Qantas has revealed that stolen customer data has been released by cyber criminals.
The Australian airline said it was investigating what data was released in the wake of the theft of 5.7 million customer records in July via a third-party platform.
Most stolen records were name, email address and Frequent Flyer details, a smaller portion included business or home address, date of birth, phone number, gender and meal preferences but there were no credit card details, personal financial information or passport details.
“There continues to be no impact to Qantas Frequent Flyer accounts. Passwords, PINs and login details were not accessed or compromised. The data that was stolen is not enough to gain access to these frequent flyer accounts,” Qantas said in a statement.
The airline has an ongoing injunction through the NSW Supreme Court to prevent the stolen data being accessed, viewed, released, used, transmitted or published by anyone, including third parties.
“We have also put in place additional security measures, increased training across our teams and strengthened system monitoring and detection since the incident occurred,” it said.
Qantas advised all affected customers in July of the types of data in the impacted system, and it continues to share updates on qantas.com and through its support line on 1800 971 541 or +61 2 8028 0534.
It is also working with Australian Government agencies, including the Australian Cyber Security Centre and the Australian Federal Police.
Qantas said it was one of a number of companies affected by the incident.
The airline did not name them, but the others reportedly affected include Toyota, Disney / Hulu, McDonald’s, IKEA, Puma, Chanel, Google Adsense, Fujifilm, Vietnam Airlines and HBO Max.
