Qantas, Australia's largest flight provider, has confirmed a major cyberattack whereby a threat actor targeted a call center and accessed a third-party customer servicing platform.
The attack may have been carried out by the group known as Scattered Spider, with six million Qantas customers potentially affected.
Stolen data includes customer names, email addresses, phone numbers, birth dates, and frequent flyer numbers, but does not include credit card details or passport information.
Qantas has contained the breach, informed authorities and affected individuals, and confirmed that critical information like passwords and financial details remain uncompromised.