Jaguar Land Rover (JLR) has announced that its UK factories will remain closed until next week, following a major cyber attack that disrupted operations at the end of August.
Production came to a halt across its plants in Solihull, Halewood, and Wolverhampton, forcing workers to stay home since September 1. The company, which typically manufactures around 1,000 vehicles per day, has now lost two full weeks of global output.
Impact of the Cyber Attack
The disruption began when JLR shut down its IT networks to prevent further damage after the breach. Given the high level of automation across modern car manufacturing and supply chains, this step immediately brought production lines to a standstill.
The effects rippled quickly through the business:
- Dealerships were unable to sell cars during one of the busiest sales periods of the year.
- Garages faced delays in sourcing parts to service existing vehicles.
- Suppliers were hit hard, with the stoppage affecting their own operations.
Although temporary workarounds have been introduced, the company says disruption is ongoing.
Data Breach Concerns
On Wednesday, JLR confirmed that some data had been compromised in the attack. The company is currently working with regulators and conducting a forensic investigation to determine the extent of the breach.
A hacking group known as Scattered Lapsus$ Hunters has claimed responsibility for the incident. The same group previously targeted UK retailers, including M&S, causing months of disruption and a reported £300m in losses.
JLR has said it will contact affected individuals if investigations confirm their data was accessed.
Government Response
The UK’s Information Commissioner’s Office (ICO) has confirmed that JLR reported the incident. Meanwhile, Business Minister Chris Bryant told MPs that the National Cyber Security Centre (NCSC)—part of GCHQ—has been involved from the early stages.
Bryant is scheduled to meet with JLR’s CEO Adrian Mardell later this week, while local MPs will be briefed during an online call on Friday.
What’s Next for JLR?
While the company works to restore operations, questions remain over the long-term fallout—both in terms of lost production and reputational damage. The hack has highlighted the vulnerability of highly automated industries to cyber threats, raising concerns for the wider automotive sector.
JLR insists its investigation is moving “at pace,” but with cars left unsold, suppliers under strain, and sensitive data potentially exposed, the road to recovery may take longer than expected.
