BBC Information, Sydney
ReutersQantas is contacting clients after a cyber assault focused their third-party customer support platform.
On 30 June, the Australian airline detected “uncommon exercise” on a platform utilized by its contact centre to retailer the information of six million individuals, together with names, e-mail addresses, cellphone numbers, beginning dates and frequent flyer numbers.
Upon detection of the breach, Qantas took “speedy steps and contained the system”, in accordance with an announcement.
The corporate remains to be investigating the total extent of the breach, however says it’s anticipating the proportion of knowledge stolen to be “important”.
It has assured the general public that passport particulars, bank card particulars and private monetary info weren’t held within the breached system, and no frequent flyer accounts, passwords or PIN numbers have been compromised.
Qantas has notified the Australian Federal Police of the breach, in addition to the Australian Cyber Safety Centre and the Workplace of the Australian Info Commissioner.
“We sincerely apologise to our clients and we recognise the uncertainty this may trigger,” stated Qantas Group CEO Vanessa Hudson.
She requested clients to name the devoted assist line if they’d considerations, and confirmed that there could be no affect to Qantas’ operations or the protection of the airline.
The cyber assault is the most recent in a string of Australian knowledge breaches this 12 months, with AustralianSuper and 9 Media struggling important leaks up to now few months.
In March 2025, the Workplace of the Australian Info Commissioner (OAIC) launched statistics revealing that 2024 was the worst 12 months for knowledge breaches in Australia since information started in 2018.
“The tendencies we’re observing recommend the specter of knowledge breaches, particularly by way of the efforts of malicious actors, is unlikely to decrease,” stated Australian Privateness Commissioner Carly Form in an announcement from the OAIC.
Ms Form urged companies and authorities businesses to step up safety measures and knowledge safety, and highlighted that each the personal and public sectors are susceptible to cyber assaults.
