Royal Brighton Yacht Club

Royal Brighton YachtClub operates as a maritime recreation organisation that provides berthing facilities, clubhouse amenities and organised sailing activities for its members. The club offers training programmes, social events and competitive regattas that cater to both experienced yachtspeople and newcomers to the sport. Its services extend to supporting local sailing communities through access to waterfront infrastructure and organised on‑water programmes. By maintaining a fleet of moorings and a range of clubhouse spaces, the organisation enables members to engage in leisure, sport and networking opportunities centered around boating life. The club’s activities are rooted in promoting safe and enjoyable use of the coastal environment surrounding its headquarters in Australia.

A distinguishing feature of the organisation is its royal designation, reflected in the name Royal Brighton Yacht Club, which signals historical patronage and a longstanding tradition within the yachting community. Situated in the Brighton suburb of Victoria, the club benefits from a coastal location that offers direct access to Port Phillip Bay, enhancing its appeal for sailing and water‑based events. Over time it has cultivated a reputation for hosting notable club races and social gatherings that attract participants from across the state. The royal prefix also underscores its connection to established maritime heritage, setting it apart from non‑royal yacht clubs in the region. These attributes contribute to its identity as a respected institution within Australian recreational sailing.

In June 2024 the Royal Brighton Yacht Club experienced a significant cybersecurity incident when a Medusa ransomware attack exploited a compromised third‑party point‑of‑sale remote support tool. The attack resulted in the encryption of internal systems and the exfiltration of over 94 gigabytes of data, including member and employee personal details, financial records, internal correspondence and supplier login credentials stored in plaintext. The stolen information was subsequently published on the dark web, prompting the club to engage cybersecurity experts for containment, system restoration and notification of affected individuals while cooperating with the Australian Cyber Security Centre. Medusa extortion demands included a $100,000 ransom with an eight‑day deadline, adding financial pressure to the breach response. This event followed the ransomware group’s earlier leak of security footage from another Australian institution, highlighting a pattern of targeting organisations within the country. The club’s response focused on mitigating the impact, restoring operational continuity and reinforcing its security posture to prevent future compromises.