Qantas

Qantas, Australia’s flagship airline, recently fell victim to a significant cybersecurity breach resulting in the exposure of sensitive customer data on the dark web. The incident impacted up to **5.7 million customers**, with compromised information potentially including personal details such as names, contact information, passport numbers, and frequent flyer data. While Qantas confirmed the breach, the exact method of infiltration—whether through a targeted cyber attack, exploitation of a vulnerability, or an insider threat—remains undisclosed. The exposure of such a vast dataset poses severe risks, including identity theft, phishing scams, and financial fraud for affected individuals.The breach has already triggered reputational damage, with customers expressing concerns over data security and trust in the airline’s digital infrastructure. Regulatory scrutiny is expected, as Australian privacy laws (e.g., the *Privacy Act 1988* and *Notifiable Data Breaches Scheme*) mandate strict reporting and mitigation measures. Qantas has stated it is working with cybersecurity experts and law enforcement to contain the fallout, but the long-term consequences—such as customer churn, legal liabilities, and operational disruptions—could persist for years. The incident underscores the growing threat landscape for high-profile organizations holding vast troves of personal data.

Source: https://www.9news.com.au/technology/dodo-hack-cybersecurity-breach-australia/497487b3-f60c-4c93-bd11-2f1a6a65e10e

TPRM report: https://www.rankiteo.com/company/qantas

"id": "qan1562015101925",
"linkid": "qantas",
"type": "Breach",
"date": "6/1988",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 'Up to 5.7 million',
                        'industry': 'Aviation',
                        'location': 'Australia',
                        'name': 'Qantas',
                        'type': 'Corporation'}],
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': 'Up to 5.7 million',
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High (exposed on dark web)',
                 'type_of_data_compromised': 'Customer data'},
 'description': 'Qantas confirmed that the data of up to 5.7 million customers '
                'had been exposed on the dark web.',
 'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
                                       'exposure of customer data',
            'data_compromised': 'Customer data (up to 5.7 million records)',
            'identity_theft_risk': 'High (customer data exposed on dark web)'},
 'initial_access_broker': {'data_sold_on_dark_web': True},
 'investigation_status': 'Confirmed (data exposed on dark web)',
 'response': {'communication_strategy': 'Public disclosure (confirmed '
                                        'exposure)'},
 'title': 'Qantas Customer Data Exposed on Dark Web',
 'type': 'Data Breach'}

Qantas

The Home Depot: Leaked Home Depot credential exposed internal systems for a year

Apple: iOS 26 leak reveals new a AirTag is on the way – here are 4 upgrades to expect

Hypertension & Nephrology, Inc.: Hypertension Nephrology Associates of Willow Grove agrees to $625K settlement following data breach, claim forms now available