Qantas Data Breach 2025: What Was Exposed and How to Protect Yourself

• Qantas
• data breach
• cyber security

A significant cyber attack on Qantas may have exposed the data of up to six million customers. Learn what information was accessed and steps to stay secure.

Qantas Confirms Major Data Breach: What Happened?

Qantas, Australia’s national airline, has confirmed a "significant" data breach after cybercriminals accessed a third-party platform used by one of its contact centres. The incident was detected on a Monday when unusual activity was observed, prompting Qantas to take swift action to contain the breach.

Who Is Affected and What Was Accessed?

Qantas revealed that records for nearly six million customers were stored on the compromised platform. Although the exact number of affected customers is still being determined, an initial review shows the stolen data may include:

• Names
• Email addresses
• Phone numbers
• Birth dates
• Frequent flyer numbers

The airline reassures customers that sensitive details such as credit card numbers, passwords, PINs, and passport data were not part of the breach, as these were not stored on the impacted system.

Is Qantas Flight Safety or Operations Affected?

Qantas has confirmed that the breach does not impact flight operations or passenger safety. The airline’s systems for booking, flight management, and operational safety remain secure and unaffected.

How Qantas Is Responding

Qantas Group chief executive Vanessa Hudson said the company is working closely with the National Cyber Security Coordinator and the Australian Cyber Security Centre. The airline has also notified the Office of the Australian Information Commissioner and the Australian Federal Police. Independent cybersecurity experts have been called in to assist with the investigation.

Qantas is actively contacting affected customers via email and has set up a dedicated support line at 1800 971 541 (or +61 2 8028 0534 for overseas callers).

What Should Customers Do If Their Data Is Compromised?

• Be on the lookout for scam calls, texts, or phishing emails. Criminals may use the stolen information to craft convincing scams.
• Change your email password and enable multi-factor authentication (MFA) if you haven’t already.
• Be wary of unsolicited contact claiming to be from Qantas. Verify directly via official Qantas channels.
• Contact the Australian Cyber Security Hotline on 1300 CYBER1 or 1300 292 371 if you suspect your data has been misused.
• Monitor your accounts for suspicious activity, especially if your frequent flyer number was compromised.

Expert Advice: How to Stay Secure After a Data Breach

Cybersecurity experts recommend that affected customers immediately update their email and online account passwords. Setting up multi-factor authentication adds an extra layer of security. Most importantly, remain vigilant for scams—cybercriminals are likely to target affected customers using the stolen information.

Qantas’ Commitment to Customer Security

Qantas has apologised for the incident, acknowledging the trust customers place in the airline. The company states its focus is on supporting those impacted and continuing to work with authorities and cybersecurity experts to strengthen protections.

Staying Updated

This incident highlights the ongoing risks posed by cyber attacks on major Australian organisations. Staying informed and cautious is the best way to protect yourself and your personal information. Check your emails for Qantas communications and use official contact channels for any queries or concerns.