Automaker Jaguar Land Rover (JLR) announced that it was forced to take a number of systems offline due to a cyberattack. The incident appears to have affected the automaker’s manufacturing and retail operations.
“JLR was affected by a cyber incident. We took immediate measures to mitigate its impact by proactively shutting down our systems,” the company said in an official statement. “At present, there is no evidence of any customer data being stolen; however, our retail and manufacturing operations have been severely disrupted.”
JLR also says that work is underway on a controlled restart of all global applications. The company is not giving a specific timeframe for a return to normal operations and is not disclosing any details about the attack it has faced.
The first reports of disruptions at JLR came from dealers in the UK, who complained that they could no longer register new vehicles or supply parts to service centers.
According to the Liverpool Echo, the attack occurred over the past weekend, and due to the incident JLR had to shut down a number of systems, including those used at the company’s manufacturing facility in Solihull (the Land Rover Discovery, Range Rover, and Range Rover Sport models are assembled here).
Also, the media report that on Monday an email was sent to workers at the company’s plant in Halewood asking them not to come to work, and other employees were also sent home.
At present, no hacker group has claimed responsibility for the attack on Jaguar Land Rover.
2025.01.25 — 18,000 script kiddies have been infected with backdoor via XWorm RAT builder
According to CloudSEK analysts, malefactors attack novice hackers using a fake malware builder. Script kiddies' systems become infected with a backdoor that steals data and subsequently…
Full article →
2025.04.25 — Asus patches vulnerability in AMI's MegaRAC enabling attackers to brick servers
Asus released patches for the CVE-2024-54085 vulnerability that allows attackers to seize and disable servers. The security hole affects the American Megatrends International (AMI) MegaRAC Baseboard Management…
Full article →
2025.01.23 — Fake Telegram CAPTCHA forces users to run malicious PowerShell scripts
Hackers used the news of Ross Ulbricht pardoning to lure users to a rogue Telegram channel where they are tricked into running malicious PowerShell code. This…
Full article →
2025.03.07 — YouTube warns of scam video featuring its CEO
According to YouTube, scammers use an AI-generated video of the company's CEO in phishing attacks to steal user credentials. The scammers attack content creators by sending them…
Full article →
2025.01.27 — YouTube plays hour-long ads to users with ad blockers
Users complain that YouTube plays very long unskippable ads. Sometimes such ads are longer than the video the person is watching. The issue was raised…
Full article →
2025.04.07 — Critical RCE vulnerability discovered in Apache Parquet
All versions of Apache Parquet up to and including 1.15.0 are affected by a critical remote code execution (RCE) vulnerability whose CVSS score is 10 out…
Full article →
2025.04.04 — Privilege escalation vulnerability in Google Cloud resulting in sensitive data leaks finally patched
Tenable Research revealed details of a recently patched privilege escalation vulnerability in Google Cloud Platform (GCP) Cloud Run enabling an attacker to gain access to container images…
Full article →
2025.03.16 — Researchers force DeepSeek to write malware
According to Tenable, the AI chatbot DeepSeek R1 from China can be used to write malware (e.g. keyloggers and ransomware). DeepSeek was released in January 2025 and caused a stir…
Full article →
2025.04.15 — Hackers exploit authentication bypass bug in OttoKit WordPress plugin
Hackers exploit an authentication bypass vulnerability in the OttoKit (formerly SureTriggers) WordPress plugin used by more than 100,000 websites. First attacks were recorded just…
Full article →
2025.03.12 — Mass exploitation of PHP-CGI vulnerability in attacks targeting Japanese companies
GreyNoise and Cisco Talos experts warn that hackers are actively exploiting CVE-2024-4577, a critical PHP-CGI vulnerability that was discovered and fixed in early June 2024. CVE-2024-457…
Full article →