Cyberattack on JLR Servers Forces Continued Production Halt
Cyberattack on JLR Servers Forces Continued Production Halt
Following a cyberattack earlier this month, Jaguar Land Rover (JLR) has revealed that it will prolong its production suspension until at least September 24.
As businesses that support the luxury automaker start to lose money, supply chain disruptions keep happening.
There have been claims of supply chain employees being laid off as a result of the JLR cyberattack. There is no chance of job loss for JLR staff.
Unite, a prominent British labor organization, has demanded that the UK government intervene and offer a furlough program to individuals who may lose their jobs as a result of the incident.
“JLR is undoubtedly an anchor for local industry,” said Trevor Dearing, director of essential infrastructure at Illumio. Since most businesses lack the financial stability of Tata, the parent firm of JLR, suppliers will see a rapid decline in cash flow as a result of this extended outage. This will be detrimental not only to the supply chain but also to JLR’s eventual reopening. Some of those enterprises might not be able to restart, which would make the healing process much more difficult and drawn out.
The “just-in-time” logistics and components supply method used by contemporary automakers is the root of the disruption.
Updates for stock delivery for vehicles being manufactured at the JLR plants are sent to interconnected third-party systems instead of accumulating parts.
Within the larger JLR supply chain, some small enterprises only get contracts from JLR.
“By ‘pulling the plug,’ JLR may have avoided the amount of work an incident response company would have needed to wipe, clean, and recover the entire systems affected from backups with minimal data loss,” said Simon Chassar, interim COO at cybersecurity firm e2e-assure. Even with improved cyber safeguards and fixes to prevent a follow-on assault, it will regrettably still take weeks to completely restart and return to their pre-attack state.
“This is a wake-up call for other manufacturers; we know it is difficult to protect and recover from, so cybercriminals are targeting operational resilience in manufacturing for financial gain,” Chasser added.
JLR said on September 10 that certain data had been impacted during the incident and that the company was notifying the appropriate authorities.
The incident has been attributed to a cybercriminal organization associated with Scattered Spider.
The group asserting accountability is called Scattered Lapsus$ Hunters, which may be a joint venture of Scattered Spider, ShinyHunters, and Lapsus$.
About The Author:
Yogesh Naager is a content marketer who specializes in the cybersecurity and B2B space. Besides writing for the News4Hackers blogs, he also writes for brands including Craw Security, Bytecode Security, and NASSCOM.
Read More:
Police Reveal Cybercriminals Buying Bank Accounts for 20% Profit
About Author
English