QANTAS Cyber Incident

Himeno · 2025-07-05T20:44:09+1000

JohnM said:
The advantage of diverting unknown number calls to messagebank is that your phone doesn't even ring, so immediately there goes a distraction. When you look at the message and it's about 1 second long, hit delete.

Doing that still means that the call is "answered", telling the bot making the call that it is an active number. Letting it ring out doesn't confirm that the number is in use, leading to reduced scam calls.

dairyfloss · 2025-07-05T20:51:18+1000

Himeno said:
Doing that still means that the call is "answered", telling the bot making the call that it is an active number. Letting it ring out doesn't confirm that the number is in use, leading to reduced scam calls.

If it rings at all, isn’t the number proven active? Whether you leave it to ring out, hit the red button, or let your device/AI filtering manage it, it’s still an active number. A dead number won’t ring in the first place.

RooFlyer · 2025-07-05T21:07:42+1000

dairyfloss said:
If it rings at all, isn’t the number proven active? Whether you leave it to ring out, hit the red button, or let your device/AI filtering manage it, it’s still an active number. A dead number won’t ring in the first place.

Its more active if its answered, though.

Daver6 · 2025-07-05T21:30:55+1000

JohnM said:
The advantage of diverting unknown number calls to messagebank is that your phone doesn't even ring, so immediately there goes a distraction. When you look at the message and it's about 1 second long, hit delete.

Exactly what I do with calls from your number

Now just to setup a rule that diverts unknown calls to your phone....

Quickstatus · 2025-07-05T21:37:40+1000

Daver6 said:
Now just to setup a rule that diverts unknown calls to your phone.

Divert unknown calls to 131313?

Haplo · 2025-07-05T21:50:25+1000

Quickstatus said:
Divert unknown calls to 131313?

Classic response

JohnM · 2025-07-05T21:57:17+1000

Daver6 said:
Exactly what I do with calls from your number

Now just to setup a rule that diverts unknown calls to your phone....

Just the sort of juvenile response one might expect from The Kid after he's been slurping a 2004 Gladstones without asking whether I would like to participate.

Those Gen X kids are so brutal and uncompromising - yet weirdly seem proud to identify as such aliens... How can that be? The Boomers' endless dilemma...

Brissy1 · 2025-07-05T22:14:47+1000

bronwyn75 said:
I received the 2nd Qantas email regarding being impacted.
Today, Telstra advised they had changed the Telstra ID for that email account - "We have detected a potential risk to your Telstra ID and believe your password may have been compromised. To protect your personal information, we have reset your password".
Doesn't specifically mention Qantas but one assumes it may be connected.

If there's a link in that email, don't use it.

JohnM · 2025-07-05T22:26:35+1000

Brissy1 said:
If there's a link in that email, don't use it.

Exactly.

Simple - ignore/delete.

I've been getting bombed by 'Telstra' emails for months.

Be.au · 2025-07-05T22:58:18+1000

bronwyn75 said:
I received the 2nd Qantas email regarding being impacted.
Today, Telstra advised they had changed the Telstra ID for that email account - "We have detected a potential risk to your Telstra ID and believe your password may have been compromised. To protect your personal information, we have reset your password".
Doesn't specifically mention Qantas but one assumes it may be connected.

Did you use your Telstra password elsewhere?
They've been doing checks for publicly breached passwords for years, including when you visit and log in from the Telstra website.

https://twitter.com/x/status/1697032951261966611

Not Qantas related since there's no password with Qantas....

You can check if it was breached at nsw.gov.au/id-support-nsw/be-prepared/passwords if you really wanted (after all, it's now been reset by Telstra for you)

dairyfloss · 2025-07-05T23:10:52+1000

RooFlyer said:
It’s more active if it’s answered, though.

Oh definitely - an answered number is worth at least 1x as much as a number that only rings!

ABC1 · 2025-07-06T07:37:14+1000

And so it begins. 3:25AM this morning. This has never happened until the hack. Email address is legitimate.

bussyboy · 2025-07-06T08:17:42+1000

ABC1 said:
And so it begins. 3:25AM this morning. This has never happened until the hack. Email address is legitimate. View attachment 455769

Based on that scribble, do you have a xx123456 user name on my.gov? That would have no open association with you and your email and is in itself an extra layer of security.

Though surprising that would be in an email from myGov

Pushka · 2025-07-06T08:30:32+1000

ABC1 said:
And so it begins. 3:25AM this morning. This has never happened until the hack. Email address is legitimate. View attachment 455769

Are you sure the email address hasn't been hacked. It's 'easy' to send an email from a known provider just as they can with mobile numbers. Have you actually been locked out using your own links and not this one?

RooFlyer · 2025-07-06T08:33:49+1000

dairyfloss said:
Oh definitely - an answered number is worth at least 1x as much as a number that only rings!

You can be facetious, but if I was looking to scam someone over the phone, a number that answers with a person is a much more valuable than one that doesn't. For a start, you've got the potential victim, right there.

dairyfloss · 2025-07-06T08:49:42+1000

RooFlyer said:
You can be facetious, but if I was looking to scam someone over the phone, a number that answers with a person is a much more valuable than one that doesn't. For a start, you've got the potential victim, right there.

Definitely agree there; I’m just referring to the value of answering or otherwise on whether a number is determined to be ‘active’ or not. I also have no idea whether that plays into likelihood of a future call to that number, or not

ausfox · 2025-07-06T08:51:53+1000

This morning I received an email supposedly from Telstra giving me 100k points. Checking the sender address showed a Polish sender. Block and delete.

Pushka · 2025-07-06T09:13:04+1000

The round of email giveaways and offers has been happening for 'years' and at the moment it's likely purely coincidence that these email offers are arriving.

bronwyn75 · 2025-07-06T09:29:53+1000

Be.au said:
Did you use your Telstra password elsewhere?
They've been doing checks for publicly breached passwords for years, including when you visit and log in from the Telstra website.
https://twitter.com/x/status/1697032951261966611

Not Qantas related since there's no password with Qantas....

You can check if it was breached at nsw.gov.au/id-support-nsw/be-prepared/passwords if you really wanted (after all, it's now been reset by Telstra for you)

No not used elsewhere - it was a unique password generated by Bitwarden. We had been part of a previous company hack and not had anything like this from Telstra - just thought it was curious timing. Thanks for the link.

Mwenenzi · 2025-07-06T09:53:12+1000

ABC1 said:
And so it begins. 3:25AM this morning. This has never happened until the hack. Email address is legitimate.

I get spam - scam Mygov emails every few months, that last 10 days ago. Are sent to both of the emails I commonly use. Some look like from a real AU govt email and others obvious fakes
Given say 50% or more of AU residents have a Mygov account sending a spoof "Mygov" email will get some positive hits by people who (foolishly) click the link.

QANTAS Cyber Incident

Senior Member

Established Member

Veteran Member

Enthusiast

Enthusiast

Member

Enthusiast

Established Member

Enthusiast

Intern

Established Member

Member

Established Member

Veteran Member

Veteran Member

Established Member

Active Member

Veteran Member

Junior Member

Established Member

Become an AFF member!

AFF forum abbreviations