- Unidentified threat actors are directed to the Qantas Calls Center
- This allows you to get access to client confidential data
- It is likely that the attack is the work of the scattered spider, experts claim
Another important airlines has been affected by a large cyber attack after Qantas, the largest flight supplier in Australia, confirmed that it had been attacked
In a press release published on the company’s website, Qantas said he saw the intrusion after a threat actor went to a call center and agreed to a third -party customer service platform.
The name of the platform was not revealed, but Qantas said that six million customers have service records there.
Scattered spider
“We continue to investigate the proportion of the data that have been stolen, although we hope it is significant,” says the press release.
“An initial review has confirmed that the data includes the names of some customers, email addresses, telephone numbers, birth dates and frequent flying numbers.”
However, the details of the credit card, the personal financial information and the passport details were not stolen, since they do not even remain in this particular system. Therefore, passwords, pin numbers, login details and frequent flying accounts remain without compromises, the company confirmed.
Qantas also said that the system is now contained and that it notified the relevant authorities, as well as the affected people. The operations and safety of the airline were not in danger at any time.
The company did not say who the threat actors were, or if they tried to implement any ransomware.
However, the incident shares many similarities with other attacks recently made by the group known as Spider Scattered.
This group has not yet assumed the responsibility of this attack, but in recent weeks, multiple reports have emerged that airlines are beaten by cyber attacks, with Hawaiian Airlines confirmed that it suffers an attack and both Westjet and Globalx suffer the same destination recently.
Through Bleepingcomputer
