The ACCC’s Scamwatch is warning of a “spike” in studies of on-line scammers impersonating Qantas to steal cash and private data.
Based on an e-mail alert despatched out by Scamwatch, scammers are masquerading because the Flying Kangaroo in emails and textual content messages that “create a way of urgency to try to get you to behave rapidly with out checking first”.
This content material is accessible solely to Australian Aviation members.
To proceed studying the remainder of this text, please login.
To unlock all Australian Aviation journal content material and once more limitless entry to our day by day information and options, turn into a member right this moment!
A month-to-month membership is simply $5.99 or save with our annual plans.
See advantages
Australian Aviation quarterly print & digital magazines
Entry to In Focus studies each month on our web site
MOST POPULAR
PRINT + DIGITAL
See advantages
Limitless entry to all Australian Aviation digital content material
Entry to the Australian Aviation app
Australian Aviation quarterly print & digital magazines
Entry to In Focus studies each month on our web site
Entry to our Behind the Lens photograph galleries and different unique content material
Day by day information updates by way of our e-mail bulletin
DIGITAL
See advantages
Limitless entry to all Australian Aviation digital content material
Entry to the Australian Aviation app
Australian Aviation quarterly print & digital magazines
Entry to In Focus studies each month on our web site
Entry to our Behind the Lens photograph galleries and different unique content material
Day by day information updates by way of our e-mail bulletin
“Scammers will use Qantas logos and branding to make the communication look actual. The e-mail or textual content message will urge you to click on a hyperlink to both declare a refund, declare a present, or redeem factors which can be about to run out,” the alert says.
“Should you click on this hyperlink you’ll be directed to a rip-off web site designed to steal any data you enter.
“Qantas has been warning of those kinds of scams, which had been first recognized in August 2025, and encourages prospects to be alert to continued rip-off exercise. The airline doesn’t contact prospects to ask for his or her PINs, passwords, or one-time passwords in textual content messages or e-mail.
“Anybody might be focused by this rip-off. You don’t want to be an current Qantas buyer or Qantas Frequent Flyer. Nonetheless, individuals who know or suspect they’ve been concerned in an information breach could also be at higher threat of being focused.”
On the Qantas help web site, the airline has additionally suggested of a brand new “account safety safety” rip-off recognized this month.
“This newest rip-off urges prospects to rapidly present account and monetary particulars, typically with the e-mail topic ‘Keep away from Service Interruption’. It goals to gather private data and cost card knowledge,” the web site notes.
Qantas has seen elevated studies of impersonation scams since its knowledge breach in July 2025, which reportedly concerned cyber criminals utilizing AI to impersonate a Qantas worker after which tricking a customer support operator in Manila into divulging essential data.
Round 5.7 million prospects had been affected, with knowledge stolen together with names, e-mail addresses, and Frequent Flyer numbers.
“Via the NSW Supreme Courtroom, now we have an ongoing injunction in place to forestall the stolen knowledge being accessed, seen, launched, used, transmitted or printed by anybody, together with third events,” Qantas mentioned in an October replace.
“Now we have additionally put in place further safety measures, elevated coaching throughout our groups and strengthened system monitoring and detection because the incident occurred.
“In July, Qantas proactively suggested all impacted prospects of the sorts of their private knowledge that was contained within the impacted system and this has not modified.”
Greater than 150 gigabytes of buyer knowledge was reportedly dumped to the darkish internet by the group behind the hack, Scattered Lapsus$ Hunters, in October.
