Cyber Incident Victim: Perth Airport

In March 2017, Perth Airport's computer systems were compromised by Le Duc Hoang Hai, a 31-year-old Vietnamese national who used stolen credentials from a third-party contractor to gain unauthorized access. The breach was detected by Perth Airport staff, who promptly alerted the Australian Government’s cybersecurity center in Canberra. Investigations traced the intrusion to Vietnam, leading to collaboration between the Australian Federal Police and Vietnamese authorities. Hai exfiltrated a significant volume of sensitive data, including detailed building schematics and physical security information related to airport facilities. However, critical operational systems—such as aircraft radars and flight-related infrastructure—remained untouched, and no passenger data or personal traveler information was accessed. Authorities confirmed Hai’s actions did not jeopardize public safety or airport operations.

Vietnamese law enforcement arrested Hai following the AFP’s tip-off, and he was later convicted in a Vietnamese military court in late September 2025, receiving a four-year prison sentence. The investigation revealed Hai had targeted multiple Vietnamese entities, including banks, telecommunications firms, and a military newspaper, with Perth Airport being his sole Australian victim. Perth Airport CEO Kevin Brown stated the attacker appeared to seek credit card data but found none, and a comprehensive risk assessment confirmed no threats to passengers, staff, or partners. The incident underscored vulnerabilities in third-party contractor security, as highlighted by cybersecurity adviser Alastair MacGibbon, who praised the airport’s swift detection and response. Perth Airport subsequently reviewed contractor access protocols, while Australian officials emphasized strengthening partnerships with international allies to combat cross-border cyber threats.