Australian airline Qantas says millions of customers' data leaked online / Photo: DAVID GRAY - AFP/File
-
Globalization isn't dead, just 'transformed,' says IMF chief economist
-
OpenAI restricts limited release of new model to US only
-
Israel and Lebanon hail Washington deal, rejected by Hezbollah
-
Scheffler fires 60 to grab early PGA Travelers lead
-
Usyk -- pugilist who kept Ukrainian spirits high in darkest days
-
Trump blasts 'godless' Democrats in incendiary speech to evangelicals
-
Orange wave: Dutch World Cup dream gathers pace
-
Venezuela earthquakes kill 920, tens of thousands missing
-
Swiss nuclear plant shut down due to heatwave
-
Hundred hero Duckett punishes New Zealand after Stokes sparks England revival
-
American businesswoman Michele Kang buys French club Lyon
-
South Korea coach bereft of answers with World Cup hopes on knife-edge
-
Lebanon, Israel, US sign trilateral framework agreement in Washington
-
Mistrial declared in deadly Los Angeles fire case
-
Antonelli scores 'double top' for Mercedes as Russell warns of McLaren threat
-
Verstappen wants to stay at Red Bull – in a fast car, says Mekies
-
Australia eye 'something special' after reaching World Cup last 32
-
Usyk says vacating heavyweight world title belts
-
Germany sees hottest temperature on record of 41.3C: weather service
-
AI abuse deterring good MPs: incoming IPU chief
-
More than 50,000 missing after Venezuela quakes, death toll soars
-
Japan say bring on Brazil at World Cup but wary of revenge mission
-
Caudullo challenges Montpellier to be 'watertight' against Dupont threat
-
Stocks recover from tech tremors as oil prices fall
-
Venezuela earthquakes toll soars to 589 amid desperate rescue effort
-
How heatwaves are dangerous to human health
-
Europe heatwave shattering temperature records: UN
-
UK hottest June day record broken for third day in a row: Met Office
-
Farm workers wilt in sweltering Italian shanty town
-
Tech jitters send stocks lower, oil prices fall
-
Keys to face Maria in Eastbourne final
-
Venezuela earthquakes toll doubles amid desperate rescue efforts
-
Caudullo challenges Montpellier to be 'watertight' against Dupont
-
Mercedes dominate opening practice at Austrian GP
-
Osaka sinks Wang to reach first grass court final
-
Wawrinka announces farewell fete with Federer and Murray
-
UN demands probes into US ICE custody deaths
-
Lukashenko will always be threat to Ukraine: Belarus opposition leader
-
Stokes strikes as New Zealand make England feel the heat
-
European heatwave's unlikely accomplice: an ocean 'cold blob'
-
Lyles enjoying freedom to focus on speed and stuff off the track
-
Japan's progress paying off at World Cup, says Troussier
-
How the British royal family is funded, and where the money goes
-
Dozens of international teams rushing to Venezuela: UN
-
Russia-annexed Crimea declares 'emergency' amid Ukraine strikes
-
Floods kill two in Taiwan as twin storms approach Japan
-
Stocks slide on renewed tech slump, oil prices fall
-
In the heat, Ivorians don't think twice about using aircon
-
EU hits France's Sanofi with flu vaccine antitrust probe
-
Belgium cancels Waterloo battle reenactment due to heat
Australian airline Qantas says millions of customers' data leaked online
Australian airline Qantas said Sunday that data from 5.7 million customers stolen in a major cyberattack this year had been shared online, part of a leak reportedly involving dozens of firms.
Qantas said in July that hackers had targeted one of its customer contact centres, breaching a computer system used by a third party.
They secured access to sensitive information such as customer names, email addresses, phone numbers and birthdays, the blue-chip Australian company said.
Credit card details and passport numbers were not kept in the system, Qantas stressed at the time.
AFP understands the third-party involved is software firm Salesforce, which said last week that it was "aware of recent extortion attempts by threat actors".
The hackers have also obtained stolen data from dozens of other companies including Disney, Google, IKEA, Toyota, McDonalds, and fellow airlines Air France and KLM.
"Qantas is one of a number of companies globally that has had data released by cyber criminals following the airline's cyber incident in early July, where customer data was stolen via a third party platform," the company said in a statement.
"With the help of specialist cyber security experts, we are investigating what data was part of the release," it added.
It also said it had obtained a legal injunction with the Supreme Court of New South Wales, where the firm is headquartered, "to prevent the stolen data being accessed, viewed, released, used, transmitted or published by anyone, including third parties".
Cybersecurity analysts have linked the hack to individuals linked to an alliance of cybercriminals called Scattered Lapsus$ Hunters.
Research group Unit 42 said in a note the group had "asserted responsibility for laying siege to customer Salesforce tenants as part of a coordinated effort to steal data and hold it for ransom".
The hackers had reportedly set an October 10 deadline for ransom payment.
Threat intelligence platform FalconFeeds said on X the customer data had been posted on the dark web over the weekend.
Vietnam Airlines, clothing giant Gap and Japanese multinational Fujifilm also had data leaked, it said.
The hackers reportedly stole the sensitive data using a social engineering technique, referring to a tactic of manipulating victims by pretending to be a company representative or other trusted person.
V.Fontes--PC
