A Brisbane-based accounting firm has confirmed it was recently the victim of a cyber incident earlier this month after it was listed on the darknet leak site of the Qilin ransomware operation.
Kennedy McLaughlin & Associates was listed by an affiliate of the hacking group earlier this year, in March.
You’re out of free articles for this month
However, the full dataset appears to have only recently been published, which includes the financial details of several clients alongside other company data.
“Kennedy McLaughlin recently experienced a cyber incident involving unauthorised third-party access to a portion of our IT environment,” a company spokesperson told Cyber Daily.
“As soon as the incident was detected, a response team was mobilised, and immediate steps were taken to contain the incident and secure our systems.
“We have since notified individuals whose information may have been impacted with guidance on how to protect their information.”
Kennedy McLaughlin said its systems have been restored and steps have been taken to maintain their security. The company added that it has engaged experts “from across the cyber security industry”.
The Australian Cyber Security Centre (ACSC) and the Office of the Australian Information Commissioner (OAIC) have been informed of the incident.
“In line with government guidance, we recommend against attempting to access the post on the dark web, which only feeds the business model of cyber criminals and can be considered a criminal offence,” the spokesperson said.
“We recognise the concern these incidents can cause and have taken steps to provide potentially impacted individuals with support and guidance.”
Who is Qilin?
Qilin has claimed 1,882 victims since it was first observed in 2022, spread across 98 countries. It is currently the most active ransomware operation in existence.
The group operates under a ransomware-as-a-service model, with affiliates gaining access to its ransomware infrastructure in return for a cut of any ransom payments.
While many similar groups operate on far shorter timelines, Qilin and its affiliates can take months to publish stolen data. In some cases, victims listed at the beginning of 2026 have still not seen their data published online.
Similarly, while some affiliates will publish complete details of their activities, including the volume of data stolen and screenshots of evidence, others post minimal information, often not going into any detail regarding the data and its contents.
Qilin’s most recent Australian victim was Melbourne-based branded merchandise supplier Branded Products, which was listed by the hackers in late May. In 2026 alone, Qilin has listed 17 Australian victims and one business in New Zealand.
Who is Kennedy McLaughlin?
Headquartered in the Brisbane suburb of Spring Hill, Kennedy McLaughlin offers estate planning and taxation advice, bookkeeping, and general accounting services. The company has 21 staff listed on its website and is a registered tax agent.
“We take pride in our history, and today we focus on providing quality service offerings in two primary areas, taxation and business advisory,” the company said on its website.
“We service all entity types, including SMSFs across a diverse range of industries, including property development, primary production, trades, medical and legal professions and investors.”
Click Here For The Original Source.
