Qantas has confirmed a significant cyberattack that may have compromised the data of up to six million customers. The incident, which took place on Monday, involved cybercriminals targeting a contact centre and gaining access to a third-party customer service platform.
Following the attack, Qantas released a statement assuring shareholders that while the incident impacted customer data, the system has been contained. The airline is currently reaching out to affected customers with apologies and information regarding available support.
The stolen information may include names, email addresses, phone numbers, birthdays, and frequent flyer numbers. However, Qantas clarified that sensitive data such as credit card details, personal financial information, and passwords were not stored in the affected system and remain secure.
Qantas Group CEO Vanessa Hudson expressed regret over the incident, acknowledging the anxiety it may cause customers. She emphasised the airline’s commitment to safeguarding personal information and highlighted their ongoing investigations into the extent of the compromised data. The airline is coordinating with the Federal Government’s National Cyber Security Coordinator and the Australian Cyber Security Centre, as well as engaging independent cyber security experts to bolster their response.
Customers have been reassured that their frequent flyer accounts remain unaffected, and Qantas is prioritising communication and support during this troubling time.