Qantas's two-day hack delay fuels customer scam fears
And there might be further attempts by malicious actors to hit Australia's biggest airline now that a vulnerability has been exposed.
The airline announced on Wednesday that a third-party system used by an offshore call centre had been attacked two days earlier.
The hack potentially compromised the names, dates of birth, email addresses and frequent flyer numbers of six million customers, although their financial information remained secure, Qantas said.
But a cybersecurity expert said the 48-hour delay in telling customers there had been an attack might have left millions vulnerable to scam attempts.
"That second round can be a lot more powerful than the first breach and then there is the risk of customers not knowing to be alert to any emails or phone calls from Qantas as suspicious," La Trobe University's Daswin De Silva told AAP.
"These emails can be sent very quickly ... phishing or other impersonation attacks could have happened in those 48 hours."
Qantas representatives should come forward and explain why there was a 48-hour delay in notifying customers of the scam risk, Professor De Silva added.
He speculated the delay was likely due to Qantas figuring out whether other systems had been compromised and deploying security measures to dispel the cyber criminals.
Qantas confirmed that scammers were already impersonating the airline in the wake of the attack and told customers to be vigilant.
The airline has been contacted for comment about the notification delay.
The company on Friday provided an update confirming that credit card details, personal financial information, passport details and Qantas Frequent Flyer accounts were not exposed.
However, customers will have to wait several days longer for an individual update on which personal details were compromised due to the hack.
"I want to apologise again for the uncertainty this has caused," chief executive Vanessa Hudson said.
"We're committed to keeping our affected customers informed with regular updates as our investigation progresses."
Qantas, which has been working with government authorities to investigate the incident, said there has been no further threat to its systems and additional security measures have been put in place.
Australian Federal Police confirmed they were investigating and the airline had been "highly engaged" with authorities.
Qantas has remained tight-lipped about who it believes is behind the attack and no cyber criminal groups have taken responsibility.
But Prof De Silva said this could be an ominous sign of more cyber strikes to come for the airline now that criminals have found a vulnerability.
"Once you figure out a weak spot, they try to exploit it to the maximum," he said.
Multiple cyber experts believe the group responsible is called Scattered Spider, a cabal of young cyber criminals living in the US and the UK.
The US Federal Bureau of Investigation recently warned that the group was targeting the airline sector by impersonating legitimate users to bypass multi-factor authentication and access systems.
Prof De Silva said Scattered Spider was a financially motivated group that did not obtain credit card details or other "valuable" information in the attack.
"They might be planning further attacks that gets them to their objective because obviously they want to see their effort fulfilled," he said.
Qantas has added security measures for its frequent flyer accounts, including requiring extra identification for any changes.
Since the attack was revealed, Qantas has received more than 5000 customer inquiries.
Legal experts suggest the incident could lead to a class action against Qantas after compensation claims were made against Optus and Medibank following major breaches in 2022.
Millions of customers could already have been targeted by scammers in the two days it took Qantas to share details of a major cyber attack, an expert has warned.
And there might be further attempts by malicious actors to hit Australia's biggest airline now that a vulnerability has been exposed.
The airline announced on Wednesday that a third-party system used by an offshore call centre had been attacked two days earlier.
The hack potentially compromised the names, dates of birth, email addresses and frequent flyer numbers of six million customers, although their financial information remained secure, Qantas said.
But a cybersecurity expert said the 48-hour delay in telling customers there had been an attack might have left millions vulnerable to scam attempts.
"That second round can be a lot more powerful than the first breach and then there is the risk of customers not knowing to be alert to any emails or phone calls from Qantas as suspicious," La Trobe University's Daswin De Silva told AAP.
"These emails can be sent very quickly ... phishing or other impersonation attacks could have happened in those 48 hours."
Qantas representatives should come forward and explain why there was a 48-hour delay in notifying customers of the scam risk, Professor De Silva added.
He speculated the delay was likely due to Qantas figuring out whether other systems had been compromised and deploying security measures to dispel the cyber criminals.
Qantas confirmed that scammers were already impersonating the airline in the wake of the attack and told customers to be vigilant.
