A cyberattack has crippled Jaguar Land Rover at the worst possible time.
Jaguar Land Rover (JLR) has confirmed that a major cyberattack has forced the company to suspend vehicle production globally since the end of August. Production is now expected to resume no earlier than September 24, 2025, marking one of the most significant disruptions the automaker has faced in recent years.
A Halt in Vehicle Manufacturing
JLR typically produces around 1,000 vehicles per day, primarily Land Rover SUVs, as Jaguar production remains scaled back ahead of the brand’s upcoming reinvention. With factories offline for weeks, the pause has created a severe production backlog and financial strain.
Although unconfirmed, industry experts suggest JLR may have lost track of nearly 40,000 vehicles prior to the cyberattack, with some analysts estimating the stoppage could be costing the company £5 million daily.
Official Statements and Timeline
- 2 September 2025: JLR confirmed it was impacted by a cyber incident, shutting down systems to contain the breach. At the time, the company stated there was no evidence of customer data theft, though retail and production were severely disrupted.
- 6 September 2025: JLR announced it was working with cybersecurity specialists and law enforcement to restore systems safely.
- 10 September 2025: The company admitted that some data had been affected and notified regulators, pledging to contact anyone impacted.
- 16 September 2025: JLR informed staff, suppliers, and partners that production would remain paused until at least 24 September 2025, as the forensic investigation continued.
Retail Partners Remain Open
Despite the shutdown of manufacturing, JLR stressed that retail partners remain operational, and customers can still access aftersales support. However, deliveries of new vehicles are expected to be delayed.
Ongoing Investigation
The carmaker continues to work “around the clock” with external cybersecurity experts to restore systems in a controlled and safe manner. While the full impact of the cyberattack is still under investigation, the prolonged disruption underscores the vulnerability of global automakers to digital threats.
JLR has apologised for the disruption, thanking customers, partners, suppliers, and employees for their patience. The company says further updates will be provided as the investigation progresses.
