The news: Jaguar Land Rover (JLR), the UK’s biggest carmaker, was crippled by a cyberattack that has shut down production lines for three weeks and counting, per The New York Times.

What began as a system outage has ballooned into a crisis that’s costing them billions. Production losses are running as high as £72 million ($92 million) a day, with analysts projecting total damages topping £2 billion ($2.6 billion)—potentially wiping out last year’s profit, per The Economic Times.

Without finalized cyber insurance, JLR is left to absorb the full cost. Delayed deliveries, personal data leaks, and uncertainty have shaken trust in the Jaguar badge. 

Why it’s worth watching: Hackers crippled JLR’s IT and manufacturing systems on August 31, halting global production, closing plants, and stealing customer and employee data. 

The details: 

• JLR halted production at several major factories, with up to 1,000 cars a day not being built. The company’s 33,000 employees were furloughed or sent home, per the BBC.
• The initial investigation suggests that the hackers employed ransomware-like methods, although no ransom requests have been made public yet, per PR News.
• Systems aren’t expected to go back online until October.

The attack is part of a ransomware wave battering Europe, with Marks & Spencer warning of a £300 million ($383 million) hit and major airports facing cyber disruptions.

The bigger picture: JLR’s crisis shows automotive firms are prime targets, facing an average of 1,553 weekly cyberattacks per company—on par with media and just below defense and energy, per Check Point.

• Stellantis suffered a data breach via a third-party vendor, compromising millions of customer records and compounding €2.3 billion ($2.5 billion) in net losses.
• Renault fell victim to a data leak in early 2025 when a supplier was compromised, resulting in 17 GB of sensitive internal files exposed.

Our take: Ransomware and cyberthreats have become more sophisticated due to the proliferation of AI and can compromise everything from customer data to factories and supply chains. 

Brands can’t afford to wait until the next breach to act. Companies should invest in cybersecurity insurance to shield themselves from devastating losses and supply-chain shocks. Equally important, they must build brand marketing strategies around recovery to protect brand equity.