The airline has been contacted for comment about the notification delay.
The company on Friday provided an update confirming that credit card details, personal financial information, passport details and Qantas Frequent Flyer accounts were not exposed.
However, customers will have to wait several days longer for an individual update on which personal details were compromised due to the hack.
"I want to apologise again for the uncertainty this has caused," chief executive Vanessa Hudson said.
"We're committed to keeping our affected customers informed with regular updates as our investigation progresses."
Qantas, which has been working with government authorities to investigate the incident, said there has been no further threat to its systems and additional security measures have been put in place.
Australian Federal Police confirmed they were investigating and the airline had been "highly engaged" with authorities.
Qantas has remained tight-lipped about who it believes is behind the attack and no cyber criminal groups have taken responsibility.
But Prof De Silva said this could be an ominous sign of more cyber strikes to come for the airline now that criminals have found a vulnerability.
"Once you figure out a weak spot, they try to exploit it to the maximum," he said.
Multiple cyber experts believe the group responsible is called Scattered Spider, a cabal of young cyber criminals living in the US and the UK.
The US Federal Bureau of Investigation recently warned that the group was targeting the airline sector by impersonating legitimate users to bypass multi-factor authentication and access systems.
Prof De Silva said Scattered Spider was a financially motivated group that did not obtain credit card details or other "valuable" information in the attack.
"They might be planning further attacks that gets them to their objective because obviously they want to see their effort fulfilled," he said.
Qantas has added security measures for its frequent flyer accounts, including requiring extra identification for any changes.
Since the attack was revealed, Qantas has received more than 5000 customer inquiries.
Legal experts suggest the incident could lead to a class action against Qantas after compensation claims were made against Optus and Medibank following major breaches in 2022.
Millions of customers could already have been targeted by scammers in the two days it took Qantas to share details of a major cyber attack, an expert has warned.
And there might be further attempts by malicious actors to hit Australia's biggest airline now that a vulnerability has been exposed.
The airline announced on Wednesday that a third-party system used by an offshore call centre had been attacked two days earlier.
The hack potentially compromised the names, dates of birth, email addresses and frequent flyer numbers of six million customers, although their financial information remained secure, Qantas said.
But a cybersecurity expert said the 48-hour delay in telling customers there had been an attack might have left millions vulnerable to scam attempts.
"That second round can be a lot more powerful than the first breach and then there is the risk of customers not knowing to be alert to any emails or phone calls from Qantas as suspicious," La Trobe University's Daswin De Silva told AAP.
"These emails can be sent very quickly ... phishing or other impersonation attacks could have happened in those 48 hours."
Qantas representatives should come forward and explain why there was a 48-hour delay in notifying customers of the scam risk, Professor De Silva added.
He speculated the delay was likely due to Qantas figuring out whether other systems had been compromised and deploying security measures to dispel the cyber criminals.
Qantas confirmed that scammers were already impersonating the airline in the wake of the attack and told customers to be vigilant.
The airline has been contacted for comment about the notification delay.
The company on Friday provided an update confirming that credit card details, personal financial information, passport details and Qantas Frequent Flyer accounts were not exposed.
However, customers will have to wait several days longer for an individual update on which personal details were compromised due to the hack.
"I want to apologise again for the uncertainty this has caused," chief executive Vanessa Hudson said.
"We're committed to keeping our affected customers informed with regular updates as our investigation progresses."
Qantas, which has been working with government authorities to investigate the incident, said there has been no further threat to its systems and additional security measures have been put in place.
Australian Federal Police confirmed they were investigating and the airline had been "highly engaged" with authorities.
Qantas has remained tight-lipped about who it believes is behind the attack and no cyber criminal groups have taken responsibility.
But Prof De Silva said this could be an ominous sign of more cyber strikes to come for the airline now that criminals have found a vulnerability.
"Once you figure out a weak spot, they try to exploit it to the maximum," he said.
Multiple cyber experts believe the group responsible is called Scattered Spider, a cabal of young cyber criminals living in the US and the UK.
The US Federal Bureau of Investigation recently warned that the group was targeting the airline sector by impersonating legitimate users to bypass multi-factor authentication and access systems.
