Qantas Airways has acknowledged a data security incident involving the misconfiguration of its mobile app.

The airline confirmed that the glitch led to the unintended exposure of sensitive traveler details to other app users.

The exposed data potentially included personally identifiable information, upcoming flight details, boarding passes, and other account information.

Several Qantas app users took to social media to report the breach, stating they were able to access the travel details of strangers.

Qantas responded swiftly after the reports surfaced, attributing the exposure to recent system changes. As a precautionary measure, the airline recommends that all users of its ‘Frequent Flyer’ program log out of their accounts on the Qantas app. The company also urges customers to remain vigilant about potential social media scams that may exploit the situation.

“The issue was isolated to the Qantas app with some frequent flyers able to see the travel information of other customers, including name, upcoming flight details, points balance, and status,” explained Qantas in its announcement.

“No further personal or financial information was shared, and customers would not have been able to transfer or use the Qantas Points of other frequent flyers.”

The extent of the breach and the total number of affected users remain unclear at this time.

READ
Chinese Hackers Breach Over 20,000 FortiGate Systems Worldwide in Extensive Cyber Espionage Campaign