Qantas Airways Confirms Customer Data Breach: 5.7 Million Records Exposed Online After July Cyber Attack

Qantas Airways Ltd. has confirmed that customer information stolen during a July cyber incident has been published online. The airline is currently collaborating with security specialists and Australian authorities to assess the full scope of the data exposure.

According to the carrier, the security breach compromised 5.7 million records through a third-party platform. The majority of the exposed information consists of names, email addresses, and frequent-flyer program details. Qantas further disclosed that a smaller subset of the compromised data contains addresses, birth dates, phone numbers, gender information, and meal preferences.

In a Sunday statement, the airline emphasized that no credit card information, passport details, or login credentials were accessed during the breach. Additionally, Qantas confirmed that frequent-flyer accounts remain unaffected by the incident.

The company has secured an injunction from the New South Wales Supreme Court prohibiting the access or distribution of the stolen data. Since the breach occurred, Qantas has enhanced its system monitoring capabilities and implemented additional staff training measures to strengthen security protocols.

Qantas continues its cooperation with the Australian Cyber Security Centre and Federal Police regarding the incident. The airline has extended identity protection support services to customers affected by the data breach.