Jaguar Land Rover's global production has been severely disrupted by a cyberattack, with a group of hackers claiming responsibility. The incident has halted manufacturing at key UK plants and impacted retail operations during a peak sales period, raising concerns about supply chain vulnerabilities.
A ransomware attack on IT supplier Miljödata has crippled services for over 200 Swedish municipalities, disrupting HR and healthcare systems. The attack highlights the severe risks of supply chain vulnerabilities in critical public infrastructure, with a police investigation underway.
Credit reporting giant TransUnion has confirmed a major data breach affecting 4.4 million customers after an unauthorized party accessed a third-party application. The breach exposed personal information including names, dates of birth, and Social Security numbers, but no credit data was accessed.
Jaguar Land Rover's global production has been severely disrupted by a cyberattack, with a group of hackers claiming responsibility. The incident has halted manufacturing at key UK plants and impacted retail operations during a peak sales period, raising concerns about supply chain vulnerabilities.
Cyber News Centre's cyber update for 4th September 2025: Jaguar Land Rover (JLR) has halted production at its UK manufacturing plants and shut down its global IT systems after a significant cyberattack. The incident has severely disrupted the company's retail and manufacturing operations, with a group of hackers claiming responsibility.
Jaguar Land Rover is a British multinational automobile manufacturer with its headquarters in Coventry, England. A subsidiary of Indian automotive company Tata Motors, JLR is the UK's largest automotive manufacturer, with two design and engineering sites, three vehicle manufacturing plants, and an engine manufacturing centre in the UK.
The Update: Jaguar Land Rover has confirmed a major cyberattack that has severely disrupted its global operations, forcing the company to halt production at its key UK manufacturing plants in Solihull and Halewood. Detected over the weekend, the incident prompted JLR to shut down its IT systems to contain the threat, impacting both manufacturing and retail activities. A group of hackers known as “Scattered Lapsus$ Hunters,” linked to previous attacks on UK retailers M&S, Co-op, and Harrods, has claimed responsibility, posting screenshots of JLR’s internal systems on the messaging app Telegram.
The group is reportedly attempting to extort money from the company. The UK’s National Crime Agency is investigating the breach in coordination with partners, while the Information Commissioner’s Office has also been notified. JLR has stated there is no evidence of customer data being stolen, though the incident has significantly affected its ability to register new vehicles during a peak sales period. The company is restoring its systems in a controlled manner, but no timeline for full recovery has been provided.
"The attack hit Jaguar Land Rover during one of their busiest times of the year – when new registration plates are launched. This type of situation gives attackers substantial leverage over their victims." - James Neilson, OPSWAT SVP
Why it Matters: This attack underscores the growing vulnerability of the automotive industry’s complex and interconnected supply chains. A single cyber incident can cascade across production, suppliers, and retail operations, resulting in major revenue losses and delays. The timing of the attack, coinciding with the launch of new UK registration plates, maximises disruption and financial impact.
Beyond immediate production halts, the theft of intellectual property such as vehicle designs or source code could undermine long-term competitive advantage. The involvement of a young, English-speaking hacking group signals a shift away from traditional state-sponsored or Eastern European ransomware gangs, introducing more unpredictable threats. For the automotive sector, this incident is a stark reminder that cyber resilience is now a critical component of business continuity, with both financial and reputational consequences.
Get the stories that matter to you.
Subscribe to Cyber News Centre and update your preferences to follow our Daily 4min Cyber Update, Innovative AI Startups, The AI Diplomat series, or the main Cyber News Centre newsletter — featuring in-depth analysis on major cyber incidents, tech breakthroughs, global policy, and AI developments.
A ransomware attack on IT supplier Miljödata has crippled services for over 200 Swedish municipalities, disrupting HR and healthcare systems. The attack highlights the severe risks of supply chain vulnerabilities in critical public infrastructure, with a police investigation underway.
Credit reporting giant TransUnion has confirmed a major data breach affecting 4.4 million customers after an unauthorized party accessed a third-party application. The breach exposed personal information including names, dates of birth, and Social Security numbers, but no credit data was accessed.
French retail giant Auchan has confirmed a second major data breach in less than a year, exposing the personal information of several hundred thousand loyalty program members. The attack follows a similar incident in November 2024, raising concerns about the company's cybersecurity posture.
A widespread cyberattack has paralyzed Nevada's state government, forcing the closure of DMV offices, disrupting public services, and triggering a joint state and federal investigation. The attack, has taken down websites and phone lines, with no clear timeline for full restoration.
Where cybersecurity meets innovation, the CNC team delivers AI and tech breakthroughs for our digital future. We analyze incidents, data, and insights to keep you informed, secure, and ahead. Sign up for free!
