Ransomware Attack Disrupts Jaguar Land Rover Operations as Cyber Threats Surge Across Industries
Jaguar Land Rover (JLR), the UK-based automaker owned by India’s Tata Motors, confirmed a ransomware attack that severely disrupted its retail and production operations. In a statement released Tuesday, the company revealed it had taken immediate action to contain the incident by proactively shutting down systems. While JLR reported no evidence of customer data theft, it is working to restore global applications in a controlled manner.
The attack is part of a broader wave of cyber incidents targeting critical industries. U.S. steelmaker Nucor also recently experienced a cybersecurity breach, forcing a shutdown of some production lines. The insurance sector has been particularly hard hit, with Aflac, Philadelphia Insurance Companies, and Erie Insurance all falling victim to attacks this summer.
Grocery supply chains have not been spared United Natural Foods Inc. (UNFI), a distributor for Whole Foods and other retailers, disclosed a cyber incident in July that temporarily disrupted operations. Meanwhile, the FBI issued a warning last month about the cybercriminal group "Scattered Spider," which has been targeting airlines. Hawaiian Airlines confirmed a June cybersecurity event affecting its IT systems, while Air France and KLM reported a data breach in their customer service platform.
The surge in attacks underscores the growing sophistication of threat actors and the widespread impact of ransomware on global operations.
Aflac TPRM report: https://www.rankiteo.com/company/aflac
Jaguar Land Rover TPRM report: https://www.rankiteo.com/company/jaguar-land-rover_1
Nucor TPRM report: https://www.rankiteo.com/company/nucor-corporation
"id": "afljagnuc1768389868",
"linkid": "aflac, jaguar-land-rover_1, nucor-corporation",
"type": "Cyber Attack",
"date": "1/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Automotive',
'location': 'United Kingdom',
'name': 'Jaguar Land Rover',
'type': 'Automaker'}],
'data_breach': {'data_exfiltration': 'No evidence of data exfiltration'},
'description': 'Jaguar Land Rover said its retail and production activities '
'were severely disrupted after the company was attacked by a '
'ransomware group. The U.K.-based automaker took immediate '
'action to mitigate its impact by proactively shutting down '
'its systems after being impacted by a cyber incident.',
'impact': {'data_compromised': 'No evidence of customer data stolen',
'operational_impact': 'Severely disrupted retail and production '
'activities',
'systems_affected': 'Global applications'},
'investigation_status': 'Ongoing',
'ransomware': {'data_exfiltration': 'No evidence of data exfiltration'},
'references': [{'source': 'Fox Business',
'url': 'https://www.foxbusiness.com'}],
'response': {'containment_measures': 'Proactively shut down systems',
'incident_response_plan_activated': 'Yes',
'remediation_measures': 'Working to restart global applications '
'in a controlled manner'},
'title': 'Jaguar Land Rover Ransomware Attack',
'type': 'Ransomware'}