Qantas Data Breach – 6 Million Records Exposed

On June 30, 2025, Qantas detected unusual activity on a third-party customer service platform used by its call center, triggering alarm bells and an internal investigation

What Was Compromised?
Approximately 6 million customer records were exposed, including:

• Names
• Email addresses
• Phone numbers
• Dates of birth
• Frequent flyer numbers

Importantly, credit cards, passports, login credentials, and PINs are confirmed safe

Suspected Culprit: Scattered Spider
Authorities and security firms suspect the Scattered Spider hacking group, known for highly targeted social engineering attacks on airlines and third-party platforms. The Australian FBI warned of such a trend earlier this year.

Impact & Risks
While flight operations & safety were unaffected, leaked personal data increases the risk of phishing, vishing, and identity theft. Australia’s privacy watchdog noted a 46% rise in vishing scams following this breach.

Qantas Response:

The airline acted swiftly to:

• Add targeted monitoring and security overhauls
• Contain the affected third-party system
• Notify relevant agencies (OSP, AFP)
• Alert impacted customers directly

CEO Vanessa Hudson expressed regret and promised stronger vendor oversight and cybersecurity training.

Key Takeaways

• Corporate reliance on third-party systems remains a major risk.
• Social engineering through help desks is increasingly potent.
• Proactive vendor management and rigorous identity verification are essential.

At TAC Security, we emphasize real-time monitoring and employee training to close these gaps. Our ESOF platform empowers businesses to detect anomalous behavior and secure vendor touchpoints effectively.