Jaguar Land Rover (JLR), the iconic British luxury carmaker, has revealed that the massive cyberattack it suffered earlier this year cost the company more than £196 million (around $220 million) in just one quarter. The company shared the details in its financial results for the period between July 1 and September 30, confirming how deeply the incident affected its operations, supply chain, production, and overall financial health.
The cyberattack was first made public on September 2, 2025, when Jaguar Land Rover announced that it had suffered a significant security breach. The attack was severe enough to force the company to shut down production at several major manufacturing plants. Employees were sent home, assembly lines were halted, and operations across various departments were disrupted.
Soon after the initial announcement, the company confirmed that sensitive data had been stolen during the attack. A cybercrime group calling itself Scattered Lapsus$ Hunters claimed responsibility for the breach on Telegram, adding further pressure to an already critical situation. The attackers targeted company’s internal systems, causing widespread outages across manufacturing and supply chain systems.
Even though JLR moved quickly to contain the threat, the impact lasted for weeks. Production could not resume immediately, and the effects rippled through the company’s entire business structure.
Jaguar Land Rover stated that the attack placed severe stress on its financial stability and market position. Several suppliers who depend on Jaguar Land Rover for consistent business also faced liquidity challenges, increasing the risk of broader supply chain breakdowns. The disruption did not only affect JLR, it also affected the ecosystem of companies that rely on the automotive giant for orders and payments.
With JLR’s situation worsening, the UK Government intervened on September 29, 2025, to prevent further damage. The government approved a £1.5 billion loan guarantee to help the company stabilize its supply chain, restart production, and limit the long-term economic impact.
This intervention was essential in getting the company back on its feet. It allowed JLR to quickly restore relationships with suppliers, reduce production delays, and begin rebuilding its internal systems.
Following this support, JLR restarted production through a phased approach, with operations gradually returning to normal by October 8, 2025.
While operations resumed, the company’s financial report shows just how much the cyberattack hurt. The full cost of the attack for the quarter reached £196 million, a massive setback for a company that had posted strong profits the previous year.
Company stated:
-
Loss before tax and exceptional items was £(485) million for Q2, compared to a profit of £398 million in the same period last year.
-
For the first half of the year (H1), company recorded a £(134) million loss, a sharp drop from the £1.1 billion profit it reported the previous year.
-
EBIT margin for the second quarter fell to (8.6)%, down from 5.1% the previous year.
-
H1 EBIT margin dropped to (1.4)%, compared to 7.1% in the previous year.
Company highlighted that these steep declines were driven mainly by the cyber incident. Other contributing factors included the continuing impact of US tariffs, reduced production volumes due to the attack, and higher variable marketing expenses (VME).
The cyberattack had effects far beyond the automotive industry. The Bank of England, in its latest Monetary Policy Report, said that the UK’s GDP for Q3 2025 was weaker than expected, and specifically mentioned the Jaguar Land Rover cyberattack as one of the major reasons. This shows how large companies like JLR play a crucial role in the country’s economic performance, and how a cyberattack can have national-level consequences.
Despite the heavy financial loss, JLR now says that its operations have finally stabilized. The company confirmed that:
-
Wholesale operations are fully restored
-
Parts logistics are working normally
-
Supplier financing has returned to pre-attack levels
Importantly, JLR emphasized that it has not reduced its investment plans, even after such a major setback. The company says it will continue with its long-term commitment to investing £18 billion over five years starting from FY24, focusing on electrification, new technologies, and future vehicle development.
The JLR cyberattack stands as one of the most expensive and disruptive cyber incidents to hit a major automaker in recent years. The attack not only halted production and caused hundreds of millions in losses but also impacted suppliers, the British economy, and JLR’s long-term financial performance.
However, with government support, careful planning, and restored operations, JLR is working its way back toward stability. The incident also serves as a powerful reminder to global manufacturers about the importance of cybersecurity and the massive risks posed by modern cyber threats.
Interesting Article : Silent Fortinet FortiWeb Zero-Day Used to Add Rogue Admins
Pingback: LinkedIn Phishing: A New Threat to Businesses