Australia's Qantas Airways has confirmed a cyber incident affecting one of its third-party contact centre platforms, which led to the exposure of personal details belonging to a large number of customers. The data compromised includes names, dates of birth, email addresses, and Qantas Frequent Flyer numbers.
The breach occurred at a service provider not owned by Qantas, prompting immediate containment efforts once suspicious activity was detected. The airline stressed that critical systems, including flight operations and safety, were not impacted. Importantly, no passwords, financial details, or identity documents were accessed in the breach.
In response, Qantas engaged independent cybersecurity experts and notified relevant authorities including the Australian Cyber Security Centre, the Office of the Australian Information Commissioner, and the Australian Federal Police. Investigations are ongoing, and additional monitoring measures have been implemented across its digital infrastructure.
This incident has reignited industry-wide discussions on the vulnerabilities posed by third-party service providers, particularly in sectors that handle large volumes of sensitive customer data like aviation.
Read more: link
Get in touch
