Hacker contacts Qantas one week after airline’s massive data breach
Australia’s flag carrier says the cyber criminal who stole personal data from about six million customers has now reached out to the company. Qantas confirmed the contact on Tuesday, adding that it has referred the matter to the Australian Federal Police and enlisted external cyber-security specialists to monitor for any sign that the information is being traded or published.
What was taken
The attacker breached a third-party customer-service platform linked to an offshore call centre, accessing names, email addresses, phone numbers, dates of birth and frequent-flyer numbers. Payment information, passwords and passport details were not stored on the system. So far, investigators have found no evidence the compromised data has surfaced on dark-web marketplaces or extortion sites.
Police and regulator response
With the hacker now directly engaging Qantas, the incident is an active criminal investigation. The Australian Cyber Security Centre is providing technical support, and the Office of the Australian Information Commissioner has been notified under mandatory breach-reporting rules introduced after the high-profile Optus and Medibank hacks in 2022.
Reputational headwinds for the Flying Kangaroo
The breach arrives at a sensitive moment as Qantas works to rebuild public trust following pandemic-era controversies, including claims of selling tickets on cancelled flights and an unlawful staff-dismissal case. Industry analysts noted that the airline’s share price fell more than two per cent on the day the breach was disclosed, underperforming the broader ASX.
Next steps for customers
Qantas is emailing affected frequent-flyer members with guidance on spotting phishing attempts and has offered free credit monitoring where required. The airline says its core operational and booking systems were isolated from the breach and that flights continue to operate normally. It has not committed to compensating customers but promises further updates as forensic work progresses.
With federal investigators now involved and the attacker in contact, cyber-security experts warn that negotiations or ransom demands could follow. Containment and transparent communication will be critical as Qantas seeks to avoid another blow to its brand.
Photo Credit: DepositPhotos.com