Qantas Airways Data Breach

Qantas Airways announced on Sunday, October 12, that it is one of the companies whose customer data was published by cybercriminals following a July database breach, according to Reuters. The airline had previously confirmed that over one million customers had sensitive details such as phone numbers, birth dates, or home addresses accessed in one of Australia’s largest cyber incidents in recent years. An additional four million customers had only their names and email addresses stolen during the hack.

The July breach is considered Australia’s most high-profile cyberattack since attacks on telecommunications firm Optus and health insurer Medibank in 2022, which led to mandatory cyber resilience laws.

What Qantas said about data breach

In a statement, Qantas said that it was "one of a number of companies globally that has had data released by cyber criminals following the airline’s cyber incident in early July, where customer data was stolen via a third-party platform." The airline added that it is working with specialist cybersecurity experts to determine which data was included in the release. Qantas also has an ongoing injunction to prevent the stolen information from being accessed, shared, or published by anyone, including third parties.

According to Guardian Australia, the hacker group Scattered Lapsus$ Hunters is behind the Qantas data release, which came after a ransom deadline set by the group was missed. Qantas declined to comment on the report.

Article Information

• Published On: Oct 13, 2025, at 09:27 AM IST

Join the Community

Join the community of 2M+ industry professionals. Subscribe to the Newsletter to get the latest insights and analysis in your inbox.

Stay Updated on the Go

All about ETCISO industry right on your smartphone. Download the app to stay updated on the latest news and trends in the industry.