Jaguar Land Rover (JLR) has been hit by a cyberattack that has halted its global production lines, leading to a significant financial crisis for the company and its parent, Tata Motors. Although the financial impact has not been officially disclosed, estimates suggest losses could reach £2 billion, exacerbated by a lack of cyber insurance. Reports indicate that JLR is losing £50 million weekly, with many of its 33,000 employees instructed to stay home.
A group of young hackers, known as “Scattered Lapsus$ Hunters,” has claimed responsibility for the breach, boasting about their actions on Telegram. These hackers, believed to be teenagers, have previously targeted UK retailers and are part of a larger network of youth-driven cybercrime groups. They are reportedly attempting to extort money from JLR, though it remains unclear if any sensitive data has been compromised.
The hackers have shared limited evidence of their access, including screenshots of internal networks, but no definitive proof of stolen data. JLR is aware of the claims and is working with cybersecurity experts, the National Cyber Security Centre, and law enforcement to address the issue and safely resume operations. The UK’s National Crime Agency has noted the rise of young cybercriminals linked to this network, with some members previously arrested in connection with other retail hacks.
The incident underscores the growing threat posed by loosely organized but highly disruptive youth hacking collectives targeting major corporations. JLR has yet to finalize a cyber insurance deal, and the financial impact of the attack could surpass the company’s profit after tax for the financial year 2025. The company has extended its production pause until October 1 to continue its forensic investigation and plans a phased restart of operations.
