JLR’s Cyberattack cost millions: what would it cost your business?

Jaguar Land Rover, Britain’s largest car manufacturer, was forced to shut down its IT systems and halt production both in the UK and abroad, following an unprecedented cyberattack on August 31st, 2025.  

The debilitating impact is reportedly costing the company millions in lost revenue, with far-reaching consequences across its supply chain. The breach is allegedly costing £50 million per week, amounting to an estimated £2 billion thus far. 33,000 direct staff members have been left unable to work, and many partner companies have had no choice but to suspend operations, resulting in over 200,000 workers being temporarily laid off. Operations are expected to remain paused until at least October 1st.  

Here’s what went wrong:  

JLR detected the attack while it was in progress. A spokesperson for the company said, “We took immediate action to mitigate its impact by proactively shutting down our systems to prevent the attackers from accessing more information.” Shortly after, a group of cybercriminals under the alias “Scattered Lapsus$ Hunters” identified itself as responsible via the messaging platform Telegram. This hack marked the beginning of a descent into global chaos for JLR. It is yet unconfirmed to what extent they were able to access client and confidential company data.

It has now been alleged that a cybersecurity policy had been negotiated but not yet finalised at the time of the breach. As a result, the luxury car giant was left unprotected, allowing stolen credentials and malware to infiltrate JLR’s internal systems.

Although the financial cost is measurable, it is hard to determine the reputational consequence for JLR. Many customers are left with a shaken sense of trust, questioning the company’s ability to safeguard their data

The impact:  

• Operational Disruption: Full shutdown of IT systems and manufacturing operations globally. Vehicle registration, diagnostics, and parts ordering systems were rendered unusable
• Exposure of Internal and Sensitive JLR Data:  Hackers gained access to internal systems and both proprietary technology and sensitive vehicle system logic.
• Credibility Crisis: Clients are left struggling to trust the brand and no longer assured of the company’s reliability
• Personal Impact on Workers: Many staff members are believed to be only paid a fraction of their hourly pay, and others were reportedly advised to join the universal credit system  
• Further Exploitation: The companies weak cybersecurity means it now may be prone to further targeted attacks  

Why are SME’s more vulnerable?  

In an age where industry giants fall victim, you may be next. Cybercriminals don’t care about company size. In fact, it is shown that small and medium businesses are often seen as easier targets due to a lack of knowledge around keeping a business secure, limited security budgets, outdated systems, and a delayed response. While the impact is steadily increasing for JLR, now is the time to learn about cybersecurity and protect your business.  

Final thoughts  

The cost of inaction is steep. JLR must now navigate the credibility crisis that has been left in the dust of the malicious attack. MP Liam Byrnes described the attack as a “digital siege”, with many industry experts vocalising the need for businesses to wake up and learn.

Strong cybersecurity is integral to keeping your business protected. While the full scope of the breach is still under investigation, what is confirmed is the descent into chaos.

Don’t wait for a breach to act. We can help you safeguard your business. Our experts can spot weak security before it’s too late.