Australian airline Qantas has confirmed that personal data of 5.7 million customers appeared online following a major cyberattack earlier this year.
The data breach is part of a a wider incident that affected dozens of international companies, including Air France, Disney, Google, KLM, IKEA, Toyota, and McDonald’s. The attackers are also attempting to extort Salesforce and threatening to publish information about affected customers online.
Qantas now confirms that customer data has been published online by the attackers, affecting more than 5 million of the airline’s customers. Affected customers have been notified by Qantas via email. The airline also disclosed which data per customer was leaked.
The Guardian reports that customers’ names, email addresses, and frequent flyer information, among other things, were leaked. In some instances, this also included home or business addresses, dates of birth, phone numbers, gender, and meal preferences. Identity documents, credit card information, or financial details were reportedly not leaked.
