Australian airline Qantas says millions of customers' data leaked online / Photo: DAVID GRAY - AFP/File
-
Hearn wants Katie Taylor to top Croke Park bill, rules out Fury-Joshua in Dublin
-
Stocks edge higher as investors eye chances for end of Mideast war
-
Iran ups threats over naval blockade, but still talking to US
-
Critically endangered orangutan born at Madrid zoo
-
EU rejects Meta's pay-for-access remedy in WhatsApp AI chatbots probe
-
Pupil kills four wounds 20 in new Turkey school shooting
-
Left-wing radical 'confident' after late surge in Peru presidential poll
-
Starmer says 'won't yield' to Trump's Mideast war threats
-
Liverpool captain Van Dijk says PSG 'deserved' Champions League semi-final spot
-
England women's rugby star Kildunne reveals body issues struggle
-
Chinese suppliers, Mideast importers fret about war fallout on trade
-
Markets steadier on Mideast peace hopes, as war hits luxury goods
-
EU says age-check app 'ready' in push to protect children online
-
New Hungarian leader Magyar says pro-Orban president must resign
-
After three years of war, Sudan confronts devastation as donors gather in Berlin
-
Pope heads to Cameroon with message of peace for conflict zone
-
OpenAI announces restricted-access cybersecurity model
-
England's Stokes 'quite lucky' to be alive after facial injury
-
Keiko Fujimori: Peru's biggest political loser inches toward victory
-
Barcelona hope young talent learn from Champions League disappointment
-
The Middle East war: latest developments
-
French luxury firms Hermes, Kering knocked by disappointing sales
-
Ukraine veteran stages puppet shows to honour killed soldiers
-
Afghans comb riverbed in search of gold dust
-
Stocks rally, oil falls further as Trump fans fresh peace hopes
-
Double Olympic badminton champion Axelsen announces retirement
-
Peru candidate demands vote annulment as count tightens
-
Tom Cruise shares sneak peek of Inarritu comedy 'Digger' at CinemaCon
-
Rosalia caps journey from student to star with Barcelona concerts
-
AI expansion drives up profits at bullish tech giant ASML
-
Hamano strikes as Japan end US winning streak
-
Xi meets Russian FM as leaders flock to China over Middle East war
-
'Industrial' clickbait disinformation targets Australian politics
-
AI-driven chip shortage slowing efforts to get world online: GSMA
-
Ball hero and villain as Hornets sting Heat, Blazers eclipse Suns
-
Kanye West postpones France concert after minister's block call
-
Indonesia, France agree to boost defence industry ties
-
Super Rugby's Moana Pasifika to fold over financial problems
-
Ball hero and villain as Hornets sting Heat to lift NBA postseason curse
-
Capcom looks to extend 'golden age' with sci-fi action game 'Pragmata'
-
Stocks rally, oil extends losses as Trump fans fresh peace hopes
-
Pope to urge peace in Cameroon's conflict zone
-
US lawmaker demands FIFA pay World Cup transport bill amid ticket hikes
-
World Cup 2026: Haiti, a ravaged nation whose heart beats for football
-
'Listening bars' bloom as hottest new nightlife trend
-
Cinema owners welcome back an old friend as Godzilla sequel unveiled
-
Peru candidate calls for vote annulment as count tightens
-
Trump says Iran talks may resume as Israel, Lebanon open direct track
-
Ekitike injury 'looks really bad', says concerned Slot
-
Atletico 'ready' for Champions League success at last: Simeone
Australian airline Qantas says millions of customers' data leaked online
Australian airline Qantas said Sunday that data from 5.7 million customers stolen in a major cyberattack this year had been shared online, part of a leak reportedly involving dozens of firms.
Qantas said in July that hackers had targeted one of its customer contact centres, breaching a computer system used by a third party.
They secured access to sensitive information such as customer names, email addresses, phone numbers and birthdays, the blue-chip Australian company said.
Credit card details and passport numbers were not kept in the system, Qantas stressed at the time.
AFP understands the third-party involved is software firm Salesforce, which said last week that it was "aware of recent extortion attempts by threat actors".
The hackers have also obtained stolen data from dozens of other companies including Disney, Google, IKEA, Toyota, McDonalds, and fellow airlines Air France and KLM.
"Qantas is one of a number of companies globally that has had data released by cyber criminals following the airline's cyber incident in early July, where customer data was stolen via a third party platform," the company said in a statement.
"With the help of specialist cyber security experts, we are investigating what data was part of the release," it added.
It also said it had obtained a legal injunction with the Supreme Court of New South Wales, where the firm is headquartered, "to prevent the stolen data being accessed, viewed, released, used, transmitted or published by anyone, including third parties".
Cybersecurity analysts have linked the hack to individuals linked to an alliance of cybercriminals called Scattered Lapsus$ Hunters.
Research group Unit 42 said in a note the group had "asserted responsibility for laying siege to customer Salesforce tenants as part of a coordinated effort to steal data and hold it for ransom".
The hackers had reportedly set an October 10 deadline for ransom payment.
Threat intelligence platform FalconFeeds said on X the customer data had been posted on the dark web over the weekend.
Vietnam Airlines, clothing giant Gap and Japanese multinational Fujifilm also had data leaked, it said.
The hackers reportedly stole the sensitive data using a social engineering technique, referring to a tactic of manipulating victims by pretending to be a company representative or other trusted person.
M.AbuKhalil--SF-PST
