QANTAS Cyber Incident

[33kft]

What help do you need?

Per the article I linked earlier, there's a suggestion that where greater info like @Askance's was taken, there was some targeting of that information by the threat actor. Seems to me that those people in particular should get a bit of extra advice/assistance as there's a suggestion that the attacker was specifically targeting their info.

In my case (minimal leak) I don't expect a thing but I'd be disappointed if QF didn't follow up for those who were targeted specifically to help them with advice or identity protection.

 

[offshore171]

Unless you’re worried people will find out you’re Vegan probably don’t have anything to worry about.

Sure, with the vegans it's literally the first thing they tell you!

But think kosher meals.

Worst case: a list of names, phone, email, home address (if bag redelivered) and ordered a kosher meal. Definitely a cause for concern given recent events in Melbourne and elsewhere. The meal choice is going to closely correlate with belonging to an at-risk minority group. Combined with the other data this is really bad.

As always, these data breaches have a different impact on different individuals.

 

[jeza]

View attachment 456523no mention of what concerete help theyre offering, still

Same data accessed for me.

 

[lovestotravel]

View attachment 456523no mention of what concerete help theyre offering, still

They are not going to offer any help, nor do they care

I haven't received the email yet but I don't care about name and email address etc.

If it includes DOB then it's an issue

But QF will do nothing - Share price at 10.84 AUD so why would they care sadly!

 

[SYD]

Well for most QF doesn’t even have full middle names.

As mentioned earlier, I recently updated my account to include full middle name because the IT was suggesting there was an error in my personal details (decades after entering it…).

Not overly concerned if it’s just FF number.

Unless you’re worried people will find out you’re Vegan probably don’t have anything to worry about.

Actually, in the current climate - leaking certain meal preference could be problematic.

Meanwhile, what’s good to see is they’re explicitly mentioning whether email addresses were taken.

 

[henrus]

If my tier (Platinum) and/or choice of meal/drink (red wine, G&T or whiskey) gets leaked (or published on the internet) I’m going to be annoyed.

 

[justinbrett]

As mentioned earlier, I recently updated my account to include full middle name because the IT was suggesting there was an error in my personal details (decades after entering it…).

I think you’re in the minority there.

Actually, in the current climate - leaking certain meal preference could be problematic.

I see the argument but there’s probably easier ways to target certain groups. I used to live in Bondi Junction and there was a large Kosher section at my local Woolies. From the people I’ve spoken to these people do not hide their identity.

I’ve seen the Kosher meals delivered on QF and they usually look much better than the standard meals, I’ve been tempted to order one.

 

[Dmac59]

Dmac +1 received confirmation this morning that she is in the Name, Number, Tier group.
I am yet to receive confirmation.

 

[turtlemichael]

If my tier (Platinum) and/or choice of meal/drink (red wine, G&T or whiskey) gets leaked (or published on the internet) I’m going to be annoyed.

That's something up with which you will not put!

 

[RooFlyer]

Wonder if they are staging the advice e-mails, minimal impact first. So the conversation goes 'Oh, its not so bad then'. And that may be working.

 

[DejaBrew]

Wonder if they are staging the advice e-mails, minimal impact first. So the conversation goes 'Oh, its not so bad then'. And that may be working.

Perhaps, but as mentioned before, comms to such a massive cohort will be split into smaller batches sent over an extended time period.

 

[RooFlyer]

Perhaps, but as mentioned before, comms to such a massive cohort will be split into smaller batches sent over an extended time period.

Sure. So which ones do you send first?

 

[I love to travel]

Wonder if they are staging the advice e-mails, minimal impact first. So the conversation goes 'Oh, its not so bad then'. And that may be working.

That thought had crossed my mind too.

Post automatically merged: Today at 12:14 PM

Sure. So which ones do you send first?

The lower impact people. This will hit the media straight away(which has happened) and therefore the reporting is a lot less potent. You don't need a degree in comms to work that one out!! Once again, QF not showing respect for the customer, it's all about PR strategy.

 

[DejaBrew]

Sure. So which ones do you send first?

You may be over-simplifying it. Rather than running separate campaigns to each group of impacted members, they could just as easily have a single email campaign that ingests the entire impacted cohort and sends the same base email with dynamic content based on the level to which they have been impacted. Think of it in the same vein as how we pretty much all receive the same Frequent Flyer newsletters, but the header - and the associated imagery determined by status - would be dynamically delivered to each recipient.

 

[sudoer]

Waiting with bated breath to see if my badge as the lowest PCV P1 is now public knowledge.

 

[33kft]

Waiting with bated breath to see if my badge as the lowest PCV P1 is now public knowledge.

That's the one thing I'd be delighted to see leaked, but I'm sure QF guard that with greater care than my payment details

 

[AuSammy]

They are not going to offer any help, nor do they care

Evidenced by ???

 

[I love to travel]

Evidenced by ???

The last 15 or so years under AJ and VH. Qantas has minimal to zero goodwill and therefore some people are going to be angrier about this than they might usually have been

 

[Aeryn]

Haven't received any clarifying email yet. In the initial 2 emails i was in the earliest cohorts to be notified, now as I received nothing Im dreading being in the cohort with all the sensitive stuff like middle name, DOB, points balance.

It certainly does look like those with no real impact just name and status are being told earlier than those who had more details compromised.

 

[Pushka]

I think you’re in the minority there.



I see the argument but there’s probably easier ways to target certain groups. I used to live in Bondi Junction and there was a large Kosher section at my local Woolies. From the people I’ve spoken to these people do not hide their identity.

I’ve seen the Kosher meals delivered on QF and they usually look much better than the standard meals, I’ve been tempted to order one.

We did exactly the same. Middle name added. For two accounts. But Qantas still says details missing.