JLR's Month-Long Cyberattack Raises Security Concerns, Sparks Government Intervention
Jaguar Land Rover (JLR) has faced criticism for its handling of a recent cyberattack that brought production to a halt for over a month. The automaker outsourced many of its computer systems to Tata Consultancy Services, a sister company of its owner. The incident has raised questions about JLR's cybersecurity measures and led to government intervention.
Robert Hannigan, former director of the UK's GCHQ, slammed JLR's response to the attack. He argued that no company should be offline for such an extended period following a cyber incident. In the absence of an in-house cybersecurity department, the responsibility typically falls to an IT security officer or Chief Information Security Officer (CISO), who oversees risk assessments and security management, sometimes with external support like NTT Data.
JLR hopes to resume operations partially within days, but concerns persist about the extent and effectiveness of its cybersecurity. The attack has forced the UK government to provide a taxpayer-backed loan to support JLR's supply chain, highlighting the broader economic impact of the incident.
JLR's cyberattack has sparked debate about the importance of robust cybersecurity measures and the potential consequences of outsourcing critical systems. As production resumes, the automaker will need to address these concerns and ensure it has adequate protections in place to prevent future disruptions.
