Jaguar Land Rover (JLR), the UK’s largest car manufacturer, remains largely shut down following a major cyber-attack that forced it to halt production at its Halewood, Solihull, and Wolverhampton plants, as well as sites in Slovakia, Brazil, and India. Thousands of workers and suppliers have been told to stay home and will continue to be paid, with operations likely disrupted through late September or even October.

The attack has taken down dozens of JLR’s digital systems, including parts databases, forcing dealerships and garages to rely on manual processes. JLR has reported the incident to the Information Commissioner’s Office due to potential data risks but says there is no evidence of customer data theft so far.

A coalition of English-speaking hackers, reportedly linked to Scattered Spider, Lapsus$, and ShinyHunters, has claimed responsibility. JLR is working with cybersecurity specialists and law enforcement to restore systems “in a controlled and safe manner.”