Russian Hackers Disrupted Jaguar Land Rover, Halting Production in Britain, Brazil, China, India, Slovakia
Image: Zamin.uz

Russian Hackers Disrupted Jaguar Land Rover, Halting Production in Britain, Brazil, China, India, Slovakia

26 June, 2026.Crime.13 sources

The story in 15 seconds

  • Production halted for months across UK, India, Brazil, and Slovakia.
  • Russian-linked hackers suspected behind the attack; FBI, NCSC, and other agencies involved.
  • UK government bailed out JLR with £1.5B; estimated UK economic impact around $2.5B.

The divide · 1 of 4

House.gov stresses grey-zone risk, but The Manufacturer and others flag attribution caution.

Who skipped what

How each outlet frames it

Every outlet we compared, the headline it ran, and a link to the original article.

Source Diversity
13 sources
Other
6
Local Western
3
Western Mainstream
3
Western Alternative
1

Other

BankInfoSecurity
BankInfoSecurity

A Hack Too Far? Report Ties Russia to Jaguar Land Rover Hit

26 June, 2026

Read the original →
FormulaPassion
FormulaPassion

Attacco hacker JLR: pausa produttiva estesa di una settimana | FP - News - Auto

26 June, 2026

Read the original →
House.gov
House.gov

Krishnamoorthi Warns Russian Cyberattack on Jaguar Land Rover Could Foreshadow Future Threats to U.S. Government and Economy

26 June, 2026

Read the original →
SC Media
SC Media

Russian hackers suspected in Jaguar Land Rover cyberattack | brief

26 June, 2026

Read the original →
The Manufacturer
The Manufacturer

Russia suspected in JLR cyber attack

26 June, 2026

Read the original →
Zamin.uz
Zamin.uz

Russian hackers caused $2.5 billion in damages to Jaguar Land Rover

26 June, 2026

Read the original →

Local Western

CarnetdeBord
CarnetdeBord

De Deutsche Bahn targeted by a DDoS cyberattack: the pro-Russian hacker group NoName057(16) cited as a possible lead.

26 June, 2026

Read the original →
mezha.net
mezha.net

Investigation finds Russian hackers breached Jaguar Land Rover, production halted and UK funded recovery

26 June, 2026

Read the original →
UNITED24 Media
UNITED24 Media

Investigation Reveals Russian Hackers Behind Massive Cyberattack That Cost UK $2.5 Billion

26 June, 2026

Read the original →

Western Mainstream

l'Opinion
l'Opinion

Des hackers au service des Etats s'attaquent aux entreprises de pays rivaux pour voler leurs secrets industriels et commerciaux

26 June, 2026

Read the original →
TechCrunch
TechCrunch

Russian hackers were behind $2.5B hack of Jaguar Land Rover: Report

26 June, 2026

Read the original →
Wired
Wired

Come un cyberattacco ha messo in ginocchio la filiera di Jaguar Land Rover

26 June, 2026

Read the original →

Western Alternative

The Tech Buzz
The Tech Buzz

Russian Hackers Behind $2.5B Jaguar Land Rover Breach

26 June, 2026

Read the original →

Full story

JLR attack halts production

Hackers linked to Russia disrupted Jaguar Land Rover’s systems and forced the automaker to take its systems offline, with the attack beginning on Aug. 31, 2025 and halting production across factories in Britain, Brazil, China, India and Slovakia.

Cyberwarfare / Nation-State Attacks,Fraud Management & Cybercrime,Governance & Risk Management Suggestions that Russian attackers disrupted British automotive giant Jaguar Land Rover raise the question of how the British government might respond, especially if it confirms Kremlin involvement

BankInfoSecurityBankInfoSecurity

The disruption lasted until operations resumed in October 2025, but production levels did not return to normal until the following month, and the incident cost Jaguar Land Rover $260 million while taking an estimated $2.5 billion bite out of the British economy.

Image from BankInfoSecurity
BankInfoSecurityBankInfoSecurity

A separate report tied the same incident to a five-week production suspension, saying the shutdown “forced the leading British automaker to lock down its computer networks and completely stop production for five weeks.”

In the days after the breach, Microsoft alerted Jaguar Land Rover that a Russian group it was tracking appeared to be behind the attack, and The New York Times reported the attribution while citing anonymous sources.

Attribution debate and warnings

Ian Thornton-Trump, CISO of cybersecurity firm Inversion6, said, “I'm not surprised that Russia will find innovative ways of making life difficult for the government,” framing the incident as part of Russian “gray zone” tactics.

Cybercrime expert Alan Woodward, a visiting professor at England's University of Surrey, said the U.K. government’s response may be to “warn the public and, more importantly, critical business and infrastructure providers that it is a real and present danger.”

Image from CarnetdeBord
CarnetdeBordCarnetdeBord

House Intelligence Committee member Raja Krishnamoorthi warned that the Russian cyberattack on Jaguar Land Rover is “exactly the kind of threat we should be preparing for,” adding that if Russian hackers can inflict “billions of dollars in economic damage” on a close ally, they may target American companies and critical infrastructure.

The reporting also described uncertainty about whether the Russian attackers acted directly for Vladimir Putin’s government or used cybercriminals as proxies, noting that experts warned it is “all too easy for attackers to leave false flags.”

Economic stakes and next steps

The incident’s economic impact was described as severe enough that the U.K. government backed a £1.5 billion loan guarantee to support Jaguar Land Rover’s supply chain and protect jobs across its supplier network.

Jaguar Land Rover ha annunciato un ulteriore prolungamento della pausa produttiva di un’altra settimana, in risposta all’attacco informatico subito all’inizio di settembre

FormulaPassionFormulaPassion

The Manufacturer reported that around 800 computer systems were knocked offline, leaving the company unable to manufacture vehicles and throwing its 200,000-strong global supply chain into uncertainty, while also saying the disruption forced shifts at main UK manufacturing sites in Halewood and Solihull during the crucial 75-plate registration period.

Wired described a prolonged stoppage, saying production lines were “ferme” for “oltre tre settimane,” with JLR’s stop extended to at least “mercoledì primo ottobre 2025,” and it quoted the company saying teams were working “24 ore su 24” with specialists at the “Centro nazionale per la sicurezza informatica” and law enforcement.

In the same account, the article said JLR confirmed it had “colpita” by an “attacco informatico” and that “alcuni dati” were “compromessi,” while it noted that a Telegram group called Scattered Lapsus$ Hunters claimed responsibility shortly after the attack.

The deep audit

How victims, perpetrators and terms are handled across outlets.

More on Crime