Australia’s Qantas Airways confirmed the prevalence of a cyber incident at one in every of its contact centres on Wednesday (July 1, 2025), impacting customer data.
The firm stated the breach occurred when a cybercriminal focused a name centre and accessed a third-party customer servicing platform.
Qantas stated the platform accommodates round six million prospects with service data, however didn’t point out whether or not the accounts had been additionally primarily based outdoors Australia.
The preliminary overview confirmed the data consists of some prospects’ names, e mail addresses, cellphone numbers, start dates and frequent flyer numbers, nonetheless, monetary info similar to bank card particulars, and individually, passport particulars will not be held within the affected system.
“We are continuing to investigate the proportion of the data that has been stolen, though we expect it will be significant,” Qantas stated in an announcement.
“No frequent flyer accounts were compromised nor have passwords, PIN numbers or log in details been accessed,” it added.
The airline stated that the system is presently contained, with no impact on its operations or the security of the airline.
The firm has additionally notified the Australian Cyber Security Centre and the Office of the Australian Information Commissioner, together with alerting the Australian Federal Police, “given the criminal nature of this incident.”
The Australian Federation of Pilots, Australian Cyber Security Centre and Office of the Australian Information Commissioner didn’t instantly reply to Reuters’ request for feedback on the matter.