Prof De Silva said Scattered Spider was a financially motivated group that did not obtain credit card details or other "valuable" information in the attack.
"They might be planning further attacks that gets them to their objective because obviously they want to see their effort fulfilled," he said.
Qantas has added security measures for its frequent flyer accounts, including requiring extra identification for any changes.
Since the attack was revealed, Qantas has received more than 5000 customer inquiries.
Legal experts suggest the incident could lead to a class action against Qantas after compensation claims were made against Optus and Medibank following major breaches in 2022.
Millions of customers could already have been targeted by scammers in the two days it took Qantas to share details of a major cyber attack, an expert has warned.
And there might be further attempts by malicious actors to hit Australia's biggest airline now that a vulnerability has been exposed.
The airline announced on Wednesday that a third-party system used by an offshore call centre had been attacked two days earlier.
The hack potentially compromised the names, dates of birth, email addresses and frequent flyer numbers of six million customers, although their financial information remained secure, Qantas said.
But a cybersecurity expert said the 48-hour delay in telling customers there had been an attack might have left millions vulnerable to scam attempts.
"That second round can be a lot more powerful than the first breach and then there is the risk of customers not knowing to be alert to any emails or phone calls from Qantas as suspicious," La Trobe University's Daswin De Silva told AAP.
"These emails can be sent very quickly ... phishing or other impersonation attacks could have happened in those 48 hours."
Qantas representatives should come forward and explain why there was a 48-hour delay in notifying customers of the scam risk, Professor De Silva added.
He speculated the delay was likely due to Qantas figuring out whether other systems had been compromised and deploying security measures to dispel the cyber criminals.
Qantas confirmed that scammers were already impersonating the airline in the wake of the attack and told customers to be vigilant.
The airline has been contacted for comment about the notification delay.
The company on Friday provided an update confirming that credit card details, personal financial information, passport details and Qantas Frequent Flyer accounts were not exposed.
However, customers will have to wait several days longer for an individual update on which personal details were compromised due to the hack.
"I want to apologise again for the uncertainty this has caused," chief executive Vanessa Hudson said.
"We're committed to keeping our affected customers informed with regular updates as our investigation progresses."
Qantas, which has been working with government authorities to investigate the incident, said there has been no further threat to its systems and additional security measures have been put in place.
Australian Federal Police confirmed they were investigating and the airline had been "highly engaged" with authorities.
Qantas has remained tight-lipped about who it believes is behind the attack and no cyber criminal groups have taken responsibility.
But Prof De Silva said this could be an ominous sign of more cyber strikes to come for the airline now that criminals have found a vulnerability.
"Once you figure out a weak spot, they try to exploit it to the maximum," he said.
Multiple cyber experts believe the group responsible is called Scattered Spider, a cabal of young cyber criminals living in the US and the UK.
The US Federal Bureau of Investigation recently warned that the group was targeting the airline sector by impersonating legitimate users to bypass multi-factor authentication and access systems.
Prof De Silva said Scattered Spider was a financially motivated group that did not obtain credit card details or other "valuable" information in the attack.
"They might be planning further attacks that gets them to their objective because obviously they want to see their effort fulfilled," he said.
Qantas has added security measures for its frequent flyer accounts, including requiring extra identification for any changes.
Since the attack was revealed, Qantas has received more than 5000 customer inquiries.
