🚨 Breaking News: Qantas customers, brace yourselves! A group of cyber miscreants, known as Scattered Lapsus$ Hunters, have leaked sensitive data of around 5 million Qantas flyers onto the dark web. This means your contact details, flight info, and even birth dates could be out there, ripe for the picking by cybercriminals looking to phish, steal identities, or commit fraud.
How did this happen?
The hackers exploited a weakness in the integration between Salesloft and Salesforce, compromising hundreds of organizations across various industries. Qantas was just one of the 44 unlucky companies caught in the net, with others including big names like Disney, Toyota, McDonald’s, and Vietnam Airlines.
The Ransom Drama
Scattered Lapsus$ Hunters initially tried to squeeze some money out of Qantas by threatening to delete the stolen files. But the airline stood firm and refused to negotiate, saying they “will not engage, negotiate with, or pay any extortion demand”. In retaliation, the hackers made good on their threat and released the data onto the dark web.
What’s in the Leak?
The leaked data includes names, email addresses, phone numbers, birth dates, and frequent flyer numbers. Phew, at least credit card details, financial information, and passport details were not compromised. But still, it’s a lot of sensitive info out there!
Not Just Qantas
It turns out, Qantas isn’t the only company affected. According to cybersecurity analysts at Intel 471, 44 companies in total were included in the leak. Other victims include Gap, Vietnam Airlines, Toyota, Disney, McDonald’s, Ikea, and Adidas.
Who are Scattered Lapsus$ Hunters?
This motley crew is a merger of sorts, comprising members of Scattered Spider, Lapsus$, and ShinyHunters. After the Salesloft/Salesforce breach, they announced they were “going dark”, but it seems they couldn’t resist the spotlight for long.
Stay Safe, Folks!
If you’re a Qantas flyer, keep an eye on your accounts and be extra vigilant against phishing attempts. And hey, maybe take this as a reminder to use strong, unique passwords and enable two-factor authentication wherever you can.
Stay Tuned for More Updates!
