Federal Group

The Federal Group operates as Tasmania's sole casino operator, managing electronic gaming machines and associated hospitality services across multiple venues in the Australian state. Its core business encompasses casino gaming operations, notably poker machines, and hotel booking systems, serving the local Tasmanian market exclusively. This position grants it a unique standing within the state's entertainment and gaming sector. The organisation's footprint is defined by its monopoly on casino operations within Tasmania, a significant factor in its economic impact and regulatory environment. Its revenue model is heavily reliant on monthly poker machine takings, a detail underscored by the substantial financial losses incurred during a major service disruption. The integration of gaming infrastructure with hospitality systems, such as hotel bookings, is a notable operational characteristic. This convergence of services means that technical failures can broadly affect both gaming and accommodation revenue streams. The company's scale is implicitly defined by its status as the single provider of casino services for the entire state, rather than by publicly stated metrics like employee count or precise venue numbers. Its operations are therefore central to Tasmania's regulated gaming landscape.

In April 2021, the organisation experienced a significant ransomware attack that encrypted files and disrupted its electronic gaming machines and hotel booking systems for an extended period. The incident involved a cryptocurrency ransom demand and necessitated engagement with the Australian Cyber Security Centre and external cybersecurity experts to contain the breach. Former IT personnel expressed concerns regarding the potential compromise of historic credit card data stored within the hospitality systems. The prolonged outage resulted in substantial financial losses, directly linked to the operator's significant monthly revenue from poker machines. While law enforcement acknowledged the attack, no formal investigation was subsequently initiated, and it remains unclear whether the company reported a notifiable data breach to privacy authorities. Cybersecurity analysts have highlighted casinos, including this operator, as prime targets for ransomware due to their financial throughput and common reliance on legacy IT systems. The event illustrates the critical dependency of the organisation's business model on uninterrupted digital system functionality and the severe financial repercussions of its compromise. The incident is a documented chapter in the organisation's recent operational history, reflecting sector-wide cybersecurity challenges.