Australian airline Qantas says millions of customers' data leaked online / Photo: DAVID GRAY - AFP/File
-
Kenya's economy faces climate change risks: World Bank
-
Three die on Atlantic cruise ship from suspected hantavirus: WHO
-
Two die in 'respiratory illness' outbreak on Atlantic cruise ship
-
More Nepalis drive electric, evading global fuel shocks
-
Latecomer Japan eyes slice of rising global defence spending
-
German fertiliser makers and farmers struggle with Iran war fallout
-
OPEC+ to make first post-UAE production decision
-
Massive crowds fill Rio's Copacabana beach for Shakira concert
-
US airlines step up as Spirit winds down
-
Aviation companies step up as Spirit winds down
-
'Bookless bookstore': audio-only book shop opens in New York
-
Venezuelan protesters call government wage hike a joke
-
S&P 500, Nasdaq end at fresh records on tech earnings strength
-
Pope names former undocumented migrant as US bishop of West Virginia
-
Trump says will raise US tariffs on EU cars to 25%
-
ExxonMobil CEO sees chance of higher oil prices as earnings dip
-
After Madonna and Lady Gaga, Shakira set for Rio beach mega-gig
-
King Charles gets warm welcome in Bermuda after whirlwind US visit
-
Coe hails IOC gender testing decision
-
Baguettes take centre stage on France's Labour Day
-
Iran offers new proposal amid stalled US peace talks
-
French hub monitors Hormuz tensions from afar
-
Oil steady after wild swing, stocks diverge in thin trading
-
Chinese swimmer Sun Yang reports cyberbullying to police
-
Iran activates air defences as Trump faces congressional deadline
-
India's cows offer biogas alternative to Mideast energy crunch
-
Crude edges up after wild swing, stocks track Wall St rally
-
Formerra Appoints Matt Borowiec as Chief Commercial Officer
-
New Princess Diana documentary promises her own words
-
Oil slumps after hitting peak, US indices reach new records
-
Venezuela leader hikes minimum wage package by 26%
-
Apple earnings beat forecasts on iPhone 17 demand
-
Bangladesh signs biggest-ever plane deal for 14 Boeings
-
Musk grilled on AI profits at OpenAI trial
-
Venezuela opens arms to world with Miami-Caracas flight
-
US Congress votes to end record government shutdown
-
First direct US-Venezuela flight in years arrives in Caracas
-
Just telling nations to quit fossil fuels 'not realistic': COP31 chief
-
Trump hails 'greatest king' Charles as state visit wraps up
-
Drivers help study road-trip mystery: what became of bug splats?
-
Oil strikes 4-year peak, stocks rise
-
Iran's supreme leader defies US blockade as oil prices soar
-
White House against Anthropic expanding Mythos model access: report
-
Oil crisis fuels calls to speed up clean energy transition
-
European rocket blasts off with Amazon internet satellites
-
Nigerian airlines avert shutdown as Mideast war hikes fuel prices
-
ArcelorMittal boosts sales but profits squeezed
-
German growth beats forecast but energy shock looms
-
Air France-KLM trims 2026 outlook over Middle East war impact
-
Oil surges 7% to top $126 on Trump blockade warning
Australian airline Qantas says millions of customers' data leaked online
Australian airline Qantas said Sunday that data from 5.7 million customers stolen in a major cyberattack this year had been shared online, part of a leak reportedly involving dozens of firms.
Qantas said in July that hackers had targeted one of its customer contact centres, breaching a computer system used by a third party.
They secured access to sensitive information such as customer names, email addresses, phone numbers and birthdays, the blue-chip Australian company said.
Credit card details and passport numbers were not kept in the system, Qantas stressed at the time.
AFP understands the third-party involved is software firm Salesforce, which said last week that it was "aware of recent extortion attempts by threat actors".
The hackers have also obtained stolen data from dozens of other companies including Disney, Google, IKEA, Toyota, McDonalds, and fellow airlines Air France and KLM.
"Qantas is one of a number of companies globally that has had data released by cyber criminals following the airline's cyber incident in early July, where customer data was stolen via a third party platform," the company said in a statement.
"With the help of specialist cyber security experts, we are investigating what data was part of the release," it added.
It also said it had obtained a legal injunction with the Supreme Court of New South Wales, where the firm is headquartered, "to prevent the stolen data being accessed, viewed, released, used, transmitted or published by anyone, including third parties".
Cybersecurity analysts have linked the hack to individuals linked to an alliance of cybercriminals called Scattered Lapsus$ Hunters.
Research group Unit 42 said in a note the group had "asserted responsibility for laying siege to customer Salesforce tenants as part of a coordinated effort to steal data and hold it for ransom".
The hackers had reportedly set an October 10 deadline for ransom payment.
Threat intelligence platform FalconFeeds said on X the customer data had been posted on the dark web over the weekend.
Vietnam Airlines, clothing giant Gap and Japanese multinational Fujifilm also had data leaked, it said.
The hackers reportedly stole the sensitive data using a social engineering technique, referring to a tactic of manipulating victims by pretending to be a company representative or other trusted person.
H.Meyer--CPN