Legal experts suggest the incident could lead to a class action against Qantas after compensation claims were made against Optus and Medibank following major breaches in 2022.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Perth Now
an hour ago
- Perth Now
Mushroom trial circus packs up after guilty verdicts
Korumburra, Leongatha and Morwell. These humble towns in Victoria's Gippsland region have been caught up in Erin Patterson's decision to serve up a deadly mushroom meal almost two years ago. Over more than 10 weeks, Morwell has been in the spotlight after hosting a trial that has captivated much of the nation and the world. It brought swarms of true-crime fanatics and media to hear blow-by-blow details about the death cap mushroom-laced lunch at Patterson's Leongatha home in July 2023. A jury on Monday unanimously found Patterson guilty of intentionally poisoning her estranged husband's parents, Don and Gail Patterson, and his uncle and aunt Ian and Heather Wilkinson, who all lived in Korumburra. Mr Wilkinson, the pastor at Korumburra Baptist Church, was the lone diner to survive after a lengthy hospital stay. Toni Watson from Morwell Newsagency said she felt relief watching news of the verdicts. "There was too many gaps (in Patterson's story)," she told AAP. Towns like Snowtown in South Australia have become indelibly linked to murder cases. Ms Watson, who has spent most of her life in Morwell, said she hoped the triple murder didn't taint the region's reputation. The area has already suffered a degree of stigma from the murder of 14-month-old Jaidyn Leskie, whose body was found at Blue Rock Dam on New Year's Day 1998. "The Jaidyn Leskie case happened in Moe, but it affects the whole La Trobe Valley," she said. Along with a band of reporters, Laura Heller from Jay Dee's Cafe in Morwell made a mad dash for the courthouse after hearing the jury had reached a verdict following seven days of deliberations. The historic nature of the moment wasn't lost on the 31-year-old. "It will be talked about forever and it will always be remembered as one of the craziest stories in Australian history," she told AAP. Ms Heller, a law student who worked at the cafe throughout the trial, said business had been booming in the traditionally quiet winter period. The out-of-towners were a mixture of media, true crime nuts and "oldies" wanting to have a stickybeak. "Not much goes on here, so we were all excited a lot of people from Australia and around the world were coming," Ms Heller said. "I know that sounds crazy." She spoke with a sense of melancholy about life returning to normal in the area, which has faced social and economic problems with the impending closure of job-creating coal-fired power stations. "It's like summer camp coming to an end," she said. South Gippsland Shire councillor Nathan Hersey said the scale of the media attention astounded locals. "In all of this, there has been a lot of publicity. A lot of it's been negative, unfortunately, and it's gained traction in a pop-culture kind of way," he said. "But I don't feel like that has reflected on the region. Anyone who knows Gippsland knows that it's a great place with a lot of fantastic people."
West Australian
an hour ago
- West Australian
Mushroom trial circus packs up after guilty verdicts
Korumburra, Leongatha and Morwell. These humble towns in Victoria's Gippsland region have been caught up in Erin Patterson's decision to serve up a deadly mushroom meal almost two years ago. Over more than 10 weeks, Morwell has been in the spotlight after hosting a trial that has captivated much of the nation and the world. It brought swarms of true-crime fanatics and media to hear blow-by-blow details about the death cap mushroom-laced lunch at Patterson's Leongatha home in July 2023. A jury on Monday unanimously found Patterson guilty of intentionally poisoning her estranged husband's parents, Don and Gail Patterson, and his uncle and aunt Ian and Heather Wilkinson, who all lived in Korumburra. Mr Wilkinson, the pastor at Korumburra Baptist Church, was the lone diner to survive after a lengthy hospital stay. Toni Watson from Morwell Newsagency said she felt relief watching news of the verdicts. "There was too many gaps (in Patterson's story)," she told AAP. Towns like Snowtown in South Australia have become indelibly linked to murder cases. Ms Watson, who has spent most of her life in Morwell, said she hoped the triple murder didn't taint the region's reputation. The area has already suffered a degree of stigma from the murder of 14-month-old Jaidyn Leskie, whose body was found at Blue Rock Dam on New Year's Day 1998. "The Jaidyn Leskie case happened in Moe, but it affects the whole La Trobe Valley," she said. Along with a band of reporters, Laura Heller from Jay Dee's Cafe in Morwell made a mad dash for the courthouse after hearing the jury had reached a verdict following seven days of deliberations. The historic nature of the moment wasn't lost on the 31-year-old. "It will be talked about forever and it will always be remembered as one of the craziest stories in Australian history," she told AAP. Ms Heller, a law student who worked at the cafe throughout the trial, said business had been booming in the traditionally quiet winter period. The out-of-towners were a mixture of media, true crime nuts and "oldies" wanting to have a stickybeak. "Not much goes on here, so we were all excited a lot of people from Australia and around the world were coming," Ms Heller said. "I know that sounds crazy." She spoke with a sense of melancholy about life returning to normal in the area, which has faced social and economic problems with the impending closure of job-creating coal-fired power stations. "It's like summer camp coming to an end," she said. South Gippsland Shire councillor Nathan Hersey said the scale of the media attention astounded locals. "In all of this, there has been a lot of publicity. A lot of it's been negative, unfortunately, and it's gained traction in a pop-culture kind of way," he said. "But I don't feel like that has reflected on the region. Anyone who knows Gippsland knows that it's a great place with a lot of fantastic people."
