The breach occurred on October 11, 2025, when the cybercriminal group released the stolen customer records on the dark web. This action followed an earlier attack on Salesforce in July, after which the hackers demanded a ransom to prevent the release of the information. It appears that the ransom was not paid, leading to the public disclosure of the data.
Qantas has moved swiftly to address the situation, assuring customers that no financial data, such as passwords, PINs, or login details, were accessed or compromised. The airline stated, "Qantas confirms that no identity documents, credit card numbers, or personal financial details were accessed or compromised as a result of the incident." Despite these assurances, the breach has understandably caused concern among customers regarding the safety of their personal information.
This incident underscores the growing threat of cyberattacks targeting large corporations and the critical importance of robust cybersecurity measures. For consumers, it highlights the need for vigilance in monitoring personal accounts and being alert to potential phishing attempts that may arise following such breaches.
As investigations continue, it is imperative for companies to reassess and strengthen their data protection strategies to prevent future incidents and maintain consumer trust.
Published: Tuesday 28th October, 2025
Please Note: If this information affects you or is relevant to your circumstances, seek advice from a licensed professional.
