Qantas Reduces CEO Bonuses Following Cyberattack Revealing Customer Data
Qantas has recently revealed a 15% cut in bonuses for its CEO and executive team following a cyberattack in July 2025 that compromised personal information of millions of customers.
In the financial report for the year 2025, released on September 5, it was noted that this reduction translates to a decrease of AU$250,000 (US$162,500) for Group CEO Vanessa Hudson.
“Acknowledging the severity of this incident, we opted to lower the short-term bonuses for the CEO and Executive Management for 2024/25,” stated John Mullen, Chairman of Qantas Group. “This action underscores our dedication to fostering a culture of accountability.”
The report emphasized that this decision highlights the critical nature of the security of its systems while recognizing the necessity for improvements.
These bonus reductions arrive amid Qantas’ FY25 performance announcements, where the airline declared an underlying profit before tax of AU$2.39 billion (US$1.56 billion), as well as noted enhancements in operational performance, customer satisfaction, and employee engagement.
Continued Investigation into Cyber Breach
Qantas has indicated that the board is aware the investigations surrounding this incident may require some time to finalize. However, it emphasized the importance of addressing the remuneration impact of this breach this year, for the benefit of both executives and shareholders.
The cyber incident occurred on July 2, 2025, targeting one of Qantas’s call centers and affecting a third-party customer service platform. Fortunately, the airline confirmed that flight operations and safety were not compromised, and just a week later clarified that no financial data had been breached.
However, a review of customer data indicated that out of 5.7 million unique records, around four million were exposed, including names, email addresses, and details related to Qantas Frequent Flyer accounts.
In the report, Qantas reiterated its apology for the incident, acknowledging the “uncertainty it caused” and stating that management acted swiftly to contain the situation, bolster security measures, and assist affected customers.
What are your thoughts on Qantas’s response to the cyber incident?
