Qantas is continuing to respond to the cyber incident that resulted in customer data being compromised.
The following is an update on the response to date:
Cyber response
We continue to work with specialist cyber security experts, including to forensically analyse the impacted system.
The investigation to date has reaffirmed:
- There has been no further threat activity in the system
- The system remains secure
- No credit card details, personal financial information or passport details were stored on this system and therefore were not accessed
- There is no impact to Qantas Frequent Flyer accounts
Qantas has not been contacted by anyone claiming to have the data and we're continuing to work with the Government authorities to investigate the incident.
Additional security measures have been put in place to further restrict access and strengthen system monitoring and detection. This includes additional security measures for Qantas Frequent Flyer accounts to further protect these from unauthorised access, including requiring additional identification for account changes.
Customer communications
Next week we will be in a position to update affected customers on the types of their personal data that was contained in the system. This will confirm specific data fields for each individual which will vary from customer to customer.
