Qantas Data Breach Update
Recent revelations confirm that a larger volume of personal data has been compromised in the recent cyberattack on Qantas than initially disclosed. Following the incident involving a call centre, the airline began contacting impacted customers—approximately 5.7 million—on Wednesday to specify which aspects of their information had been accessed.
However, many customers have since received additional notifications from Qantas, indicating that further data breaches have come to light. The airline’s ongoing investigation revealed that in addition to previously reported data, several customers’ phone numbers were also stolen. While the full extent of those receiving this follow-up email remains unclear, Qantas previously reported that around 900,000 individuals and businesses had their phone numbers compromised.
In their communication, Qantas stated, "We are writing to provide you with an update following our previous email about the cyber incident on Monday, 30 June 2025. Our ongoing investigation has identified that your phone number details were accessed in addition to the data types we previously advised." Customers are urged to remain vigilant for unexpected communications, not just via email and text, but also over the phone.
Qantas confirmed that other compromised personal information includes email addresses, residential addresses, dates of birth, genders, frequent flyer numbers, points balances, tiers, and status credits. Notably, the airline has assured customers that login credentials, credit card details, and passport numbers have not been affected.
As Qantas continues to address the fallout from this serious data breach, the evolving situation highlights the importance of safeguarding personal information and remaining alert to potential fraudulent activities.