Jaguar Land Rover cyber assault prices agency £485m within the quarter
Jaguar Land Rover (JLR) has paid a heavy worth for the cyber assault it suffered in August, reporting a income lack of £485m for the three months ending 30 September. In the identical interval in 2024, it reported a revenue of £398m.
The assault prompted the automobile maker to close down its factories for round six weeks. Manufacturing is now again to regular, having begun to renew firstly of October, across the identical time because the authorities introduced it will again the corporate with a £1.5bn mortgage assure to assist its provide chain.
The Cyber Monitoring Centre (CMC) mentioned on 22 October it believed the broader financial price of the assault to be £1.5bn as much as that time, describing the assault as a Class 3 Systemic Occasion on its “hurricane” scale.
JLR right this moment reported quarterly income of £4.9bn, down 24% 12 months on 12 months. It had been, it mentioned, a “difficult” quarter. The cyber assault compelled the corporate to restart the IT techniques used to wholesale autos and its World Components Logistics Centre. It additionally needed to quick‑observe the introduction of a provider financing scheme to offer suppliers with money. The just about £500m loss was partly associated to cyber-related prices totalling £196m, the corporate mentioned.
JLR CEO Adrian Mardell mentioned: “JLR has made robust progress in recovering its operations safely and at tempo following the cyber incident. In our response, we prioritised shopper, retailer and provider techniques, and I’m happy to substantiate that manufacturing of all our luxurious manufacturers has resumed.”
The corporate reported its outcomes simply because the Workplace for Nationwide Statistics reported that the UK financial system grew a mere 0.1% within the third quarter of 2025, down from 0.3% within the second quarter.
JLR was helped by the Nationwide Cyber Safety Centre (NCSC) throughout the assault and in its aftermath. To this point, neither the automobile maker nor the NCSC have disclosed who was accountable for the assault.
Cyber safety menace evaluation agency Cyfirma has recognized the Scattered Spider Lapsus$ Hunters group because the probably attacker.
Cyfirma’s report famous {that a} Telegram channel calling itself Scattered Lapsus$ Hunters claimed accountability for Jaguar Land Rover’s cyber safety incident within the early days, sharing a screenshot of Jaguar Land Rover’s inner IT techniques.
The channel’s title merges three English-speaking hacker collectives: Scattered Spider, Lapsus$ and ShinyHunters.
The agency additionally famous that Shinyhunters Collective has beforehand been linked to cyber assaults on UK retailers.
“Researchers, media retailers and our personal evaluation point out with medium confidence that the group ShinHhunters [sic] Collective could also be accountable,” it mentioned.
In the meantime, the federal government’s Enterprise and Commerce Committee wrote to Tata Consultancy Providers in late September in search of solutions over doable hyperlinks to the assault on JLR. Its chair, Liam Byrne MP, wrote to TCS CEO Krithi Krithivasan to hunt details about the JLR cyber assault and different cyber incidents at Marks and Spencer (M&S) and Co-op Group.
TCS was briefly linked to the Scattered Spider assault on M&S earlier this 12 months. The Monetary Instances and the BBC individually reported, in Could 2025, that the Indian IT companies agency was conducting an inner investigation to search out out whether or not it was the entry level for the cyber assault on M&S. JLR is coincidentally backed by the broader Tata organisation.
