Qantas Airways has begun reaching out to customers after confirming that a significant cyberattack exposed the personal information of millions, including home addresses for some. The breach is one of the largest in Australian aviation history.
Details of the Breach
The cyberattack targeted a third-party customer service platform used by an offshore Qantas call centre. Of the 5.7 million unique customer records impacted, approximately 1.3 million included home or business addresses. Other exposed information includes names, email addresses, phone numbers, dates of birth, frequent flyer numbers, and even meal preferences for some travelers.
Qantas is directly contacting affected customers to inform them of the specific data fields compromised and to offer guidance on protective measures.
How the Attack Happened
The breach reportedly occurred after cybercriminals tricked a call centre worker in Manila into granting access to the third-party system. This form of social engineering bypassed technical safeguards by exploiting human error. The group suspected to be behind the attack, known as Scattered Spider, has previously targeted the airline sector using similar tactics.
Qantas’ Response
Upon detecting unusual activity, Qantas moved quickly to contain the breach and notified relevant authorities, including the Australian Cyber Security Centre and the Australian Federal Police. The airline has set up support services for affected customers and is monitoring for any evidence of data being released or misused.
Qantas says they have implemented additional cybersecurity protections and is reviewing its data retention and protection policies.
What Was Not Compromised
Qantas has emphasized that no financial information, credit card details, or passport numbers were stored in the affected system. Frequent flyer account passwords, PINs, and login credentials also remain secure.
Update – July 10, 2025
Qantas says nearly six million passengers were impacted by a recent data breach.
