Vanessa Brown reports:
Qantas has confirmed that six million customers could be impacted by a mammoth cyber incident at one of the airline’s contact centres, impacting personal data.
The concerning incident was detected by the national carrier on Monday, after “unusual activity” on a third party platform used by Qantas was detected.
While the airline says the “system is now contained”, some six million customers have service records in this platform and therefore could be impacted.
[…]
It is understood the incident occurred when a cyber criminal targeted a call centre, based in Manila in the Philippines, and gained access to a third party customer servicing platform.
Read more at news.com.au
No threat actor group has claimed responsibility for the attack. The aviation sector has reportedly been targeted by Scattered Spider, and the use of social engineering to gain access to a third-party platform would be consistent with their methods, but there has been no attribution by Qantas as of publication.