QANTAS Cyber Incident

[mrsterryn]

Also, finally, a cybersecurity hack that I am NOT involved in.

Louis Vuitton Australia has been hacked - glad I can't afford to shop there. Apparently some customers even had their passport details stolen (weird they are holding this information in the first place):

We have actual bought LV in a couple of countries as well as Australia. Just asked husband whether he had to provide his passport when shopped in Australia he says no , admittedly it was some years ago and fortunately he has a new passport now, but seriously another one that takes the date of birth . He had 9 ticks in the Qantas breach

 

[oz_mark]

Thanks - found it:

Qantas Data Breach Representative Complaint

Maurice Blackburn has made a representative complaint to the Office of the Australian Information Commissioner (OAIC) against Qantas for a breach of the Privacy Act 1988 (Cth) over a major customer data breach involving millions of Qantas customers. The complaint alleges that Qantas breached...

www.mauriceblackburn.com.au

Also, finally, a cybersecurity hack that I am NOT involved in.

Louis Vuitton Australia has been hacked - glad I can't afford to shop there. Apparently some customers even had their passport details stolen (weird they are holding this information in the first place):

https://www.news.com.au/technology/online/hacking/critical-detail-exposed-in-louis-vuitton-data-breach-impacting-australian-customers/news-story/49b1155713a3d9f4211d3fa113da7c92

I think it was part of the process of claiming a VAT refund in the UK

 

[DejaBrew]

Noticing all recent emails from Qantas are now including the following blurb just underneath the main header -:

Emails from Qantas will never ask you for your personal details, password or PIN. Always log into your Frequent Flyer account via our Qantas apps or websites. Please visit our cyber awareness page on the Qantas website for more information.

 

[RooFlyer]

While nobody liked this unauthorised access to data, its not a unicorn by any stretch.

https://loyaltylobby.com/2025/07/22/fraudsters-emptying-british-airways-avios-accounts-through-iberia/

Notorious hacker group sets sights on airline industry in alarming security threat

Cybercriminal group Scattered Spider is targeting the airline industry, including Hawaiian Airlines, prompting FBI warnings about potential disruptions.

www.foxbusiness.com

So per the Loyalty Lobby story I just tried to link my Iberia Plus and BA accounts. But I can't. On the Iberia site:



Clicking 'conditions'


I haven't been able to earn Iberia Avios, so haven't been able to buy any and so its the second point that stymies me.

So how would the 'Loyalty lobby' technique work? #

# Hacker opens an Iberia account in the victim's name. Links the accounts. Transfers the BA account Avios to the bogus Iberia one.

 

[AuSammy]

So per the Loyalty Lobby story I just tried to link my Iberia Plus and BA accounts. But I can't. On the Iberia site:

View attachment 459528

Clicking 'conditions'

View attachment 459529
I haven't been able to earn Iberia Avios, so haven't been able to buy any and so its the second point that stymies me.

So how would the 'Loyalty lobby' technique work? #

# Hacker opens an Iberia account in the victim's name. Links the accounts. Transfers the BA account Avios to the bogus Iberia one.

I don’t have either membership, so cant add anything to the LL posting

 

[Aeryn]

Qantas hack: Court documents reveal scope of communications between hackers and the Flying Kangaroo

A self-identified hacking “collective” made several attempts to open communications with Qantas before the airline responded.

www.cyberdaily.au

 

[prozac]

Qantas hack: Court documents reveal scope of communications between hackers and the Flying Kangaroo

A self-identified hacking “collective” made several attempts to open communications with Qantas before the airline responded.

www.cyberdaily.au

Surprising that Qantas responded at all considering it's track record of communicating.

 

[Flyerwin]

Qantas hack: Court documents reveal scope of communications between hackers and the Flying Kangaroo

A self-identified hacking “collective” made several attempts to open communications with Qantas before the airline responded.

www.cyberdaily.au

Fascinating.

Do you think companies like Qantas should pay the ransom? My understanding is that some companies do. Just wondering what people think.

 

[Quickstatus]

Surprising that Qantas responded at all considering its track record of communicating.

Sounds like the hackers had to do a few HUACAs?.
Maybe they are getting the usual runaround by the CapeTown or the various Mind Pearl call centres or are yet to make it to the Hobart crew

 

[DejaBrew]

Do you think companies like Qantas should pay the ransom? My understanding is that some companies do. Just wondering what people think.

99% of the time I would strongly disagree with paying a ransom. For one, it just encourages them to go back for more. But most importantly, what assurance do you have that the hacker wouldn't simply collect the ransom and release the data anyway?

 

[odysseus]

99% of the time I would strongly disagree with paying a ransom. For one, it just encourages them to go back for more. But most importantly, what assurance do you have that the hacker wouldn't simply collect the ransom and release the data anyway?

That nobody would pay their ransom in future.

They operate just like businesses, just the material is illegal. But business trust is still a significant part. If they don't keep their word then they won't get future ransoms. And I'm yet to hear of any hacker group dumping records after they have been paid - what is their incentive or benefit to do so? They've been paid, so releasing the records doesn't give them anything except destroys the point of all their efforts (i.e. making money from stealing data).

As for the comment that "it encourages them to go back for more" even if there was no financial benefit, there was always an incentive from long ago; for people to prove what they could do. But even if - impossibly - nobody did it for ransom, they'd still do it for other reasons e.g. to hack into customer's accounts and steal things in other ways, to share or get personal details on people, and likely other reasons. It's been occurring since the internet existed, and certainly isn't going to stop just because ransoms didn't get paid. But they will also get paid in some cases, as it's the right business thing to do,

As to the question, it's effectively a fine for not managing their customer's data adequately; a cost of doing business when they make a mistake. They should do everything in their power to do right by their customers whose data they didn't manage correctly. Though for many companies it's evident they don't care since it doesn't financially affect them. Cheaper to ignore the hackers or take the 'moral high ground' than it is to resolve the issue.