Qantas Airways informed their clients that their private information has been published on the dark web by hackers. The attackers accessed the computer system of the airline last July and stole data belonging to millions of individuals. The personal information stolen includes phone numbers, birthdays, and addresses. Yet another four million clients also had their names and email addresses stolen.
The airline discovered the break-in in July, but the hackers are just now publishing the information on the dark web. Qantas reports it is consulting with people who know computer security to determine precisely what information was leaked. The company has taken the hackers to court to prevent anyone from viewing or distributing the stolen data, but the hackers published it anyway.
One of the Largest Security Issues in Australia Recently
This Qantas hack is being termed one of the worst hacks to have occurred in Australia in recent years. Only larger hacks were executed in 2022 when Optus, a phone company, and Medibank, a health insurance company, were hacked. Those two hacks were so severe that the government established new regulations that compelled businesses to do more to secure customer data.
The group identifying itself as Scattered Lapsus$ Hunters is being held responsible for publishing the Qantas data. The hackers demanded money from Qantas in exchange for not publishing the data, but when Qantas did not comply, they published everything on the Internet. Qantas refused to comment on whether or not the hackers attempted to extort money from them.
Airlines Going Out of Their Way to Protect Customer Information
The hacking occurred through another company that Qantas employs to hold customer data. This is to say, the hackers did not access Qantas computers but exploited a weak link in yet another business entity that Qantas partners with. Numerous businesses now hold their data with third-party providers, and sometimes this can result in security breaches if those providers lack adequate protection.
Qantas claims that it is doing all it can to safeguard victims whose details were hacked. The airline is informing the affected individuals of what occurred and what they can do in order to be safe. Customers are being advised to be careful of random emails or phone calls from individuals claiming to be representatives of the airline or other entities. Experts in security advise individuals to update their passwords and exercise caution when sharing personal details.
News at a Glance
- Qantas customer information hacked in July has now been uploaded online by cyber crooks
- More than 1 million customers had phone numbers, birthdays, and addresses stolen
- A further 4 million individuals had their names and email addresses hacked
- Information was obtained by hackers via a third-party business that Qantas employs
- A group known as Scattered Lapsus$ Hunters is said to be responsible for the attack
- This is Australia’s largest data heist in recent times
- Qantas has a court order to prevent individuals from posting stolen data
FAQs
- How many Qantas customers saw their data compromised?
More than 5 million customers in total, with 1 million having sensitive information stolen.
- When was the Qantas data breach?Â
The hackers accessed the system in July 2025.
- What did hackers steal from Qantas?
Phone numbers, dates of birth, home addresses, names, and email addresses.
- Who is behind the Qantas cyber attack?
A hacker group called Scattered Lapsus$ Hunters.
- Is this Australia’s largest cyber attack?
One of the largest, akin to Optus and Medibank attacks in 2022.
Stay updated with the latest news, innovations, and economic insights at Inspirepreneur Magazine.
