Jaguar Land Rover Production Halted by Cyberattack, Facing Millions in Daily Losses
Coventry, UK – September 19, 2025 – A refined IT attack has brought production to a standstill at jaguar Land Rover (JLR), impacting output and leaving approximately 40,000 vehicles unaccounted for as systems remain offline. The disruption, confirmed earlier this week, has triggered concerns about substantial economic fallout extending beyond the automaker to its extensive supply chain.
The cyber incident, detected on September 16, 2025, has forced JLR to suspend operations across multiple facilities. While the full scope of the breach is still under investigation, analysts estimate the production stoppage could cost the company up to £5 million (approximately €5.8 million) per day. This financial strain isn’t isolated to JLR; numerous suppliers, whose operations are directly linked to JLR’s manufacturing processes, are facing potential hardship. Authorities in the United Kingdom are reportedly considering support measures for these affected suppliers to mitigate the risk of notable financial damage and potential bankruptcies.
The disruption stems from a ransomware attack that encrypted critical systems, preventing JLR from accessing essential data and controlling production lines. The 40,000 vehicles currently untraceable represent those in various stages of completion when the attack occurred, their status unknown until systems are restored. JLR has not disclosed the specific nature of the ransomware or the extent of data compromised, citing ongoing security investigations.
JLR has engaged leading cybersecurity experts to contain the breach, restore systems, and reinforce its defenses against future attacks. The company anticipates a phased resumption of production as systems are brought back online, but a firm timeline remains uncertain. The incident underscores the growing vulnerability of the automotive industry to cyber threats and the critical need for robust cybersecurity protocols.
