What is the Clive Palmer business entities cyber attack?

A ransomware cyber attack compromised 11 business entities associated with entrepreneur and politician Clive Palmer. Originally reported as affecting United Australia Party (UAP) and Trumpet of Patriots, the breach expanded to include major companies like Waratah Coal, Queensland Nickel Group, Palmer Coolum Resort, and others. Unauthorized access to servers was detected on June 23, 2025.

Which companies were affected in the Palmer entities ransomware attack?

The affected business entities include Waratah Coal Pty Ltd, Central Queensland Coal, Gladstone Pacific Nickel Limited, Palmer Coolum Resort, Blue Star Line, Palmer Motorama, Ausface, Drewmaster Pty Ltd, Zeph Group entities, Mineralogy, and Queensland Nickel Group. These companies span various industries including mining, tourism, automotive, and shipping.

When was the Palmer entities cyber attack discovered?

The ransomware cyber attack was discovered on June 23, 2025, when unauthorized access to servers was detected across the affected Palmer-associated business entities.

What type of data was compromised in the Palmer entities breach?

The compromised data includes all email content and attachments, email addresses and correspondence, phone numbers, identity records and documents, banking records and financial details, employment history information, confidential documents and arrangements, and personal information provided to or created by the entities.

How have Palmer's entities responded to the cyber attack?

The organizations acknowledge they 'do not know comprehensively what information was on the server' and advise that anyone who provided information should assume it was stored on the compromised servers. They have determined it is 'impracticable to notify individuals' directly, effectively placing the burden on victims to determine if their data was compromised.

Have Palmer's entities reported the breach to authorities?

The breach was reportedly made to the Office of the Australian Information Commissioner (OAIC) and the Australian Signals Directorate. However, the OAIC has stated that Palmer's parties have not actually reported their privacy breach to the office, creating confusion about proper regulatory notification.

What should people do if they had dealings with Palmer's companies?

Anyone who provided information to Palmer's affected entities should assume their data was stored on the compromised servers and may have been accessed by attackers. They should monitor their accounts for suspicious activity, review credit reports regularly, and be vigilant for phishing attempts or identity theft using their compromised personal information.

Incident

Attack on United Australia Party and Trumpet of Patriots also breached the business entites of Clive Palmer

published: July 26, 2025

Take action: Do you want your companies to be descibed as having "breathtaking lack of care" for a cybersecurity incident? It seems if one is a rich enough, that's acceptable. Think of this before you give out your data to companies with huge budgets - will they care at all if they get breached?

Learn More

The breach that was originally reported to hit United Australia Party (UAP) and Trumpet of Patriots is now reported to compromise 11 business entities associated with the entrepreneur and politician Clive Palmer

The affected business entities include:

Waratah Coal Pty Ltd,
Central Queensland Coal,
Gladstone Pacific Nickel Limited,
Palmer Coolum Resort,
Blue Star Line,
Palmer Motorama,
Ausface,
Drewmaster Pty Ltd,
Zeph Group entities.
Mineralogy
Queensland Nickel Group

The incident was identified as a ransomware cyber attack, with unauthorized access to servers detected on June 23, 2025. The compromised data includes all the content and attachment of emails to and from the affected entities:

Email addresses and correspondence
Phone numbers
Identity records and documents
Banking records and financial details
Employment history information
Confidential documents and arrangements
Personal information provided to or created by the entities

The organizations acknowledge they "do not know comprehensively what information was on the server" but advise that anyone who provided information should assume it was stored on the compromised servers.

Reports suggest the breach could affect as many as 80,000 people, but this figure is disputed. The exact number of affected individuals has not been officially disclosed by Palmer's entities. The organizations stating they "do not keep a record of all individuals who were on the server" and have "determined it is impracticable to notify individuals" directly.

The breach was reported to the Office of the Australian Information Commissioner (OAIC) and the Australian Signals Directorate. The OAIC has stated that Palmer's parties have not actually reported their privacy breach to the office.

Cybersecurity experts have criticized the response to the incident, noting the "breathtaking lack of care" shown by effectively placing the burden of discovering compromised data on the victims themselves rather than conducting proper individual notifications.

Attack on United Australia Party and Trumpet of Patriots also breached the business entites of Clive Palmer

Read More
Grupo Aeroportuario del Centro Norte (OMA) reports ransomware …
Snap Food, Iran's largest food delivery app hit …
English Construction Company reports ransomware attack, data breach
Synlab Italia shuts down operations due to ransomware …
Red Roof lodging provider reports data breach