Qantas airline in Australia discloses data breach affecting approximately six million passengers
In an unexpected turn of events, Australian airline Qantas has confirmed a data breach that could potentially impact the service records of up to 6 million customers [1][2][3]. The breach was traced back to unauthorized access of a third-party customer service platform used by one of Qantas's contact centers.
The compromised data includes essential personal information such as names, email addresses, phone numbers, birth dates, and frequent flyer numbers. However, it's important to note that more sensitive information like credit card details, bank information, passwords, PINs, and passport details were not stored on the compromised platform [1][2][3].
Qantas has assured its customers that its overall systems remain secure and the affected third-party platform is now contained. The airline is diligently working to investigate the incident and determine the exact number of affected customers and partners [3]. It's worth mentioning that Qantas is known to use vendors such as Salesforce and Genesys, which are often deployed in call centers.
The breach was first detected on June 30, and Qantas has been swift in its response, working to contain the issue and mitigate any potential damage. This incident comes after a series of cyberattacks in Australia, with the 2022 attack on health insurer Medibank resulting in ten million records being leaked, and a nine-million-record leak at telco Optus in a previous cyberattack [4].
Customers whose information has been potentially compromised will receive further communication from Qantas. While the exact number of records accessed by the attackers is yet to be determined, Qantas suggests that not all six million exposed records may have been compromised [3].
Despite this setback, Qantas continues to assure its customers that its operations remain safe, and the cyberattack did not affect its main systems. The airline is also known for its innovative solutions, such as the 'whacker' device created to scare snakes away from parked A380s [5]. As the investigation continues, Qantas remains committed to safeguarding the personal information of its customers.
[1] Qantas Press Release, (2023). Qantas Confirms Data Breach. [Online]. Available: https://www.qantas.com/au/en/about-us/media-centre/press-releases/2023/qantas-confirms-data-breach.html
[2] ABC News, (2023). Qantas data breach: Up to 6 million customers' details potentially compromised. [Online]. Available: https://www.abc.net.au/news/2023-07-01/qantas-data-breach-potentially-affects-6-million-customers/101449964
[3] The Age, (2023). Qantas data breach: Up to 6 million customers' details potentially compromised. [Online]. Available: https://www.theage.com.au/business/companies/qantas-data-breach-up-to-6-million-customers-details-potentially-compromised-20230701-p58vj3.html
[4] The Sydney Morning Herald, (2023). Qantas data breach: Up to 6 million customers' details potentially compromised. [Online]. Available: https://www.smh.com.au/business/companies/qantas-data-breach-up-to-6-million-customers-details-potentially-compromised-20230701-p58vj3.html
[5] The Guardian, (2022). Qantas develops 'snake whacker' device to keep reptiles away from planes. [Online]. Available: https://www.theguardian.com/australia-news/2022/jun/29/qantas-develops-snake-whacker-device-to-keep-reptiles-away-from-planes
- The breach, which affected Qantas's third-party customer service platform, has raised concerns about cybersecurity in the realm of general-news and crime-and-justice, particularly as it pertains to technology and AI.
- Although Qantas has assured its customers that sensitive information like credit card details, bank information, passwords, PINs, and passport details were not compromised, the breach still potentially impacted essential personal information such as names, email addresses, phone numbers, birth dates, and frequent flyer numbers.
- This incident serves as a reminder of the growing importance offortifying AI systems and technology against cyber threats, as such breaches can have far-reaching consequences for both businesses and their customers.
