Qantas has confirmed that it was targeted by a cyberattack just days after the Federal Bureau of Investigation (FBI) warned about 2FA bypass attacks targeting the airline industry. The attack, attributed to Scattered Spider hackers, compromised a third-party supplier and potentially exposed the personal information of six million customers.
The FBI had issued a warning stating that Scattered Spider was shifting its focus to transportation and aviation in particular. Cybersecurity experts say the group uses social engineering techniques, often impersonating employees or contractors, to deceive IT help desks into granting access.
Qantas has taken immediate action, containing the system and confirming that all other Qantas systems remain secure. The airline has published a statement detailing the incident and assuring customers that no credit card details, personal financial information, or passport details were stored on the compromised platform.
Customers are advised to be cautious of suspicious communications claiming to be from Qantas or requesting personal information or passwords. A dedicated Qantas cyber incident support line is available for assistance.
Industry experts emphasize the need for businesses to assess their cyber defences internally and across supply chains. With six million customers at risk, Qantas’ data breach serves as a stark reminder of the importance of robust logging and monitoring practices in cybersecurity.
Experts also warn that over-disclosure about the incident can lead to unnecessary alarm and damage customer trust. Clear, specific communication is key to maintaining public trust and supporting a transparent response.
Source: https://www.forbes.com/sites/daveywinder/2025/07/04/fbi-2fa-bypass-warning-issued—the-attacks-have-started