KPMG finds itself embroiled in controversy after a whistleblower revealed the firm had breached confidential Lendlease data around March 2024, right when a parliamentary report on PwC’s conduct landed. The timing means KPMG’s error collides directly with ongoing anger over PwC’s tax leaks scandal.
Instead of quietly fixing the problem, the firm’s handling of the breach was clumsy and complacent. That combination intensifies doubts about how major audit partnerships run their businesses.
The breach involves confidential information entrusted to KPMG by Lendlease, raising questions about how securely large professional services firms manage client data and internal controls. Regulators and policymakers had already been examining governance failures across the consulting and audit sector using PwC as a case study.
Now KPMG is pulled into the same frame, with critics pointing to a pattern rather than an isolated lapse. The episode shows that industry safeguards and oversight mechanisms are weaker than clients and governments assumed.
Attention inside government currently focuses on PwC’s behaviour and the cost of cleaning up that scandal, which may temporarily shield KPMG from deeper investigation. Some officials are reluctant to expand inquiries while budgets are under pressure and reform work on existing cases already stretches resources.
The Lendlease breach suggests that governance and culture issues run across more than one major firm. That reality risks eroding trust in the entire audit and consulting model that governments and corporations depend on.
