Disaster Recovery Journal Winter 2025

What Jaguar Land Rover’s Shutdown Reveals About the Next Supply Chain Crisis Jaguar Land Rover’s Cyberattack Demonstrates How Complex Supply Chains Amplify Consequences and What Could Happen If Attackers Target Automotive Software Next

By JOE SAUNDERS

W

hen Jaguar Land Rover shut down its IT network and manufacturing this fall, the world saw the tangible costs of a motivated cyberattack.

across the automotive ecosystem. The five-week shutdown revealed what many in the industry already suspected: automotive supply chains are highly interconnected and fragile. A single disruption can ripple through factories, logistics networks, and suppliers, with economic implications far beyond the walls of a single company. While the JLR attack relied on social engineering to gain access to IT systems, it underscores a deeper strategic

concern. The next attack could come through the software supply chain, where compromised components could have consequences far more dangerous than temporary factory downtime. The JLR Attack The attack against JLR demonstrates how disruption spreads across industrial networks. After gaining access, the attackers moved laterally from IT systems into OT, affecting the factory floor and stealing company data.

Production lines halted, thousands of workers were idled, and the UK government stepped in with a £1.5 billion loan guarantee to stabilize suppliers. According to estimates, the total economic impact approached nearly $2.5 billion, affecting thousands of organizations

22 DISASTER RECOVERY JOURNAL | WINTER 2025