A cyberattack forced Jaguar Land Rover (JLR) to halt production across its factories for over three weeks, with operations suspended until at least **September 24** and potential for further delays. The attack disrupted JLR’s **Nitra plant in Slovakia**, which manufactures **130,000 vehicles annually** (including Discovery and Defender models) and employs **4,000 workers**, leading to cascading supply chain disruptions. Key suppliers like **Eberspächer Gruppe** (exhaust systems) suspended production in Nitra, placing **30 employees on short-time work (80% pay)** or leave. Other suppliers, such as **Hollen (quality assurance for car parts)**, imposed restrictions, while subcontractors scaled back operations due to dependency on JLR. The company acknowledged **potential data compromise**, though specifics remain undisclosed. The prolonged shutdown threatens financial losses, reputational damage, and broader economic ripple effects across Europe’s automotive sector, with suppliers facing operational and revenue declines.
Source: https://www.insurancejournal.com/news/international/2025/09/17/839435.htm
TPRM report: https://www.rankiteo.com/company/jaguar-land-rover_1
"id": "jag4683946110725",
"linkid": "jaguar-land-rover_1",
"type": "Cyber Attack",
"date": "9/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'Automotive',
'location': ['Global (headquartered in UK)',
'Nitra plant in Slovakia'],
'name': 'Jaguar Land Rover Automotive Plc (JLR)',
'size': 'Large (e.g., Nitra plant employs ~4,000)',
'type': 'Automaker'},
{'industry': 'Automotive (exhaust systems)',
'location': 'Nitra, Slovakia (plant affected)',
'name': 'Eberspächer Gruppe GmbH & Co.',
'size': '~30 employees at Nitra plant',
'type': 'Supplier'},
{'industry': 'Automotive (quality assurance for car '
'parts)',
'name': 'Hollen',
'type': 'Supplier'},
{'industry': 'Automotive',
'name': 'Subcontractors tied to Jaguar Land Rover',
'type': 'Suppliers'}],
'description': 'The cyberattack that disrupted Jaguar Land Rover (JLR) '
'factories has caused a ripple effect, forcing key suppliers '
'like Eberspächer Gruppe GmbH & Co. to suspend or scale back '
"production. JLR's Nitra plant (Slovakia), which produces "
'130,000 vehicles annually, remains closed for at least three '
'weeks, with concerns of prolonged downtime. Some data may '
'have been compromised, and suppliers are implementing '
'restrictions or short-time work for employees due to the '
'shutdown.',
'impact': {'data_compromised': 'Possible (unspecified data)',
'downtime': {'Eberspächer (Nitra plant)': 'At least 2 weeks '
'(suspended production)',
'Hollen': 'Restrictions implemented (duration '
'unspecified)',
'JLR': 'At least 3 weeks (factories closed until '
'Sept. 24, 2025, or longer)'},
'operational_impact': ['JLR factories at a standstill',
'Suppliers (e.g., Eberspächer, Hollen) '
'forced to pause/scale back production',
'Eberspächer employees on short-time work '
'(80% salary) or holiday',
'Nitra plant (130,000 vehicles/year) '
'halted'],
'systems_affected': ['Global applications',
'Production systems (JLR and suppliers)']},
'investigation_status': 'Ongoing (as of Sept 2025)',
'references': [{'date_accessed': '2025', 'source': 'Bloomberg'},
{'source': 'Related: Britain’s M&S Restores Click and Collect '
'Services 15 Weeks After Systems Hacked'}],
'response': {'communication_strategy': ['Spokesperson statements (e.g., '
'Katarina Chlebova, JLR; Anja Kaufer, '
'Eberspächer)'],
'incident_response_plan_activated': 'Yes (JLR working to restore '
"global applications 'in a "
'controlled and secure '
"manner')",
'remediation_measures': ['Restoring global applications '
'securely']},
'title': 'Jaguar Land Rover Cyberattack Fallout Spreads to Suppliers',
'type': ['Cyberattack', 'Supply Chain Disruption']}