Login
iscover
Jake NelsonShare this article on:
Powered by
MOMENTUM
MEDIA
Powered by MOMENTUMMEDIA
Up to 6 million customers could be affected by a call centre hack, including names, email addresses, phone numbers, birth dates, and frequent flyer numbers.
Qantas has confirmed the theft of customer data in a cyber attack.
The incident on Monday (30 June) resulted from a cyber criminal targeting a Qantas call centre, which gave them access to a third-party platform used for customer service. According to Qantas, the breach has been contained and there has been “no impact” on the airline’s operations or safety.
“On Monday, we detected unusual activity on a third-party platform used by a Qantas airline contact centre. We then took immediate steps and contained the system. We can confirm all Qantas systems remain secure,” the Flying Kangaroo said in a statement.
“There are 6 million customers that have service records in this platform. We are continuing to investigate the proportion of the data that has been stolen, though we expect it will be significant.
“An initial review has confirmed the data includes some customers’ names, email addresses, phone numbers, birth dates, and frequent flyer numbers.
“Importantly, credit card details, personal financial information and passport details are not held in this system. No frequent flyer accounts were compromised, nor have passwords, PIN numbers or login details been accessed.”
Qantas said it is investigating the incident, and that it has put “additional security measures in place to further restrict access and strengthen system monitoring and detection”.
“Qantas has notified the Australian Cyber Security Centre and the Office of the Australian Information Commissioner. Given the criminal nature of this incident, the Australian Federal Police has also been notified. We will continue to support these agencies as the investigation continues,” the airline said.
“Qantas has established a dedicated customer support line as well as a dedicated page on qantas.com to provide the latest information to customers. We will continue to share updates, including via our website and social channels.”
Qantas CEO Vanessa Hudson has apologised to customers for the breach, with “specialist identity protection advice and resources” now available through a dedicated support line on 1800 971 541 or +61 2 8028 0534.
“We recognise the uncertainty this will cause. Our customers trust us with their personal information, and we take that responsibility seriously,” she said.
“We are contacting our customers today, and our focus is on providing them with the necessary support.
“We are working closely with the federal government’s National Cyber Security Coordinator, the Australian Cyber Security Centre, and independent specialised cyber security experts.”
While the identity of the cyber criminals responsible has not been confirmed, the North American aviation sector has recently been hit by several attacks, including against Hawaiian Airlines and Canadian carrier WestJet.
The FBI last week issued a warning about the criminals believed to have carried out the attacks, known collectively as Scattered Spider.
“These actors rely on social engineering techniques, often impersonating employees or contractors to deceive IT help desks into granting access,” the agency said on social media.
“These techniques frequently involve methods to bypass multifactor authentication (MFA), such as convincing help desk services to add unauthorized MFA devices to compromised accounts.
“They target large corporations and their third-party IT providers, which means anyone in the airline ecosystem, including trusted vendors and contractors, could be at risk. Once inside, Scattered Spider actors steal sensitive data for extortion and often deploy ransomware.”
This article was originally published on Australian Aviation, Cyber Daily’s sister brand.
Be the first to hear the latest developments in the cyber industry.
