Qantas confirms customer data breach amid Scattered Spider attacks

Qantas, Australia’s largest airline, disclosed a cyberattack after hackers accessed a third-party platform used by a call centre, stealing significant customer data. The breach, linked to ongoing Scattered Spider activity, was detected and contained on Monday. Qantas confirmed that while the system is now secure, a substantial amount of data was likely compromised during the incident.

“Qantas can confirm that a cyber incident has occurred in one of its contact centres impacting customer data. The system is now contained.” reads the statement published by the company. “We understand this will be concerning for customers. We are currently contacting customers to make them aware of the incident, apologise and provide details on the support available. The incident occurred when a cyber criminal targeted a call centre and gained access to a third party customer servicing platform.”

Australia’s largest airline detected unusual activity on a third-party platform used by its contact centre and quickly contained it. The company highlights that while core systems remain secure, data from up to 6 million customer service records may have been stolen, including names, emails, phone numbers, birth dates, and frequent flyer numbers. No financial data, passport details, passwords, or login credentials were compromised.

To read the complete article see: Security Affairs