---
title: "Qantas cyber incident: Executives punished by the board! | Phish Protection"
description: "Qantas cyber incident: Executives punished by the board!: https://media.mailhop.org/phishprotection/images/2025/09/Qantas-cyber-incident-Executives-punished-b."
image: "https://phishprotection.com/og/blog/qantas-cyber-incident-executives-punished-by-board.png"
canonical: "https://phishprotection.com/blog/qantas-cyber-incident-executives-punished-by-board/"
---

Quick Answer

by Phishing Protection https://media.mailhop.org/phishprotection/images/2025/09/Qantas-cyber-incident-Executives-punished-by-the-board.mp3 If you are a frequent flyer at Qantas, you cannot afford to miss this! Australia’s largest airline, Qantas, suffered a cyber mishap earlier in June this year. It seems like the airline company is still struggling with the repercussions of the cyberattack .

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fqantas-cyber-incident-executives-punished-by-board%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Qantas%20cyber%20incident%3A%20Executives%20punished%20by%20the%20board!&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fqantas-cyber-incident-executives-punished-by-board%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fqantas-cyber-incident-executives-punished-by-board%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fqantas-cyber-incident-executives-punished-by-board%2F&title=Qantas%20cyber%20incident%3A%20Executives%20punished%20by%20the%20board! "Share on Reddit") [ ](mailto:?subject=Qantas%20cyber%20incident%3A%20Executives%20punished%20by%20the%20board!&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fqantas-cyber-incident-executives-punished-by-board%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2025/09/cyber-threat.jpg) 

##### Qantas cyber incident: Executives punished by the board!

by **Phishing Protection**

```
				<audio class="wp-audio-shortcode" id="audio-249408-8" preload="none" style="width: 100%;" controls="controls"><source type="audio/mpeg" src="https://media.mailhop.org/phishprotection/images/2025/09/Qantas-cyber-incident-Executives-punished-by-the-board.mp3?_=8" />[https://media.mailhop.org/phishprotection/images/2025/09/Qantas-cyber-incident-Executives-punished-by-the-board.mp3](https://media.mailhop.org/phishprotection/images/2025/09/Qantas-cyber-incident-Executives-punished-by-the-board.mp3)</audio>
```

If you are a frequent flyer at Qantas, you cannot afford to miss this!

Australia’s largest airline, Qantas, suffered a cyber mishap earlier in June this year. It seems like the airline company is still struggling with the repercussions of the[cyberattack](/cybersecurity/big-sleep-prevents-cyberattack-in-first-of-its-kind-instance).

The Qantas board has decided to punish the executives because of the financial loss incurred due to the attack.

The cyber incident has \*\* affected customer data\*\* , and as a result, the board of directors has decided to bring down the compensation for the executive team and CEO Vanessa Hudson by 15%. This immediately leads to a reduction of a whopping[$250,000](https://www.darkreading.com/cyberattacks-data-breaches/qantas-reduces-executive-pay-cyberattack)for Hudson.

The Qantas team got to know about the cyberattack back on June 30\. The threat actors had managed to breach into a third-party platform that Qantas was using as a customer service contact support. Before Qantas could do anything, the[cybercrooks](/phishing/pandora-targeted-by-cybercrooks-what-you-should-know)had already gained access to the personal data of a \*\* staggering 5.7 million passengers\*\* .

![Cyber threat](https://media.mailhop.org/phishprotection/images/2025/09/cyber-threat.jpg) 

Interestingly enough, the cyber incident took place just a few days after a warning issued by the FBI. They had warned people against a cybercriminal group named the[Scattered Spider](https://www.aha.org/news/headline/2025-07-30-tactics-scattered-spider-cybercriminals-highlighted-joint-advisory).

The same group of cybercrooks is responsible for_\*\*_ multiple cyberattacks\_\*\*\_ on several popular UK retailers, such as M&S.

Before Qantas, Canada’s WestJet, and US-based Hawaiian Airlines were also targeted by cybercrooks. The Qantas breach is the latest addition to the list of 2025 breaches in Australia. Nine Media and AustralianSuper had already been targeted in recent times. In March 2025, the OAIC, or the Office of the Australian Information Commissioner, released data revealing[2024](https://www.bbc.com/news/articles/cd6gnyl9923o)as the worst year for**data breaches since 2018**. 

Right after the attack,[CEO Hudson](https://www.abc.net.au/news/2025-07-04/qantas-ceo-apologises-for-cybersecurity-data-breach/105494842)stated that Qantas had been working tirelessly to find out what type of customer data was compromised. Qantas had promised to offer adequate assistance to its customers regarding \*\* cyber protection\*\* . The CEO had asked customers to contact the dedicated support line if they encountered any suspicious activity.

![Data breach](https://media.mailhop.org/phishprotection/images/2025/09/data-breach.jpg) 

Qantas has been working closely with agencies such as the Australian Federal Police, the Australian Cyber Security Centre, and the Office of the Australian Information Commissioner. 

