- Qantas suffered a cyber attack in early June 2025
- An exhaustive investigation has now placed the number of people affected by 5.7 million
- Passwords and payment data are safe, but Crooks took names, addresses and other PII
Qantas has confirmed that the confidential information about 5.7 million clients was exfiltrated in the recent cyber attack.
The largest airline in Australia said it recently saw an intrusion after a threat actor went to a call center and agreed to a third -party customer service platform. Initially stating that six million people were affected, Qantas has now presented more precise figures.
In a press release published on the company's website, he said that the attackers took four million customer names, email addresses and details of the frequent qantas steering wheel. For the remaining 1.7 million, they also stole postal addresses, birth dates, telephone numbers, gender and food preferences.
Scattered spider
The details of the credit card, the personal financial information, the details of the passport, as well as the passwords, the pins and other login details, were not compromised, since the data were not even in the hands of the company, Qantas confirmed.
He said he had begun to notify the affected customers about the violation, and urged them to remain attentive and independently verify the identity of the people who call not requested.
The company did not say who the threat actors were, or if they tried to implement any ransomware.
However, the incident shares many similarities with other attacks recently carried out by the group known as Spatrtered Spider, a piracy group with financial motivation known for attacking large US companies that use social engineering techniques and SIM exchange techniques.
This group has not yet assumed the responsibility of this attack, but in recent weeks, multiple reports have emerged that airlines are beaten by cyber attacks, with Hawaiian Airlines confirmed that it suffers an attack and both Westjet and Globalx suffer the same destination recently. The FBI even published a notice, warning US companies about scattered spider activities.
At the time of publication, there was no evidence that stolen data was fought to nature. Even so, Qantas said he continues to “actively monitor” the web, with the help of specialized cybersecurity experts.