Qantas Cyber Attack Exposes Data of 5.7 Million Customers

Qantas data breach customer data protection cybersecurity data exposure identity theft prevention
Deepak Gupta
Deepak Gupta

Co-founder/CEO

 
October 13, 2025 3 min read

TL;DR

This article covers the recent Qantas data breach affecting 5.7 million customers due to a hack involving Salesforce. It discusses the compromised data, customer notifications, and the airline's response measures, including enhanced security protocols and customer support initiatives.

Data Breach Details

Qantas is facing significant scrutiny following the exposure of personal information of 5.7 million customers on the dark web. The breach is linked to a hack involving Salesforce, where approximately 1 billion records were stolen from various companies, including Qantas, Disney, and IKEA. The hacker group Scattered Lapsus$ Hunters executed the attack by posing as legitimate employees and contacting IT desks of the affected companies.

Image

Image courtesy of Source

Home Affairs and Cyber Security Minister Tony Burke emphasized that Qantas would be held accountable for the breach, even though the data was released outside of Australia. Burke stated, “You can outsource parts of your business, but you don't outsource the law.” The compromised data includes customers' dates of birth, emails, and frequent flyer numbers.

A Qantas Airbus A330-202 plane

Image courtesy of Source

Customer Notification and Impact

Qantas has confirmed it proactively notified customers about the types of personal data impacted. The airline has reassured customers that credit card details and passport numbers were not compromised during the breach. Qantas is working with the Australian Cyber Security Centre and the Australian Federal Police to address the situation and investigate further.

CANBERRA, AUSTRALIA - OCTOBER 09: Minister for the Arts, Minister for Home Affairs, Minister for Cyber Security

Image courtesy of Source

Qantas has established a dedicated customer support line to assist affected individuals. Customers are advised to remain vigilant against potential scams, especially those impersonating Qantas representatives. The airline also recommends using two-step authentication for personal accounts and staying informed about the latest cybersecurity threats.

QANTAS A321XLR FLEET TAKES TO THE SKIES

Image courtesy of Source

Security Measures and Recommendations

In response to the breach, Qantas has implemented additional security measures, including enhanced monitoring and detection systems. The airline is also providing customers with access to specialist identity protection services. Qantas has previously issued a general warning to all Australians to be cautious of unexpected calls and messages.

Vanessa Hudson stands in front of Qantas plane

Image courtesy of ABC News

Customers are advised to take specific precautions, such as independently verifying the identity of callers claiming to be from Qantas and avoiding sharing personal information. Qantas encourages customers to report any suspicious activity to Scamwatch.

Qantas Departure sign outside airport terminal

Image courtesy of ABC News

The airline is also conducting a forensic analysis of the compromised data to understand the full scope of the breach. Qantas is sending emails to affected customers with detailed information about the exposed data and the steps they should take.

A thumb gripping a red Qantas Frequent Flyer card

Image courtesy of ABC News

Ongoing Investigation and Customer Support

The Australian Federal Police are leading the investigation into the breach, and Qantas is cooperating fully with authorities. Qantas has also engaged independent cybersecurity experts to assess the situation. Customers can contact Qantas through their dedicated support line for assistance and to inquire about their personal data.

Qantas logo on Sydney Airport terminal glass

Image courtesy of ABC News

In summary, Qantas is actively managing the fallout from the data breach, focusing on customer safety and enhancing their security measures to prevent future incidents.

Deepak Gupta
Deepak Gupta

Co-founder/CEO

 

Cybersecurity veteran and serial entrepreneur who built GrackerAI to solve the $500K content marketing waste plaguing security companies. Leads the mission to help cybersecurity brands dominate search results through AI-powered portal ecosystems.

Related Articles

AI in retail

AI-Driven Omnichannel Retail Trends: Enhancing Customer Experience

Discover how AI is revolutionizing omnichannel retail in 2025. Explore personalization, consumer behavior shifts, and future market projections. Read more!

By Pratham Panchariya October 31, 2025 9 min read
Read full article
AI video generator

Top 15 AI Video Generators for 2025: Best Picks and Reviews

Discover the best AI video generators to streamline production, enhance quality, and automate editing. Explore top tools like Google Veo 3, Runway, Sora, Descript, HeyGen, and Synthesia. Start creating compelling videos today!

By Ankit Agarwal October 30, 2025 3 min read
Read full article
ChatGPT Go

OpenAI Offers 1-Year Free ChatGPT Go Access in India

OpenAI is giving free ChatGPT Go access in India for a year! Discover enhanced AI tools, GPT-5 access, and more. Learn how to benefit now!

By Nicole Wang October 29, 2025 2 min read
Read full article
Digital Brand Storytelling Market

Booming Digital Brand Storytelling Market: Size, Growth & Trends

Explore the booming Digital Brand Storytelling market, projected to reach $260B by 2033. Discover key players, trends, and growth drivers. Read more!

By Ankit Agarwal October 28, 2025 6 min read
Read full article