Australian airline Qantas says millions of customers' data leaked online / Photo: DAVID GRAY - AFP/File
-
Day of reckoning arrives for social media after US court loss
-
World Cup concerns are exaggerated, says FIFA vice-president
-
NBA team owners approve exploring expansion to Seattle and Las Vegas
-
UK teenagers to trial social media bans, digital curfews
-
World champions England still 'unfinished' ahead of Six Nations, says Mitchell
-
Rybakina outlasts Pegula to reach Miami Open semis
-
Barca build huge lead on Real Madrid in Women's Champions League quarters
-
Alleged Rihanna mansion shooter pleads not guilty
-
US says Iran talks continue, will 'unleash hell' if no deal
-
UN designates African slave trade as 'gravest crime against humanity'
-
Trump's Beijing trip rescheduled for May, after Iran delay
-
No more excuses: World Cup pressure is on for host USA
-
US EPA issues waiver for E15 fuel to address oil supply issues
-
Grieving families hail court victory against Instagram, YouTube
-
Internet providers not liable for music piracy by users: top US court
-
Gaza civil defence says Israeli strike kills one, tents on fire
-
UK govt denies cover-up after PM ex-aide's phone stolen
-
California jury finds Meta, YouTube liable in social media addiction trial
-
Oil prices slip, stocks rally on Mideast peace hopes
-
South Africa police clash with anti-immigrant protesters
-
Gattuso says Italy's World Cup play-off 'biggest match' of career
-
Sakamoto leads skating swansong with 'Time to Say Goodbye' at worlds
-
Spanish PM says Middle East war 'far worse' than Iraq in 2003
-
First Robot: Melania Trump brings droid to White House event
-
Oldest dog DNA suggests 16,000 years of human companionship
-
Iran media casts doubt on US peace plan
-
Rare mountain gorilla twins born in DR Congo: park authorities
-
Ex-midwife enthroned as first female Archbishop of Canterbury
-
AC Schnitzer: When Iconic Tuners Fall Silent
-
Senegal lodge appeal to Court of Arbitration for Sport over AFCON final decision
-
South Africa seal T20 series win in New Zealand
-
Study links major polluters to big climate damages bill
-
Ex-Google chief Matt Brittin made new BBC director-general
-
Iran likely behind attacks sowing fear among Europe's Jews: experts
-
'Relieved' McGrath claims career first crystal globe in slalom
-
US ski star Shiffrin wins overall World Cup title for sixth time
-
Trump names tech titans to science advisory council
-
Mideast war sparks long queues at Kinshasa petrol stations
-
US TV star details 'agony' over mother's disappearance
-
Tehran receives US plan to end Mideast war, as Iran fires at US carrier
-
Aviation, tourism, agriculture... the economic sectors hit by the war
-
Iran fires at US carrier as backchannel diplomacy aims to end war
-
Salah's long goodbye brings curtain down on golden era for Liverpool
-
Monaco: city of vice and a few virtues
-
AI making cyber attacks costlier and more effective: Munich Re
-
Defying Israeli bombs, Lebanese hold out in southern city of Tyre
-
War-linked power crunch pushes Sri Lanka to four-day week
-
Hungary says will phase out gas deliveries to Ukraine
-
Oil prices tumble, stocks rally on Mideast peace hopes
-
Maybach: Between Glory and a Turning Point
Australian airline Qantas says millions of customers' data leaked online
Australian airline Qantas said Sunday that data from 5.7 million customers stolen in a major cyberattack this year had been shared online, part of a leak reportedly involving dozens of firms.
Qantas said in July that hackers had targeted one of its customer contact centres, breaching a computer system used by a third party.
They secured access to sensitive information such as customer names, email addresses, phone numbers and birthdays, the blue-chip Australian company said.
Credit card details and passport numbers were not kept in the system, Qantas stressed at the time.
AFP understands the third-party involved is software firm Salesforce, which said last week that it was "aware of recent extortion attempts by threat actors".
The hackers have also obtained stolen data from dozens of other companies including Disney, Google, IKEA, Toyota, McDonalds, and fellow airlines Air France and KLM.
"Qantas is one of a number of companies globally that has had data released by cyber criminals following the airline's cyber incident in early July, where customer data was stolen via a third party platform," the company said in a statement.
"With the help of specialist cyber security experts, we are investigating what data was part of the release," it added.
It also said it had obtained a legal injunction with the Supreme Court of New South Wales, where the firm is headquartered, "to prevent the stolen data being accessed, viewed, released, used, transmitted or published by anyone, including third parties".
Cybersecurity analysts have linked the hack to individuals linked to an alliance of cybercriminals called Scattered Lapsus$ Hunters.
Research group Unit 42 said in a note the group had "asserted responsibility for laying siege to customer Salesforce tenants as part of a coordinated effort to steal data and hold it for ransom".
The hackers had reportedly set an October 10 deadline for ransom payment.
Threat intelligence platform FalconFeeds said on X the customer data had been posted on the dark web over the weekend.
Vietnam Airlines, clothing giant Gap and Japanese multinational Fujifilm also had data leaked, it said.
The hackers reportedly stole the sensitive data using a social engineering technique, referring to a tactic of manipulating victims by pretending to be a company representative or other trusted person.
V.Fontes--PC
