• Business

    Jaguar Land Rover backtracks, says hackers may have taken some data

    AnyFans Posted on

    By Sead Fadilpašić

    Copyright techradar

    Jaguar Land Rover backtracks, says hackers may have taken some data

    Skip to main content

    Tech Radar Pro

    Tech Radar Gaming

    Close main menu

    the business technology experts

    België (Nederlands)

    Deutschland

    North America

    US (English)

    Australasia

    New Zealand

    View Profile

    Search TechRadar

    Expert Insights

    Website builders

    Web hosting

    Best web hosting
    Best office chairs
    Best website builder
    Best antivirus
    Expert Insights

    Don’t miss these

    Bridgestone says it is investigating potentially major cyberattack – here’s what we know

    Scania hit by cyberattack – thousands of customers potentially affected, here’s what we know

    Attackers claim they hacked Nissan’s design studio and stole 4TB of data

    Venture capital giant IdeaLab confirms breach, says private data was stolen in attack

    Dell confirms data breach – but says hackers only stole “fake data”

    Major hack against car-sharing firm Zoomcar sees 8.4 million users at risk

    NASCAR confirms user data breach following Medusa ransomware attack

    Colt confirms customer data stolen as Warlock ransomware crew auctions off details

    Louis Vuitton says customer data was leaked following cyberattack

    NHS recruitment firm had major security bugs which could have exposed entire systems

    M&S thinks it might finally know what caused cyberattack – but still won’t say if it paid a ransom

    Supermarket giant admits 2.2 million people could be hit by worrying data breach – what to do if you’re affected

    Colt forced to take services offline following apparent cyberattack

    Aflac could be the latest US insurance giant hit by a Scattered Spider cyberattack

    Cybercrime gang hacks major health data provider – millions of highly personal files could be at risk of breach

    Jaguar Land Rover backtracks, says hackers may have taken some data

    Sead Fadilpašić

    11 September 2025

    The investigation showed that some data was stolen after all

    When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.

    (Image credit: Jaguar Land Rover)

    JLR confirmed data theft after initially denying it
    Hackers called “Scattered Lapsus$ Hunters” claimed responsibility
    The nature of the stolen data remains unclear

    It seems that cybercriminals who struck Jaguar Land Rover in late August stole sensitive company files, after all.

    The luxury carmaker recently published an updated announcement regarding the incident, and confirmed that data theft happened, despite initial skepticism.
    In the final days of August, Jaguar Land Rover announced suffering a cyberattack that “severely disrupted its production and retail activities”.

    You may like

    Bridgestone says it is investigating potentially major cyberattack – here’s what we know

    Scania hit by cyberattack – thousands of customers potentially affected, here’s what we know

    Attackers claim they hacked Nissan’s design studio and stole 4TB of data

    Scattered Lapsus$ Hunters
    It was forced to shut down parts of its infrastructure to the point of having to halt entire productions and sending employees home. According to the BBC, three plants were affected: the ones in Solihull, Halewood and Wolverhampton.

    However, at the time it said that it didn’t believe data was taken.
    Now, an updated announcement states otherwise: “As a result of our ongoing investigation, we now believe that some data has been affected and we are informing the relevant regulators. Our forensic investigation continues at pace and we will contact anyone as appropriate if we find that their data has been impacted.”
    Jaguar Land Rover issued a rather terse statement, not detailing the type or nature of the data stolen. Therefore, we don’t know if it belongs to employees, customers, or partners and other businesses.

    Are you a pro? Subscribe to our newsletter
    Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
    Contact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsorsBy submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.
    In the meantime, a group calling itself “Scattered Lapsus$ Hunters” claimed responsibility for the attack.
    The hacking collective, apparently made from the merger of three notorious cybercrime groups, was apparently bragging about the attack on Telegram, sharing screenshots which seem to be from inside JLR’s IT infrastructure. They were also cracking jokes about the breach, asking “Where is my new car, Land Rover?” and similar.
    The hackers shared a few screenshots as proof of their claims, which seem to be showing internal instructions for troubleshooting a car charging issue, as well as internal computer logs.
    However, the crooks did not confirm if they actually stole any files, or managed to deploy any malware, and cybercriminals are often keen to exaggerate their claims.
    Jon Abbott, founder and CEO of ThreatAware, commented on the latest update from JLR, “The theft of data only deepens what is already a painful situation for Jaguar Land Rover. Any disruption to operations and delays to production damage a business’s brand, and the addition of stolen data only further undermines customer trust and relationships.”
    “Customers should be extra vigilant for phishing attacks or scams that attempt to steal their personal and financial information. If they receive unsolicited emails claiming to be from Jaguar Land Rover and asking for sensitive information, they should exercise extreme caution,” Abbott continued.
    “The immediate step any Jaguar Land Rover customer should take is to change their password and enable multi-factor authentication; this reduces the risk of cybercriminals compromising their account if they haven’t already done so.”
    “Being able to stop attacks before they impact business systems and data is key. Clearly the current methods to detect are not working in isolation – your cyber hygiene has to be in place. It is the only way.”

    You might also like

    Jaguar Land Rover says cyberattack majorly affected production
    Take a look at our guide to the best authenticator app
    We’ve rounded up the best password managers

    Sead Fadilpašić

    Social Links Navigation

    Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

    You must confirm your public display name before commenting

    Please logout and then login again, you will then be prompted to enter your display name.

    Bridgestone says it is investigating potentially major cyberattack – here’s what we know

    Scania hit by cyberattack – thousands of customers potentially affected, here’s what we know

    Attackers claim they hacked Nissan’s design studio and stole 4TB of data

    Venture capital giant IdeaLab confirms breach, says private data was stolen in attack

    Dell confirms data breach – but says hackers only stole “fake data”

    Major hack against car-sharing firm Zoomcar sees 8.4 million users at risk

    Latest in Security

    UK Electoral Commission finally recovered from China hack after three years and £250,000 grant

    Cyberscam groups who stole $10 billion from Americans sanctioned by US

    Hackers abuse TOR network and misconfigured Docker APIs to steal crypto – so keep an eye on your wallet

    New Android RAT uses Near Field Communication to automatically steal money from devices

    Adobe patches ‘most severe’ flaw in Magento eCommerce platform

    US Department of Defense issues strict new cyber rules for potential contractors

    Latest in News

    Leaked Samsung Galaxy S26 Pro renders show the phone in a striking blue shade

    Jaguar Land Rover backtracks, says hackers may have taken some data

    Before you tackle Elden Ring Nightreign’s Deep of Night content, you’ll probably want to check out the game’s latest balance changes

    James Gunn confirms big fan theory about Man of Tomorrow plot: ‘It’s a story about Lex and Superman having to work together’

    Gemini just got a new highly-requested feature that trumps ChatGPT

    I tried AirPods Pro 3 and fell in love with these 3 big upgrades

    LATEST ARTICLES

    Jaguar Land Rover backtracks, says hackers may have taken some data

    Gemini just got a new highly-requested feature that trumps ChatGPT

    Leaked Samsung Galaxy S26 Pro renders show the phone in a striking blue shade

    The next iteration in AI managed web hosting is here

    Before you tackle Elden Ring Nightreign’s Deep of Night content, you’ll probably want to check out the game’s latest balance changes

    TechRadar is part of Future US Inc, an international media group and leading digital publisher. Visit our corporate site.

    Contact Future’s experts

    Terms and conditions

    Privacy policy

    Cookies policy

    Advertise with us

    Web notifications

    Accessibility Statement

    Future US, Inc. Full 7th Floor, 130 West 42nd Street,

    Please login or signup to comment

    Please wait…

    You Might Also Like