Table of contents
- A worldwide digital assault
- The Qantas case and the Salesforce breach
- Who’s behind the attack
- Personal data: the new gold of cybercrime
- Up to one billion records in the hands of hackers
- A wake-up call for cyber security
A worldwide digital assault
A massive global cyberattack has struck some of the world’s largest corporations including Qantas, Disney, Google, IKEA, Toyota, McDonald’s, Air France, and KLM compromising millions of personal records.
Australian airline Qantas confirmed that 5.7 million customers’ data had been leaked online, in what appears to be part of a coordinated hacking campaign linked to Salesforce, the U.S.-based Customer Relationship Management (CRM) provider used by many multinational companies.
Initial investigations suggest hackers gained access to names, email addresses, phone numbers, and dates of birth, though no payment data or passport numbers were compromised.
The Qantas case and the Salesforce breach
Qantas explained that the breach occurred via a third-party platform operated by Salesforce.
The airline obtained an injunction from the Supreme Court of New South Wales to prevent the use or dissemination of the stolen data, while cooperating with cyber security experts and Australian authorities to assess the full scale of the incident.
Salesforce acknowledged awareness of extortion attempts connected to the breach and stated it is working with security experts and law enforcement, suggesting that some incidents might stem from older or unverified attacks.
Who’s behind the attack
Cyber security analysts believe the attack was orchestrated by the Scattered Lapsus$ Hunters, a network of cybercriminals known for large-scale digital extortion campaigns.
According to Jeremy Kirk, intelligence researcher at Intel 471, at least 44 international companies were affected, including Gap, Vietnam Airlines, Adidas, and Fujifilm.
“This isn’t a new threat,” Kirk told The Guardian, “but a highly skilled group that understands how corporate systems interconnect.”
Personal data: the new gold of cybercrime
Even though no financial data was stolen, experts warn that the leaked personal information could be used for identity theft, targeted phishing, and online scams.
The combination of names, emails, and dates of birth is often enough to reconstruct full digital profiles and launch customized fraud attempts.
“These criminal groups are becoming increasingly sophisticated,” Kirk explained, “crafting personalized scam emails using stolen data. It’s fueling a hidden economy of cybercrime.”
Up to one billion records in the hands of hackers
Cyber intelligence platform FalconFeeds reported that the stolen data was published on the dark web over the weekend.
It’s estimated that hackers may have accessed up to one billion customer records, affecting dozens of multinational companies simultaneously.
This new wave of attacks confirms a troubling trend: global digital infrastructures are increasingly vulnerable, and third-party technology supply chains represent their weakest link.
A wake-up call for cyber security
The Qantas–Salesforce incident highlights how even well-protected corporations can fall victim to compromised vendors and shared vulnerabilities.
Experts urge companies to adopt Zero Trust security strategies, continuous supplier monitoring, and rapid incident response plans to minimize damage from future attacks.
The takeaway is clear: in today’s digital battlefield, cooperation between companies, governments, and citizens is the only way to protect personal data and the global economy.
