- Qantas faced cyber attack in early June 2025
- An intensive investigation has now reduced the number of affected persons to 5.7 million.
- Password and payment data is safe, but miscreants took name, address and other PII
Qantas has confirmed sensitive information on 5.7 million customers, which took place in a recent cyber attack.
Australia’s largest airline said it recently saw an intrusion after a danger actor targets a call center, and a third-party customer reached the servicing platform. Initially, claiming that six million people were affected, Kentas are now coming forward with more accurate figures.
One in Press release Published on the company’s website, it was said that the attackers took four million customer names, email addresses and Qantas continuously flyer details. For the remaining 1.7 million, he also stole the postal address, date of birth, phone number, gender and food preferences.
Scattered spider
Credit card details, personal financial information, passport details, as well as passwords, pins and other login details, were not compromised, as the data was not also conducted by the company, Qantas confirmed.
It said that it had started informing the affected customers of Brech, and urged them to be cautious and verified the identity of independently unwanted callers.
The company did not reveal who the danger actors were, or if they tried to deploy any ransomware.
However, the incident shares several similarities along with other attacks carried out by a group known as a recently scattered spider, which is an economically motivated Hacking group known for targeting large American companies using social engineering and sim-swapping techniques.
The group has not yet claimed responsibility for the attack – but in recent weeks, many reports have killed airlines hit by cyber attack, Hawaiian Airlines has confirmed suffering from an attack and both Westjet and Globalx have recently suffered the same luck. The FBI also issued an advisor, in which American companies were warned of scattered spider activities.
In the press time, there was no evidence that the stolen data was released to the wild. Nevertheless, Qantas said that this expert continues “actively monitor” on the web with the help of cyber security experts.
