Better News Network

Qantas customer data leaked by hackers after ransomware attack

3 minute read

Published: Monday, October 13, 2025 at 8:56 am

Qantas Customer Data Leaked After Ransomware Attack

A significant data breach has exposed the personal information of millions of Qantas customers after a ransomware attack. Hackers, operating under the name Scattered Lapsus$ Hunters, gained access to customer data through compromised Salesloft accounts integrated with Salesforce. The attackers exploited API tokens and OAuth connections to access and steal customer data.

The group initially attempted to extort Qantas, demanding payment in exchange for the deletion of the stolen files. However, Qantas refused to negotiate or pay the ransom. In response, the hackers released the stolen data on the dark web.

The leaked data includes names, email addresses, phone numbers, birth dates, and frequent flyer numbers of approximately 5 million Qantas customers. While credit card details, financial information, and passport details were reportedly not compromised, the exposure of this personal information poses a significant risk of phishing, identity theft, and fraud.

The breach extends beyond Qantas. According to reports, a total of 44 companies were affected by the data leak, including major international brands such as Disney, Toyota, McDonalds, and Vietnam Airlines. The group responsible for the attack is a combination of members from Scattered Spider, Lapsus$, and ShinyHunters.

BNN's Perspective:

The Qantas data breach underscores the growing threat of cyberattacks and the importance of robust cybersecurity measures. While Qantas's decision not to pay the ransom is understandable, the resulting exposure of customer data highlights the potential consequences of such attacks. Companies must prioritize data security and invest in proactive measures to protect sensitive information. This incident serves as a stark reminder of the need for vigilance and preparedness in the face of evolving cyber threats.

Keywords: Qantas, data breach, ransomware, hackers, Salesloft, Salesforce, customer data, dark web, phishing, identity theft, Scattered Lapsus$ Hunters, cybersecurity, data leak, Disney, Toyota, McDonalds, Vietnam Airlines

Full Story