Equestrian Australia, the governing body for equestrian sports in Australia, is embroiled in legal trouble following a lawsuit filed by its former digital services provider, Lloyd Raleigh. The lawsuit concerns an alleged unauthorized cyberattack during a penetration test conducted in January 2024. Raleigh’s company, Nominate Pty Ltd, claims that there were over 19,000 attacks on its server, exceeding the agreed parameters of the testing.
The court documents, submitted to the Brisbane Magistrates Court, name both Equestrian Australia and Zirilio, a cybersecurity firm hired to perform the simulated cyber incursion. Raleigh alleges that the test, which was intended to identify vulnerabilities in Equestrian Australia’s computer system, breached the contractual agreement. He is seeking damages amounting to $141,756.06 for a forensic examination he conducted due to the incident.
This lawsuit is the latest challenge for Equestrian Australia, which has been facing internal strife and governance issues. An integrity review ordered by the Australian Sports Commission is currently underway, led by integrity expert Iain Roy, known for his investigation into the cricket sandpaper scandal in 2018. Recently, three board members, including chairman Zac Miles, resigned before a vote to remove them could occur. Another three directors are facing potential removal in an upcoming special general meeting.
Raleigh had consented to the penetration test, allowing Zirilio to bypass a firewall as part of the agreement. However, he contends that the simulated cyberattack extended beyond the agreed parameters, leading to his claims of breach of contract against both Equestrian Australia and Zirilio. In response, Equestrian Australia has countered that it remains uncertain about the validity of Raleigh’s allegations and maintains that it did not authorize any access outside the testing scope.
Zirilio, which operates under the corporate name Allstars Trading Pty Ltd, has not filed a defense in the case. Consequently, Raleigh’s legal team is seeking a default judgment against the cybersecurity firm.
The testing process was overseen by PMY Group, a sports technology company with notable backers, including former Equestrian Australia board member Leigh Clifford and ex-AFL Commission chairman Mike Fitzpatrick. The legal representation for Equestrian Australia comes from the firm Colin Biggers & Paisley, where one of the directors facing removal, Rhett Oliver, is a partner.
In addition to legal challenges, Equestrian Australia has reported financial losses totaling nearly $1.2 million over the past two years. Members are currently voting on whether to unseat Oliver and fellow directors Stephanie Lyons and Maggie Hundertmark. Lyons, who has served as an executive at Risk Super, expressed concerns about the potential disruption to the organization’s operations if she were to be removed.
The tumultuous situation within Equestrian Australia reflects broader issues facing the organization, which oversees the Olympic disciplines of showjumping, eventing, and dressage. As the federation navigates these challenges, its ability to maintain funding and support from the Australian Sports Commission remains critical.
