Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[YZ250]

Not completely sure but I think that government aid is being asked for due to the mounting financial hardship that's been forced upon workers related to the JLR situation.

I’ve read similar, that the supply chain companies are appealing to the government for a furlough type agreement to help those on low or zero wages due to the JLR issues. 
But then MSM are usually full of shite, so who knows. 

Hmm, according to Queer Starmers spokesperson, no such talks regarding this will be taking place. 

[TheBoy]

I would not expect the tax payer to bail out small companies who are suppliers to JLR.  Nor would I expect them to bail out JLR, despite their size.

In the same way, I wouldn't expect the tax payer to bail out M&S, Harrods, Co-op and the hundreds of others that the media haven't bothered with this year.

Companies need to understand that they need to secure their systems - harder in the world of serverless computing/cloud that has been sold to companies as the holy grail, but actually makes matters worse - and provide sufficient funding to replace ageing systems which run unsupported hardware/OS/software.


From what I've gleaned from the IT press, JLR actually initially did a bloody good job of containing it once noticed, by taking immediate, decisive action to turn it all off.  That absolutely is the best way to deal with such intrusions.

Their issues now are scanning the logs and filesystems of every image for signs of tampering, and being able to bring the stuff back up in the correct order with the correct process - harder said than done when dealing with legacy stuff where those that knew how it worked have long gone.  Additionally, forensics need to ascertain where they initially got in, and how far they got.

Another problem they will have is, given their owner, I suspect their IT is done by TCS, who are on par with Accenture for being bad at such things.

I'd be surprised if they get things back to near normal by next month.


Its an old stat now, but it was once surveyed that 80 percent of businesses that suffered a cyber attack would last more than 2 years. That, added to the high profile attacks this year needs to be a wake up call for companies to spend more time securing systems, and having a process in place for what to do when it happens.  I'd opine that JLR had a great prcoess for the latter, but clearly piss poor on the former.


M&S is believed to be an Active Directory (an MS technology for a directory of users, computers, policies and so on) hack, where the crocks managed to get a (presumably backup) copy of the AD.  Co-op's initial entry appeared to be social engineering via a series of Teams calls.  JLR haven't released enough info yet, but again potentially looking towards AD and/or Entra (MS Azure version of on prem AD)...

[Doctor Gollum]

They only get paid for orders that they fulfill. And a company the size of JLR probably has 180 day credit terms.