Jaguar Land Rover admits information has been compromised in cyber assault

Jaguar Land Rover (JLR) has revealed {that a} forensic investigation into the cyber assault on the corporate that came about on 31 August 2025 has discovered that information was stolen.

In an announcement on its web page, the automotive maker stated: “Since we grew to become conscious of the cyber incident, we now have been working across the clock, alongside third‑social gathering cyber safety specialists, to restart our international purposes in a managed and secure method.

“Because of our ongoing investigation, we now imagine that some information has been affected and we’re informing the related regulators. Our forensic investigation continues at tempo and we are going to contact anybody as applicable if we discover that their information has been impacted.

“We’re very sorry for the continued disruption this incident is inflicting and we are going to proceed to replace because the investigation progresses.”

A gaggle of younger Anglophone hackers who name themselves “Scattered Lapsus$ Hunters” have claimed duty for the assault.

In keeping with Sky Information, it will likely be a minimum of Monday 15 September earlier than manufacturing workers can get again to work at what’s the UK’s largest automotive producer.

The UK cyber safety group continues to supply commentary, as particulars of the assault emerge.

In an opinion article for Pc Weekly, Dominic Holden, a director at regulation agency Lawrence Stephens wrote: “The lesson from the JLR incident is easy: cyber safety is not simply an IT drawback – it’s a boardroom concern. Boards should demand sturdy planning, allocate assets and guarantee rehearsals are carried out. Solely then can a enterprise minimise monetary and reputational harm when an assault happens.”

Jon Abbott, founder and CEO of cyber safety software program supplier ThreatAware stated: “The theft of knowledge solely deepens what’s already a painful state of affairs for Jaguar Land Rover. Any disruption to operations and delays to manufacturing harm a enterprise’s model, and the addition of stolen information solely additional undermines buyer belief and relationships.

“Prospects must be additional vigilant for phishing assaults or scams that try and steal their private and monetary data. In the event that they obtain unsolicited emails claiming to be from Jaguar Land Rover and asking for delicate data, they need to train excessive warning”.

Darren Williams, CEO and founding father of anti-data exfiltration specialist provider BlackFog stated: “The Scattered Spider group has claimed duty and information exfiltration was a major a part of its earlier assaults. Previous incidents have seen attackers getting their palms on giant volumes of buyer data, which not solely carry a worth on the darkish net however may also be utilized in identification theft and focused assaults. Knowledge exfiltration is now the first [activity] of those ransomware gangs, and organisations should focus their defences on stopping intruders from accessing and stealing their mission-critical data.” 

And Robert Cottrill, know-how director at cloud safety companies agency ANS stated: “The affirmation that information has been compromised steps up the extent of severity of Jaguar Land Rover’s cyber assault. The automotive business’s huge shops of buyer, provider, and worker information make it a major goal for cyber criminals.”