The targeted database contained the names and email addresses of over[4 million](https://www.cybersecuritydive.com/news/qantas-cyberattack-57-million-customers/752571/)passengers. Around 2.8 million of these records included the passenger’s frequent flyer numbers. The**remaining 1.7 million records**consisted of details such as gender, dates of birth, phone numbers, meal preferences, and gender information. However, what’s reassuring is that the cybercriminals don’t have access to sensitive data, such as payment card numbers, passport numbers, financial information, and Qantas account credentials.

Passengers were cautioned against any**suspicious messages**or calls from people who pretend to be from Qantas. To prevent similar cyber mishaps in the future, the Qantas Group has implemented multiple[cybersecurity measures](https://www.uscourts.gov/data-news/judiciary-news/2025/08/07/cybersecurity-measures-strengthened-light-attacks-judiciarys-case-management-system). 

However, since last month, Qantas has been warning its customers against a sudden spike in the incidents of**malicious attempts**whereby scammers are posing as Qantas personnel and trying to connect with customers through[phishing emails](/content/stop-phishing-emails/how-to-stop-phishing-emails-in-outlook)and messages. 

![Cyber attack info](https://media.mailhop.org/phishprotection/images/2025/09/cyber-attack-info.jpg) 

### **Who was behind the cyberattack?**

A group of hackers, known as UNC6040, carried out the**threat attack on Qantas**. Besides the Australian airline, this group has managed to breach the systems of popular brands such as Cisco, Adidas, and Pandora, among others. The hacker group has a connection with the[ShinyHunters](https://slcyber.io/blog/google-confirms-data-breach-linked-to-shinyhunters/)collective. So far, Qantas has been tight-lipped about any details pertaining to the perpetrators.

Qantas said that it has been prepping for sophisticated[social engineering](https://cybersecuritynews.com/hacked-in-300-seconds/)threats. The latest cyber incident has also taught Qantas about the intricacies of incorporating a risk management framework . Qantas has claimed that it is now all set to combat any kind of cyber threats and that the passengers and their data are safe from any \*\* cyber advances\*\* .

John Muen, the chairman of Qantas Group, has claimed that the last financial year has been “outstanding” and that the company has managed to achieve significant milestones around **customer satisfaction**, performance, and company reputation. But their statement and subsequent actions don’t really match each other. 

![Threat group](https://media.mailhop.org/phishprotection/images/2025/09/threat-group.jpg) 

The annual bonuses of the CEO and executives have been reduced by 15%.

The \*\* reduction portrays\*\* the shared accountability of Qantas in these difficult times. The reduction was necessary to cater to the[customer support](https://devrev.ai/blog/what-is-customer-support)systems Qantas has been establishing to assist the impacted passengers.

Experts like Cary Kind, the Australian Privacy Commissioner, warn that data breaches driven by sophisticated cybercrimes are likely to rise in the coming months and years. To counter this, businesses and agencies must strengthen their cybersecurity measures , implement[phishing protection](/), and establish robust data protection systems. He also emphasizes that both **private and public sectors** remain highly vulnerable to these growing threats in the future.

## Topics

[ Phishing ](/tags/phishing/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Foundational 5m  0ktapus, Okta Breach Helps Attackers Launch Sophisticated Supply Chain Attacks  Sep 5, 2022 ](/blog/0ktapus-okta-breach-helps-attackers-launch-sophisticated-supply-chain-attacks/)[  Foundational 4m  13 Spear Phishing Attacks Examples To Justify Investment For Phishing Prevention Solutions In Your Organization  Aug 1, 2019 ](/blog/13-spear-phishing-attacks-examples-to-justify-investment-for-phishing-prevention-solutions-in-your-organization/)[  Foundational 4m  All 14 centers of Kettering Health were affected by a massive ransomware attack, Major outage in the Ohio medical center  May 23, 2025 ](/blog/14-centers-of-kettering-health-were-affected-by-massive-ransomware-attack-in-ohio-medical-center/)[  Foundational 4m  2021 Phishing Trends You Need To Be Wary Of  Aug 2, 2021 ](/blog/2021-phishing-trends-to-be-wary-of/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Qantas cyber incident: Executives punished by the board!","description":"Qantas cyber incident: Executives punished by the board!: https://media.mailhop.org/phishprotection/images/2025/09/Qantas-cyber-incident-Executives-punished-b.","url":"https://phishprotection.com/blog/qantas-cyber-incident-executives-punished-by-board/","datePublished":"2025-09-11T10:20:38.000Z","dateModified":"2026-04-17T16:29:18.000Z","dateCreated":"2025-09-11T10:20:38.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/qantas-cyber-incident-executives-punished-by-board/"},"articleSection":"foundational","keywords":"Phishing","wordCount":873,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2025/09/cyber-threat.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://phishprotection.com/foundational/"},{"@type":"ListItem","position":4,"name":"Qantas cyber incident: Executives punished by the board!","item":"https://phishprotection.com/blog/qantas-cyber-incident-executives-punished-by-board/"}]}
```