Australian airline Qantas says millions of customers' data leaked online / Photo: © AFP/File
-
Stocks slip, oil climbs as US-Iran truce expiry looms
-
In Portugal, Lula urges return to multilateralism
-
Sinner wants to use Madrid to boost career Grand Slam chances
-
Renewables key to buffer fossil fuel energy shock: COP31 co-hosts
-
Chery wants to make small electric car in Europe
-
Donovan steps down as Bulls coach
-
US official says gas prices have peaked despite Iran war
-
Pope calls for 'law and justice' on Equatorial Guinea visit
-
Trump's Fed chair pick vows to safeguard independence at confirmation hearing
-
Mideast war lights fire under energy transition plans
-
Trump says Iran violated truce as doubt surrounds peace talks
-
Djibouti president re-election confirmed with 97% of vote
-
Barcelona need leaders to fulfil Flick's Champions League dream
-
Guardiola hints that Rodri will make swift Man City return
-
'We weren't soft, we were skilled': Nowitzki on NBA's European revolution
-
PSG and Luis Enrique sweat on Vitinha ahead of Champions League semis
-
Counting a billion people: Inside India's mega census drive
-
UK tackles electricity price link to world gas amid Mideast war
-
In south Lebanon's Nabatieh, residents fear a return to war
-
Bangladesh fuel crunch forces hours-long wait at the pump
-
Fondness for Francis undimmed one year after pope's death
-
Oil and stocks steady as US-Iran truce expiry looms
-
Downing Street exerted pressure to OK Mandelson: sacked UK official
-
Pope visits Equatorial Guinea on last stop of Africa tour
-
German investor morale lowest in over 3 years on Iran war fallout
-
FedEx faces French 'genocide' complaint over Israel cargoes
-
No Iran delegation sent to US talks yet as truce expiry nears
-
Rover discovers more building blocks of life on Mars
-
Russia, North Korea connect road bridge ahead of summer opening
-
'Strangled': Pakistan faces economic imperative in Iran war peace push
-
Michael Jackson fans pack Hollywood for biopic premiere
-
Turkey arrests 110 coal miners on hunger strike
-
Associated British Foods to spin off Primark clothes brand
-
Pope visits Eq. Guinea on last stop of Africa tour
-
Hello Kitty's parent company to make own video games
-
Di Matteo says 'vital' for faltering Chelsea to add experience
-
Ex-Spurs star Davids condemns 'lack of quality, lack of management'
-
Turkmenistan, the gas giant increasingly dependent on China
-
Romanian AI music sensation Lolita sparks racism debate
-
Timberwolves battle back to stun Nuggets in NBA playoffs
-
Eta appointment 'no surprise' for Union Berlin's ascendant women
-
Democrats eye Virginia gains in war with Trump over US voting map
-
Tourists trickle back to Kashmir, one year after deadly attack
-
Inside the world of ultra-luxury wedding cakes
-
Chinese AI circuit board maker soars on Hong Kong debut
-
Oil prices dip, most stocks rise on lingering Iran peace hopes
-
Tim Cook's time as Apple chief marked by profit absent awe
-
Mitchell, Harden shine as Cavs down Raptors for 2-0 series lead
-
El Salvador's missing thousands buried by official indifference
-
Trump's Fed chair pick to face lawmakers at key confirmation hearing
NYSE - LSE
Australian airline Qantas says millions of customers' data leaked online
Australian airline Qantas said Sunday that data from 5.7 million customers stolen in a major cyberattack this year had been shared online, part of a leak reportedly involving dozens of firms.
Qantas said in July that hackers had targeted one of its customer contact centres, breaching a computer system used by a third party.
They secured access to sensitive information such as customer names, email addresses, phone numbers and birthdays, the blue-chip Australian company said.
Credit card details and passport numbers were not kept in the system, Qantas stressed at the time.
AFP understands the third-party involved is software firm Salesforce, which said last week that it was "aware of recent extortion attempts by threat actors".
The hackers have also obtained stolen data from dozens of other companies including Disney, Google, IKEA, Toyota, McDonalds, and fellow airlines Air France and KLM.
"Qantas is one of a number of companies globally that has had data released by cyber criminals following the airline's cyber incident in early July, where customer data was stolen via a third party platform," the company said in a statement.
"With the help of specialist cyber security experts, we are investigating what data was part of the release," it added.
It also said it had obtained a legal injunction with the Supreme Court of New South Wales, where the firm is headquartered, "to prevent the stolen data being accessed, viewed, released, used, transmitted or published by anyone, including third parties".
Cybersecurity analysts have linked the hack to individuals linked to an alliance of cybercriminals called Scattered Lapsus$ Hunters.
Research group Unit 42 said in a note the group had "asserted responsibility for laying siege to customer Salesforce tenants as part of a coordinated effort to steal data and hold it for ransom".
The hackers had reportedly set an October 10 deadline for ransom payment.
Threat intelligence platform FalconFeeds said on X the customer data had been posted on the dark web over the weekend.
Vietnam Airlines, clothing giant Gap and Japanese multinational Fujifilm also had data leaked, it said.
The hackers reportedly stole the sensitive data using a social engineering technique, referring to a tactic of manipulating victims by pretending to be a company representative or other trusted person.
P.Staeheli--VB
