Overview

• JLR said it proactively took systems offline and is restoring global applications in a controlled process.
• The company reported significant disruption to manufacturing and retail operations across its network.
• Halewood in Merseyside and Solihull were affected, with employees instructed by email not to come to work.
• The issue was first reported over the weekend, coinciding with the UK registration-plate changeover on 1 September.
• Attribution remains unknown, no ransom claims have been disclosed, and no leaks have appeared on usual darknet sites to date.