JLR production ground to a halt late on August 31 due to a “cyber incident”, and it still has yet to resume.
The company has confirmed production of its vehicles will remain paused until September 24, 2025. It initially announced the production pause on September 2 on its website, confirming it took immediate action to mitigate the impact of the cyber attack by shutting down its systems.
At the time, it said there was no evidence any customer data had been stolen, and that only its retail and production activities had been “severely disrupted”.
Now, it has confirmed some data has been affected, though it hasn’t specified what kind.
CarExpert can save you thousands on a new car. Click here to get a great deal.
“Since we became aware of the cyber incident, we have been working around the clock, alongside third-party cybersecurity specialists, to restart our global applications in a controlled and safe manner,” said a JLR Australia spokesperson.
“As a result of our ongoing investigation, we now believe that some data has been affected, and we are informing the relevant regulators. Our forensic investigation continues at pace, and we will contact anyone as appropriate if we find that their data has been impacted.
“We are very sorry for the continued disruption this incident is causing, and we will continue to update as the investigation progresses.”
JLR was forced to pause production at four plants in the UK – Halewood, Solihull, Wolverhampton and Castle Bromwich – as well as production facilities in Slovakia, China and India.
The shutdown affects not only vehicle production facilities, but also those which produce parts, which could have a ripple effect on existing customers who require servicing and repairs.
It’s unclear when production will resume.
Per Automotive News Europe, the hack has been claimed by a group calling themselves Scattered Lapsus$ Hunters, and JLR has lost track of about 40,000 cars built before the incident – something the company denies.
As a result of the operational shutdown, JLR has told many of its 33,000 staff members in the UK to stay at home, and is getting help from the British government’s cyber security department.
The shutdown has naturally affected suppliers too, with one telling the BBC that his company has laid off 40 people, or nearly half of its workforce.