2025 was a pivotal year for global cybersecurity. While some organizations strengthened their defenses, others learned the hard way that cyber threats are far from receding. Three major incidents stood out: the industrial breach at Jaguar Land Rover, the resurfacing of stolen Desjardins data, and the ransomware that paralyzed the city of Saint Paul. Each event exposes a unique but complementary risk: operational shutdown, long-tail data exposure, and critical infrastructure disruption. Here’s what we can learn to prepare for 2026.
1. Jaguar Land Rover: When Production Comes to a Halt
In September 2025, Jaguar Land Rover suffered a massive cyberattack. The automaker’s IT systems were compromised, causing complete shutdowns in several production lines for weeks. The direct financial loss was estimated at nearly CA$3.5 billion.
According to France 24, the attack led to a 27% drop in UK auto production for the month, highlighting the scale of the disruption (source).
This incident underscored the vulnerability of interconnected industrial environments. A single unsecured or poorly segmented access point can bring down an entire operation. For any business relying on continuous operations, this level of risk must be treated as critical.
Lesson: Operational resilience is just as vital as preventive security. Think in terms of business continuity, network segmentation, and fast-recovery scenarios.
2. Desjardins: Stolen Data Resurfaces Years Later
Six years after the major data breach that affected nearly 9 million members, Desjardins is still feeling the effects. In October 2025, sensitive data sets from the original leak re-emerged on the dark web—names, addresses, social insurance numbers, and banking info.
According to Le Journal de Montréal, over 50,000 Quebecers’ records were recirculated by cybercriminals, long after the original breach (source).
Despite mitigation efforts, this case proves that leaked data can have a lasting shelf life on the black market. The long-term impact on consumer trust is just as damaging as the initial breach.
Lesson: Businesses must maintain ongoing leak surveillance and plan for extended crisis communication and mitigation. A cybersecurity plan isn’t just access control—it must include long-term reputation management.
3. Saint Paul: A City Brought Down by Ransomware
In July 2025, the city of Saint Paul, Minnesota, was hit by a ransomware attack. Essential municipal services were disabled, including payment systems, administrative platforms, and even public safety operations.
According to CBS News Minnesota, it took weeks to restore critical systems, with the National Guard stepping in to support recovery efforts (source).
This highlighted how difficult it remains—even for public institutions—to contain and recover from a sophisticated, coordinated breach.
Lesson: Cybersecurity strategies must include realistic crisis scenarios, recovery protocols, and regularly tested backup strategies. The interconnection between local governments and private firms calls for a collaborative defense approach.
These three cases reflect the full spectrum of modern cyber threats: from industrial sabotage and data leaks with long-term effects to full-scale ransomware disruption. Going into 2026, organizations must go beyond good intentions. It’s time to implement proactive, scalable, and cross-functional cybersecurity strategies.
If any of these risks resonate with your current reality, the experts at My Technician can help. We already support several Quebec-based businesses in strengthening their IT security posture.
in your taskbar.