We have let ourselves down and I take accountability
When the institutions entrusted to audit the books of others are found to have misread their own moral ledger, the consequences ripple far beyond any single resignation. Andrew Yates, CEO of KPMG Australia since 2021, stepped down Friday after the firm admitted it had mishandled a whistleblower's allegations that confidential client information from property developer Lendlease had been used to gain competitive advantage with rival clients. The episode joins a growing pattern in which the very access that makes auditors indispensable also makes them dangerous when professional discipline falters — and when internal accountability mechanisms fail the people who dare to speak.
- A whistleblower raised the alarm about KPMG misusing Lendlease's confidential board papers, only to have the firm's own internal investigation dismiss the complaint as unsubstantiated — a failure the firm now concedes lacked the necessary rigour.
- Senator Deborah O'Neill forced the matter into public view in March 2026 by invoking parliamentary privilege, transforming an internal suppression into a national reckoning.
- KPMG's CEO Andrew Yates resigned immediately on Friday, and audit division head Julian McPherson is also departing, as the firm scrambled to signal accountability before regulators and clients withdrew their trust entirely.
- ASIC launched a preliminary investigation into three named auditors and called the conduct 'clearly unacceptable,' while law firm Allens expanded its independent inquiry to examine new evidence.
- KPMG's attempt to characterise the leaked documents as 'low sensitivity' and competitively irrelevant has done little to restore credibility — the firm now faces the harder work of rebuilding trust it allowed to quietly erode.
Andrew Yates resigned as KPMG Australia's CEO on Friday morning, accepting personal responsibility for the firm's failure to properly handle allegations from an internal whistleblower. His brief statement — "It is clear that in this case we have let ourselves down" — marked the culmination of months of pressure that began when Senator Deborah O'Neill aired the whistleblower's claims under parliamentary privilege in a Senate speech in March 2026.
The allegations were serious: KPMG had allegedly taken confidential board papers from Lendlease, a client the firm was auditing, and shared them internally in ways that gave the firm a competitive edge when pitching for audit work with Westpac and Dexus. Compounding the misconduct was the firm's initial response — an internal investigation that dismissed the complaint as unsubstantiated, which KPMG now concedes was not conducted with the rigour the situation demanded.
Chair Martin Sheppard issued an unreserved apology to the whistleblower on Friday, acknowledging that the firm's treatment of them had fallen short of its own standards and those of the broader community. Partner Stan Stavros will serve as interim chief, while Julian McPherson, who led KPMG's audit and assurance division, is also departing after transitioning his client responsibilities.
The regulatory response was immediate. ASIC announced a preliminary investigation into three registered auditors at the firm, with chair Joe Longo describing the conduct as a clear breach of the trust that must exist between auditor and client. The independent investigation by law firm Allens, already underway, will now expand in scope.
The episode echoes the PwC scandal, in which partners used privileged access to confidential government briefings to benefit clients — a reminder that the gatekeeping role auditors occupy is a persistent source of conflict when professional discipline is not rigorously maintained. For KPMG Australia, the distance between its stated values and its demonstrated conduct has become, in the firm's own words, impossible to ignore.
Andrew Yates, who had led KPMG Australia since 2021, announced his immediate resignation on Friday morning, accepting responsibility for how the firm had mishandled serious allegations from an internal whistleblower. In a brief statement, he said: "It is clear that in this case we have let ourselves down and I take accountability." The announcement came after months of mounting pressure, triggered when Senator Deborah O'Neill revealed the whistleblower's claims under parliamentary privilege in a Senate speech on March 24.
The allegations were stark. KPMG had allegedly taken confidential board papers belonging to property developer Lendlease—a client the firm was auditing—and shared them internally in a way that gave the accounting firm competitive advantage when pitching for audit work with Westpac and Dexus. What made the situation worse was that when the whistleblower first raised concerns, KPMG's internal investigation dismissed the complaint as unsubstantiated. The firm later acknowledged that this initial review "was in hindsight not conducted with the necessary rigour required."
Martin Sheppard, KPMG's chair, issued an apology on Friday: "we apologise unreservedly to the whistleblower." The firm admitted that its treatment of the whistleblower and its investigation into their allegations "fell short of the firm's expectations, those of the whistleblower and the broader community." Stan Stavros, a partner at the firm, will take over as interim chief. Julian McPherson, who headed KPMG's audit and assurance division, is also stepping down and will leave the company after transitioning his client responsibilities.
The regulatory response was swift. The Australian Securities and Investments Commission announced on Friday that it was launching a preliminary investigation into the conduct of three registered company auditors at KPMG—though the regulator did not name them. Asic chair Joe Longo called the circumstances "clearly unacceptable," noting there was "clearly a breach of what would normally occur between an auditor and its client." An external investigation by law firm Allens, which had already been underway, will now expand its scope and examine new evidence.
Details of what actually happened emerged during Friday's parliamentary hearing. Lendlease, in a letter tabled by Senator O'Neill, explained that it first learned of the whistleblower's allegations in May 2025. After O'Neill's Senate speech in March 2026, KPMG told Lendlease that an audit partner had accessed the company's board papers and displayed them on a screen in front of the KPMG audit team. The firm later characterized these documents as "low sensitivity" and claimed they gave KPMG "zero competitive advantage"—a characterization that rang hollow given the circumstances.
This is not the first time a major accounting firm has faced serious consequences for misusing confidential information. PwC was barred from government contracts after it was revealed that firm partners had leveraged privileged access to confidential government briefings to help clients navigate new tax rules for multinational companies. The pattern suggests that the gatekeeping role auditors play—their access to sensitive client information—remains a persistent vulnerability in how these firms manage conflicts of interest.
With Yates gone and investigations expanding, KPMG Australia faces a reckoning. The firm's credibility with clients and regulators has been damaged. The external investigation continues, and Asic's preliminary inquiry into individual auditors could lead to further consequences. For a firm built on trust and professional standards, the gap between its stated values and its actual conduct has become impossible to ignore.
Notable Quotes
It is clear that in this case we have let ourselves down and I take accountability— Andrew Yates, KPMG Australia CEO
We apologise unreservedly to the whistleblower— Martin Sheppard, KPMG Australia chair
The Hearth Conversation Another angle on the story
Why did it take a senator's public speech for this to become a crisis? Didn't KPMG know about the whistleblower complaint earlier?
They did. The whistleblower raised it internally, but KPMG's own investigation concluded there was nothing substantiated. That's the real failure—not just that the breach happened, but that the firm looked at the evidence and decided it wasn't serious enough to act on.
So the CEO is resigning because the firm ignored its own whistleblower?
More precisely, he's taking accountability for a system that failed at every level. The initial investigation was sloppy. The firm didn't escalate. And when a senator forced it into the open, KPMG had to admit the investigation should have been much more rigorous.
What exactly did KPMG do with Lendlease's board papers?
An audit partner accessed them and displayed them on a screen in front of the audit team. KPMG later claimed they were low sensitivity and gave no competitive advantage, but that's hard to believe when you're pitching for work with other clients in the same space.
Is this a one-off failure or a pattern?
It's part of a pattern. PwC faced similar consequences for misusing confidential government information. These firms have enormous access to sensitive data, and the temptation to leverage that access is clearly real.
What happens now?
Three auditors are under preliminary investigation by Asic. An external law firm is expanding its investigation. The damage to KPMG's reputation is already done—clients will be asking hard questions about whether they can trust the firm with their information.