Historic Cyberattack Costs Jaguar Land Rover $900 Million, Causes Over £1.9 Billion in Economic Losses

London – EcoPulse24

Jaguar Land Rover, the British luxury carmaker, has revealed details of a catastrophic cyberattack in August 2025, described as the most damaging in UK history with economic losses estimated at £1.9 billion. The attack began on August 31, 2025, when managers at the Halewood plant noticed unusual system activity. By the next day, the company was forced to suspend all production at its main UK plants: Solihull, Halewood, Wolverhampton, and Castle Bromwich.

Production remained halted for over six weeks, sending employees home and incurring direct costs exceeding £50 million per week. Direct financial losses reached £680 million ($896 million) in the third fiscal quarter. Unlike advanced cyberattacks, this breach exploited known methods: social engineering, credential theft, and weak network segmentation. Hackers targeted employees via 'vishing' (voice phishing), impersonating internal staff to access administrative accounts. The 'Scattered Lapsus$ Hunters' group, a coalition of Scattered Spider, Lapsus$, and ShinyHunters, claimed responsibility and published screenshots of JLR's internal IT systems.

Notably, this was not the first attack in 2025 - group Hellcat had breached JLR earlier in March, leaking hundreds of gigabytes of sensitive data. The British Cyber Monitoring Center (CMC) classified the incident as a 'Category 3 systemic event,' estimating the attack's economic impact at £1.6–2.1 billion. Over 5,000 UK companies, mainly in the supply chain, were affected; 80% reported negative impacts, and 14% had made layoffs by late September. The UK government issued a £1.5 billion emergency loan guarantee to support affected suppliers. Some smaller suppliers had to lay off nearly half their workforce.

JLR began a phased system restart in October, but full production only resumed by mid-November. Wholesale sales plunged 43.3% and retail sales dropped 25.1% year-on-year for the quarter. In December 2025, JLR confirmed that sensitive data of both current and former employees was compromised, raising concerns of identity theft and future phishing campaigns. The National Cyber Security Centre (NCSC), National Crime Agency, and Chancellor Rachel Reeves issued a joint letter in October urging UK company leaders to act proactively on cybersecurity. Jaguar Land Rover accounts for 4% of total UK goods exports and supports around 200,000 supply chain jobs, making any disruption highly consequential for the national economy.