Why Has JLR Stopped Producing Cars Since the Cyber Attack?
If you’ve been eyeing a new Land Rover or Jaguar, you might have noticed something odd: not a single new car has rolled off a JLR production line since September 1. The reason? A major cyber attack brought the company’s global operations to a grinding halt. Three weeks on, the impact is still rippling through every corner of the business.
JLR, the parent company behind Jaguar and Land Rover, was hit hard by hackers who targeted its IT systems. The result? Production lines went silent, parts ordering became a logistical nightmare, and dealerships found themselves unable to register new vehicles—right in the middle of one of the busiest sales periods of the year. The company is still in the process of rebuilding its computer systems, and there’s no clear timeline for when things will be back to normal.
How Bad Is the Financial Impact on JLR and Its Suppliers?
Let’s talk numbers. According to Professor David Bailey, a respected business economist, the shutdown could be costing JLR up to £5 million every single day. That’s not just a dent—it’s a crater in the company’s finances. And the pain doesn’t stop at JLR’s front door.
The real worry now is for the hundreds of suppliers who rely on JLR’s business. Former Aston Martin CEO Andy Palmer recently warned that some of these suppliers could be pushed into bankruptcy if the shutdown drags on. In the automotive world, supply chains are tightly interwoven. When a major player like JLR stops production, smaller companies down the line feel the squeeze almost immediately. Many are already considering layoffs, and if the disruption continues, job losses could snowball.
What’s Being Done to Protect Jobs in the Supply Chain?
With thousands of jobs hanging in the balance, calls are growing for government intervention. Industry leaders and union officials are urging the UK government to introduce a furlough scheme—similar to the one used during the Covid-19 pandemic—to help protect workers’ incomes while factories remain idle.
Liam Byrne, chair of the Commons Business and Trade Committee, put it bluntly: what started as an IT problem is now threatening the entire advanced manufacturing sector. Sharon Graham, general secretary of the Unite union, echoed the urgency, stressing that ministers need to act fast to prevent vital skills and jobs from being lost for good.
What Do We Know About the Cyber Attack and Who’s Behind It?
So, who’s responsible for this chaos? A hacker group calling themselves Scattered Lapsus$ Hunters has claimed responsibility. If that name rings a bell, it’s because they were also behind a high-profile attack on Marks & Spencer earlier this year, which cost the retailer an estimated £300 million in lost profit.
The group claims to have exploited a well-known vulnerability in SAP Netweaver, a third-party software platform used by JLR. The US Cybersecurity and Infrastructure Security Agency had issued warnings about this flaw earlier in the year, and a software update was released to patch it. Whether JLR had implemented the fix remains unclear.
While JLR has confirmed that some data was “affected,” the company hasn’t specified exactly what was taken or whether a ransom demand has been made. The possibility that customer details were stolen is a real concern, and the company has brought in police and cybersecurity experts to help restore its systems safely.
How Are Other Companies Responding to Similar Threats?
JLR’s experience is a wake-up call for the entire automotive industry—and really, for any business that relies on complex digital infrastructure. Cyber attacks on manufacturers have been on the rise. According to a 2023 report from IBM Security, the manufacturing sector was the most targeted industry for ransomware attacks globally, accounting for nearly 25% of all incidents.
Companies are now investing more heavily in cybersecurity, not just to protect their own operations but to safeguard their supply chains as well. Regular software updates, employee training, and robust incident response plans are becoming standard practice. Still, as the JLR case shows, even the biggest players can be caught off guard.
What’s Next for JLR and Its Customers?
For now, there’s no official word on when JLR’s production lines will be up and running again. The company is focused on rebuilding its IT systems and working closely with law enforcement and cybersecurity specialists to prevent future breaches. In the meantime, customers waiting for new vehicles will have to be patient, and suppliers are bracing for more uncertainty.
The bigger lesson here? In today’s hyper-connected world, a single cyber attack can bring even the most established manufacturers to a standstill. For JLR, the road to recovery will be challenging—but it’s also a chance to build back stronger, with smarter defenses and a renewed focus on resilience. If you’re in the market for a new Jaguar or Land Rover, keep an eye on the headlines. The outcome of this crisis could shape the future of the UK’s automotive industry for years to come.