Skip to main content

Qantas data breach sees up to 6M customer records at risk

Avatar for Ben Lovejoy  | Jul 2 2025 - 5:09 am PT
2 Comments
Qantas data breach sees up to 6M customer records at risk | Qantas A380 shown

A Qantas data breach resulting from a cybersecurity attack has put up to 6M customer records at risk of exposure, with names, email addresses, phone numbers, and dates of birth confirmed to be included. The hack was of a contact center database operated by one of the airline’s partners …

Qantas says it is too early to determine how many customers have been affected, but says it expects it to be a “significant” proportion of the 6M total.

On Monday, we detected unusual activity on a third party platform used by a Qantas airline contact centre.  We then took immediate steps and contained the system. We can confirm all Qantas systems remain secure.

There are 6 million customers that have service records in this platform. We are continuing to investigate the proportion of the data that has been stolen, though we expect it will be significant. An initial review has confirmed the data includes some customers’ names, email addresses, phone numbers, birth dates and frequent flyer numbers.

Importantly, credit card details, personal financial information and passport details are not held in this system. No frequent flyer accounts were compromised nor have passwords, PIN numbers or log in details been accessed.

The notification confirms that the breach occurred as a result of a hack.

The incident occurred when a cyber criminal targeted a call centre […] Qantas has notified the Australian Cyber Security Centre and the Office of the Australian Information Commissioner. Given the criminal nature of this incident, the Australian Federal Police has also been notified.

BleepingComputer reports that a hacking group known as Scattered Spider may be behind the attack.

This attack comes as cybersecurity firms warn that hackers known as “Scattered Spider” have begun targeting the aviation and transportation industries. While it is unclear if this group is behind the Qantas attack, BleepingComputer has learned the incident shares similarities with other recent attacks by the threat actors.

The airline is promising to contact customers today, and says that those affected will be offered advice on avoiding identity theft. The statement stops short of offering a free subscription to a protections service.

Customers with questions can call the dedicated support line on +61 2 8028 0534.

Photo by Troy Mortier on Unsplash

Add 9to5Mac as a preferred source on Google Add 9to5Mac as a preferred source on Google

FTC: We use income earning auto affiliate links. More.

You’re reading 9to5Mac — experts who break news about Apple and its surrounding ecosystem, day after day. Be sure to check out our homepage for all the latest news, and follow 9to5Mac on Twitter, Facebook, and LinkedIn to stay in the loop. Don’t know where to start? Check out our exclusive stories, reviews, how-tos, and subscribe to our YouTube channel

Check out 9to5Mac on YouTube for more Apple news:

Comments

Guides

Privacy

Privacy

Privacy is a growing concern in today's world. F…
Security

Security

Author

Avatar for Ben Lovejoy Ben Lovejoy

Ben Lovejoy is a British technology writer and EU Editor for 9to5Mac. He’s known for his op-eds and diary pieces, exploring his experience of Apple products over time, for a more rounded review. He also writes fiction, with two technothriller novels, a couple of SF shorts and a rom-com!

Ben Lovejoy's favorite gear

Dell 49-inch curved monitor

Dell 49-inch curved monitor