A software company, which holds the personal data of 5.7 million Qantas customers, has just hours to cough up a ransom payment to a hacker group threatening to leak nearly 1 billion sensitive customer records.

Notorious cyberhacker group Scattered Lapsus$ Hunters claims to have stolen a cache of personal customer records from 39 major companies who stored data with software giant Salesforce, after they targeted the software company between April 2024 and September 2025.

More than a billion records have been stolen from the 39 companies, including the Qantas Frequent Flyers program, Toyota, Disney, McDonalds, and HBO Max.

The hackers have threatened to release this personal data in a matter of hours, giving Salesforce until October 11 11:59pm New York time - or 3pm AEST - to pay a ransom

See Full Page