Overview
A third-party call center platform used by Qantas was breached
Key points:
- Names, emails, phone numbers, and birth dates leaked.
- No financial or login data accessed.
- Attackers exploited weak vendor security.
- Highlights risks of outsourcing customer service.
Questions to consider
- Do you audit your vendors’ security posture?
- Are you enforcing zero-trust on third-party access?
- What’s your breach notification protocol?