A recent cyber-attack on Jaguar Land Rover has been attributed to Russian hackers, characterized by the use of novel ransomware and strategically timed to maximize impact. The breach exhibits hallmarks of Kremlin-backed operations, including efforts to obscure attribution and evade detection. Experts point to the sophisticated nature of the attack, suggesting a high degree of planning and resources. The use of custom ransomware variants, such as those associated with CVE-2022-30190, indicates a level of expertise typically reserved for state-sponsored actors. The attack's timing, coinciding with key business operations, further supports the notion of a targeted campaign. As the situation unfolds, practitioners should be aware of potential downstream effects, including regulatory scrutiny and supply-chain disruptions, particularly in the automotive sector1. This incident highlights the evolving threat landscape and the need for organizations to remain vigilant against nation-state actors, so what matters most is the potential for similar attacks to compromise critical infrastructure and disrupt global supply chains.