Qantas App issues?

[KSC]

Hey @qantas (or someone who works at Qantas) if you are posting here or see this. Please note I’d like 1 billion points as a result of the app problems yesterday. Thanks Goodbye

Just a modest 100,000 status credits for me @qantas.

 

[I love to travel]

Just a modest 100,000 status credits for me @qantas.

I just want you to become an airlines I can be proud to call an Australian airline (@qantas has not been seen since 2010 so no point including their handle)

 

[henrus]

Just a modest 100,000 status credits for me @qantas

Ah cough I forgot to mention in addition to the 1 billion points for the app issues, I think I’ll only feel ok if I also get lifetime CL (that way you don’t need to worry about the SCs).

 

[Cloud9]

Hey @qantas (or someone who works at Qantas) if you are posting here or see this. Please note I’d like 1 billion points as a result of the app problems yesterday. Thanks Goodbye

Me too. I don't suffer this Stockholm syndrome for free!!!

 

[KSC]

OAh cough I forgot to mention in addition to the 1 billion points for the app issues, I think I’ll only feel ok if I also get lifetime CL (that way you don’t need to worry about the SCs).

Why not have both? ‘cue the Old El Paso tune’

 

[JW]

Anyone else having trouble logging in after the QANTAS app data leak? I was logged out due to the data leak. Now I keep getting an error saying "You're not connected" "Check your internet connection and then try again". Everything else works fine on the internet except this. I'm currently overseas, and need to use the app for my flights.

Randomly unable to login while away for last few wks with errors like this

 

[chrispy3276]

Qantas just sent out this e-mail:

Hi [name],

On Wednesday we experienced an issue with the homepage of the Qantas App. We want to apologise to all our impacted customers and assure you that the App is stable and operating normally. We have now identified the root cause and can confirm that this was a technology issue, and there is no evidence of a cyber incident.

Qantas takes the security and privacy of our customers' data seriously and we want you to know that we have done everything we can to fully understand what went wrong so we can prevent it happening again.

If you have upcoming travel, there is nothing you need to do. You can check your flight details at anytime on the Qantas App or website as usual. We will contact you directly if we determine that your sensitive travel information has been incorrectly displayed to another person.

Please accept our sincere apologies.

 

[Cloud9]

Qantas just sent out this e-mail:

"If we determine".

$100 says there's no way on earth they can audit the database or the cache to accurately work out who saw what.

 

[RichardMEL]

Gee not even a token "make good" points or voucher gesture for those potentially effected? Lame.

 

[GrahamBRI]

An update on the Qantas App issue
“On Wednesday we experienced an issue with the homepage……..”
Nope - it was broader than the homepage.

“there is no evidence of a cyber incident.”
Nope - a cyber incident includes events that are a failure of safeguards or a previously unknown situation that may be relevant to security.

“we have done everything we can to fully understand what went wrong”
Nope - you just said it was only on the homepage, not sure that demonstrates a full understanding. And if you have done everything already, then that was a very quick review. Surely there is more work to be done before you “fully” understand.

“so we can prevent it happening again”
Maybe - but this has happened before, so not sure there is a track record here yet, to make this statement

“We will contact you directly if we determine that your sensitive travel information has been incorrectly displayed to another person.”
Ahhh - So you don’t fully understand what went where yet, or you do know that sensitive data went to where it shouldn’t and you are not stating it?

 

[RooFlyer]

Qantas takes the security and privacy of our customers' data seriously

Obviously BS, plain and simple. They mucked around with their app, let it back into the open without testing (or whatever) and people's personal data went around like a dose of flu. Then you said it was fixed, and it wasn't. That doesn't evince taking anything seriously.

And @GrahamBRI has filleted the rest.

 

[Cloud9]

“we have done everything we can to fully understand what went wrong”
Nope - you just said it was only on the homepage, not sure that demonstrates a full understanding. And if you have done everything already, then that was a very quick review. Surely there is more work to be done before you “fully” understand.

100% agree with this. If I was running a P1 postmortem (translation for non-nerds: examination of the events after an issue that causes a system wide degradation/fallover/or revenue impacting event), I'd be looking for at least a 72 hour window just to do the base investigation work.

Do Qantas actually have *any* software engineering / devsecops based in Australia?!

 

[Flyfrequently]

“We will contact you directly if we determine that your sensitive travel information has been incorrectly displayed to another person.”

Anyone who believes their "sensitive travel information" was compromised been contacted?
Perhaps the early AFF posters who could see other pax BP's and personal data, could let QF IT Department know?

 

[SeatBackForward]

Do Qantas actually have *any* software engineering / devsecops based in Australia?!

Whomever processes the outsourcing invoices each month?

 

[SeaWolf]

Typically of Qantas these days they seem to figure that there's no problem that can't be solved by some marketing. They'll trot out the children's choir, say "national carrier" (whatever that means) a few times and in their minds it'll all be good.


Someday, our data, will all be together once more
If all of the servers, are brought back onshore
I realise, something I've always known
There's no one at Qantas left at home

 

[RSD]

Typically of Qantas these days they seem to figure that there's no problem that can't be solved by some marketing. They'll trot out the children's choir, say "national carrier" (whatever that means) a few times and in their minds it'll all be good.


Someday, our data, will all be together once more
If all of the servers, are brought back onshore
I realise, something I've always known
There's no one at Qantas left at home

Top work!

 

[RSD]

100% agree with this. If I was running a P1 postmortem (translation for non-nerds: examination of the events after an issue that causes a system wide degradation/fallover/or revenue impacting event), I'd be looking for at least a 72 hour window just to do the base investigation work.

Do Qantas actually have *any* software engineering / devsecops based in Australia?!

Hang on - what? You mean that my DSC intern isn't even in Australia? And his name isn't Harry?

 

[stupefystar]

Do Qantas actually have *any* software engineering / devsecops based in Australia?!

Their mobile team is slowly becoming all in-house, and their backend team is completely in house. Mostly Sydney based. Not sure if that asks more questions about the quality they produce

 

[Cloud9]

Their mobile team is slowly becoming all in-house, and their backend team is completely in house. Mostly Sydney based. Not sure if that asks more questions about the quality they produce

Not at all. Worked in Australia long enough to know the absolutely, shockingly poor quality of most of the software engineers we have on-shore.

 

[fly2earth]

Anyone who believes their "sensitive travel information" was compromised been contacted?
Perhaps the early AFF posters who could see other pax BP's and personal data, could let QF IT Department know?

They are too busy enjoying their newfound Qantas Chairman Lounge to write home

Gotta collect 'em all!