How to tell if your Qantas personal data has hit the dark web and what you can do about it

What happened and why it matters

Qantas has confirmed that customer data linked to its systems has appeared on the dark web following a cybercriminal operation tied to Salesforce-connected services. While some details vary by individual, the breach may include email addresses, home addresses, dates of birth, phone numbers and frequent flyer data. Importantly, no credit card details were reported as affected. This incident underscores how modern breaches can propagate across large networks and affect millions of people, even when only a subset of data is exposed.

How you can tell if your data has been leaked

There isn’t a single, foolproof alert that will tell you immediately. Still, there are practical steps to gauge exposure:

• Check your original breach notification emails from Qantas and any follow-up messages from the airline or regulators.
• Look for unusual login attempts or password reset requests on accounts you use (email, banking, social media, government services).
• Monitor credit activity if you’ve had data exposure that included personal identifiers. You can run free credit checks through official channels.
• Be alert to impersonation attempts by phone, email or text claiming to be from Qantas or authorities. Do not share passwords or sensitive data.

Legal actions and court orders can complicate verification. Qantas has noted it has taken steps to restrict access to stolen data, but individuals should assume their information may be in circulation until advised otherwise.

What the dark web exposure could mean for you

Releasing data publicly enables broader misuse, including account impersonation, creation of fake identities, and targeted phishing attempts. Even basic data like an email address or home address can be used to craft convincing scams. The risk increases if multiple data points (address, DOB, contact numbers) appear together, helping fraudsters build credible profiles.

Ways scammers might try to abuse your data

• Impersonation to reset passwords on online services
• Phishing attempts that reference real personal details
• Creation of fraudulent accounts on shopping, crypto or betting platforms
• Contact by phone or text pretending to be Qantas or a government agency

Given broader cyber incidents in Australia in recent years, the risk landscape has become more complex for many households, as multiple data leaks can compound exposure.

How to reduce harm and protect yourself

Acting quickly can reduce potential fallout:

• Do not click on suspicious links or share credentials in response to emails, texts or calls. Verify identity through official channels.
• Enable two-step authentication where possible, especially for email and financial accounts.
• Secure your accounts with unique, strong passwords; consider a reputable password manager.
• If you suspect fraud, place a free credit freeze or monitor your credit reports through official services.
• Regularly review account statements for unusual activity and report suspected fraud to the relevant authorities.

Qantas has suggested that affected customers should have received individualized notices. If you’re unsure, reach out through official Qantas contact channels and consider broader protections offered by consumer groups and government resources.

Where to turn for help

Not-for-profit and public resources can assist with protecting personal information, including IDCare, the Australian Cyber Security Centre, Scamwatch and the Office of the Australian Information Commissioner. If you believe you’ve fallen victim to fraud, notify your bank or card issuer immediately and document any suspicious activity.