Search This Blog
Powered by Blogger.

Blog Archive

Labels

Footer About

Footer About

Labels

Load More
Trendy Right Now

Popular Posts

Showing posts with label Jaguar Land Rover cyberattack. Show all posts
personal data leak
Cyber Attacks Data Leak data security Data Theft employee data exposed Jaguar Jaguar Land Rover cyberattack payroll security breach personal data leak

Jaguar Land Rover Confirms Employee Data Theft After August 2025 Cyberattack

 

British luxury carmaker Jaguar Land Rover has confirmed that a cyberattack uncovered in August 2025 led to the theft of payroll and personal data of thousands of current and former employees. After this disclosure, the company asked the affected people to remain alert about identity theft, phishing attempts, and financial fraud. 

The breach represents the first official acknowledgement from JLR that employee personal information was compromised during the incident. Earlier statements had focused largely on the operational disruption caused by the attack, which forced the temporary shutdown of vehicle production across several manufacturing facilities for several weeks. The company employs more than 38,000 people worldwide. Records pertaining to former employees and contractors were also affected. 

Internal communications shared with staff revealed that forensic investigations determined attackers took unauthorized access to payroll administration systems. These systems would include sensitive employment-related records, including data associated with salaries, pension contributions, employee benefits, and information about dependents. While JLR has stated that there is currently no evidence that the stolen information has been publicly leaked or actively misused, the nature of the exposed data creates a heightened risk profile.  

Cybersecurity experts point out that payroll systems usually host very sensitive identifiers such as bank account details, national insurance numbers, tax information, residential addresses, and compensation records. Even partial data exposure could increase the chances of identity fraud, account takeover attempts, and targeted social engineering attacks by a great degree. In response, JLR has recommended that the affected keep themselves aware of unsolicited communications and enhance passwords related to personal and professional accounts. 

For the sake of mitigation, the company has declared two years of free credit and identity monitoring services for its current and former affected employees. A dedicated helpline is also established for phone support, to assist with queries, advise on protective measures, and take reports of suspected fraudulent activity. This decision by JLR comes after forensic analysis had continued post-restoration of safe production operations. 

The breach has been formally reported to the UK's Information Commissioner's Office (ICO), which has confirmed it is conducting enquiries into the incident. The regulator has asked for more information about the extent of the breach, what security controls were in place at the time of the attack, and what remedial action has been taken since the intrusion was detected. The after-effects of the cyberattack spilled over beyond JLR's workforce. 

The disruption reportedly affected almost 5,000 supplier and partner organizations, reflecting the interconnected nature of modern manufacturing supply chains. Estimates place the overall economic impact of the incident at roughly ₹20,000 crore. Official figures suggest the disruption contributed to a measurable contraction in the UK economy during September 2025. JLR also announced that the attack resulted in the quarterly sales decline of an estimated ₹15,750 crore, along with a one-time recovery and remediation cost of around ₹2,060 crore. 

The costs comprised restoration of systems, security controls enhancement, and incident response. The intrusion, which was earlier claimed by a hacking group named "Scattered Lapsus Hunters" that had earlier been involved with attacks on major retail organizations, has alleged that the organization also accessed customer data. 
However, Jaguar Land Rover claims that evidence supporting those claims has not been found. Investigations are ongoing, and the firm has announced that it will keep informing employees, regulators, and other stakeholders as more information becomes available.
Read more »
Tata Motors luxury cars
Data Breach Jaguar Land Rover cyberattack Jaguar Land Rover UK factories JLR production halt Tata Motors luxury cars

Jaguar Land Rover Extends Production Halt After Cybersecurity Breach

 

Tata Motors-owned luxury carmaker Jaguar Land Rover (JLR) has announced an extended production pause until Wednesday, 1 October 2025, due to the ongoing impact of a cybersecurity attack that disrupted operations earlier this month.

"Today we have informed colleagues, suppliers and partners that we have extended the current pause in production until Wednesday 1 October 2025," JLR said in a statement. "We have made this decision to give clarity for the coming week as we build the timeline for the phased restart of our operations and continue our investigation."

The company had earlier halted production until September 24 following the cyberattack on September 2. JLR confirmed its teams are working with cybersecurity experts, the UK’s National Cyber Security Centre (NCSC), and law enforcement agencies to ensure a safe and controlled restart.

"Our focus remains on supporting our customers, suppliers, colleagues, and our retailers who remain open. We fully recognise this is a difficult time for all connected with JLR and we thank everyone for their continued support and patience," the statement added.

The production shutdown has severely affected JLR’s three UK factories, which typically manufacture around 1,000 vehicles daily. The disruption has already cost the automaker tens of millions of pounds, while many of its 33,000 employees have been instructed to stay home.

The halt has also put strain on the wider British automotive supply chain, which supports about 104,000 jobs. The Unite trade union has urged the government to step in, warning that prolonged disruption could risk job losses. In response, the UK government stated it is working closely with JLR to evaluate the impact.

The breach has also disrupted repair services, leading to potential delays for Jaguar and Land Rover customers requiring replacement parts. The cyberattack coincided with the release of new UK registration plates on 1 September, typically a peak sales period.

A hacker collective calling itself “Scattered Lapsus$ Hunters”, reportedly made up of English-speaking teenagers linked to earlier attacks, has claimed responsibility. The group shared images with the BBC allegedly showing JLR’s internal troubleshooting documents and system logs, suggesting unauthorized access to sensitive company data.

JLR has ramped up its cybersecurity efforts in recent years, including a five-year £800 million contract with Tata Consultancy Services (TCS) in 2023 to enhance IT and security infrastructure. The timing of the cyber incident is particularly challenging as the company already faces declining profits, partly due to rising costs linked to U.S. tariffs.

"We are very sorry for the continued disruption this incident is causing and we will continue to update as the investigation progresses," JLR said.
Read more »
UK automaker cybersecurity
Cyber Security Jaguar Land Rover cyberattack JLR production disruption Tata Motors luxury automaker UK automaker cybersecurity

Jaguar Land Rover Hit by Cyberattack, Global Retail and Production Disrupted

 

Jaguar Land Rover (JLR), the luxury carmaker owned by Tata Motors, announced on Tuesday that its global retail and production operations have been “severely disrupted” due to a cyberattack. The company confirmed that it had shut down its systems as a precautionary measure to contain the impact.

According to AFP, the UK-based automaker said, “At this stage there is no evidence any customer data has been stolen but our retail and production activities have been severely disrupted,” adding that it is “working at pace” to restart worldwide operations.

The incident highlights the increasing vulnerability of luxury retailers and auto brands to cybercriminals. Recently, Marks and Spencer suffered a major attack that disabled its online operations for weeks, causing losses of £300 million ($402 million). Other well-known British retailers such as Harrods and Co-op have also faced cyber threats in recent months.

For Jaguar Land Rover, the cyberattack adds to a string of recent setbacks. Earlier this year, the automaker paused exports to the United States after tariffs imposed under former President Donald Trump, which triggered a steep decline in sales. In July, JLR announced plans to cut up to 500 UK management jobs to manage costs. Although a new trade agreement between London and Washington lowered tariffs on UK car exports to 10% from 27.5%, the concession only applies to a limited quota of 100,000 vehicles annually, restricting the company’s ability to recover volumes.

Keywords: Jaguar Land Rover cyberattack, JLR production disruption, Tata Motors luxury automaker, UK automaker cybersecurity, Jaguar Land Rover sales, JLR trade tariffs, Marks and Spencer cyberattack, Harrods cyber intrusion, luxury carmaker news
Read more »
Subscribe to: Comments (Atom)