO Vanessa Hudson Responds

Since taking the reins in 2023, CEO Vanessa Hudson has worked to improve Qantas’ standing. Reuters reports that in response to the breach, Hudson said:

“We recognise the uncertainty this will cause. Our customers trust us with their personal information and we take that responsibility seriously.”

No Impact on Frequent Flyer Accounts

Despite the scale of the breach, Qantas confirmed that frequent flyer accounts and login credentials remain secure.

The focus remains on identifying the full scope of the compromised data and preventing further unauthorised access.

A Wake-Up Call for Cyber Resilience

This incident echoes past breaches at major Australian firms like Optus and Medibank, which led to stronger cyber compliance laws.