Sydney Morning Herald
2 hours ago
- Sydney Morning Herald
The world's best airline? Not if you're flying in economy class
But the title of world's best airline should be based on the whole plane, so you have to look at economy, too. And I don't think Qatar has the world's best economy class. That would be Emirates, which has spacious, comfortable seats in its cheapest class, not to mention large high-definition TVs loaded up with plenty of good entertainment, and economy-class meals that are clearly world-leaders: you get a proper, printed menu in economy, and then large trays filled with well-thought-out, tasty meals and sides that are all paired with very nice wines. Qatar's economy class isn't as good as that. Sure, the company's planes are very new and its cabins are comfortable. But its entertainment options aren't quite as good, and its food is a clear step down from Emirates. The service on both airlines, meanwhile, is good, but it's not as good as Singapore Airlines, which came in second on Skytrax's list for the second year in a row. So, what is really the best airline in the world? Emirates. No, Singapore. Or maybe it really is Qatar, given the quality of its business class? Let's put that aside though and look, instead, at some of the other surprises on Skytrax's list, or at least the positions I find a little strange. The top five is reasonable: Qatar, Singapore, Cathay Pacific, Emirates and ANA. But then we have Air France at No.8, and Hainan Airlines at No.10. Those airlines seem suspiciously high to me, particularly when you discover that Air New Zealand, a perfectly good airline, is all the way back at No.24. Is it really that much worse than Air France? Qantas, meanwhile, is the 14th best airline in the world. I mean, is it? Qantas has certainly improved since the nadir of public outrage around the COVID-19 pandemic and its appalling treatment of customers, not to mention the airline's determination to outsource much of its on-ground service to cheaper overseas companies (in one case, illegally). But No.14 seems high to me. Is Qantas that much better than, say, Etihad, which came in at No.26? Or is it that much better than Asiana, another strangely average entry at No.41? When your meal is just a little plastic tub of soggy noodles eaten with a wooden fork, you would have to say no. Lufthansa is apparently the 15th best airline in the world, which seems laughable to me after the multiple delayed or cancelled flights and three occasions of lost luggage that I experienced with the airline last year. This is not a good outfit. Loading Virgin Australia came in at No.34, which seems harsh given the airline is just ahead of Kazakhstan's Air Astana, and just behind China Southern and Bangkok Airways. Ouch. And then there's Jetstar, languishing all the way back at No.88, in the celebrated company of Kenya Airways, FlyArystan (Kazakhstan's low-cost carrier), and Air India. To put that further into perspective, Ryanair is No.61, and EasyJet is No.59. I'm not here to tell you Jetstar is a great airline, but it's also not that bad. It's comfortable enough, reliable enough too (its on-time performance is currently about 80 per cent, which isn't great, but also not disastrous). Service is friendly. Food, if you can be bothered purchasing some, is nice enough. US airlines don't do particularly well with Skytrax, which seems fair. The best of them is Delta at No.22, with United at No.51 and Alaska Airlines at No.69. Hard to argue. Air Canada, meanwhile, is a comparatively lofty No.19. And No.100? Hawaiian Airlines. That also seems a bit rough, given 99 is Air Serbia, and 98 is China Eastern. Still, you can't expect to just agree with a list. The world's top 20 airlines in 2025 Qatar Airways Singapore Airlines Cathay Pacific Emirates ANA All Nippon Airways Turkish Airlines Korean Air Air France Japan Airlines Hainan Airlines Swiss Int'l Air Lines EVA Air British Airways Qantas Airways Lufthansa Virgin Atlantic Saudi Arabian Airlines STARLUX Airlines Air Canada Iberia
