Data has been "affected" as a result of the cyber attack on JLR last week, the company has confirmed.
The 1 September hack has left the Jaguar and Land Rover maker crippled. No cars have been produced globally since, leading to what is expected to be millions of pounds of lost income.
A timescale for a fix is yet to be announced.
The extent of the issues meant JLR brought in police and cybersecurity experts over the weekend to “restart our global applications in a controlled and safe manner”.
During this process, which included an investigation, it was discovered that "some data" was "affected", said JLR.
JLR said today (10 September) that those affected will be contacted, suggesting that this data relates to customers and may have been stolen.
A JLR spokesperson told Autocar: “As a result of our ongoing investigation, we now believe that some data has been affected and we are informing the relevant regulators.
“Our forensic investigation continues at pace and we will contact anyone as appropriate if we find that their data has been impacted.
“We are very sorry for the continued disruption this incident is causing and we will continue to update as the investigation progresses.”
JLR has been rebuilding its internal IT systems since it shut them down following the cyber attack.
Alongside production issues, dealer sales, handovers and parts ordering are also affected.
JLR told Autocar on Saturday that “our retail partners remain open”. Autocar understands dealers are manually registering cars while computer systems remain down.
Meanwhile, the majority of workers at JLR’s production sites in the West Midlands and Merseyside have been told not to return to work again today. They are being updated daily and still being paid, with lost hours being "banked".
Production is also understood to have stopped at JLR's factories in Slovakia and India.
While JLR's public-facing website appears to be fully operational, the car configurator isn't accepting build orders, instead directing buyers to purchase from stock.
JLR hack: what happened?
Autocar first reported issues affecting JLR on 1 September, when dealers couldn't register new cars on 'new plate day' , traditionally one of the year's busiest for registrations.
Join the debate
Add your comment
The hackers will remove the hack only after JLR does the following:Improve their poor reliability record. Expect removal in 2075.
Did someone very clever get very annoyed when this Indian company's car let them down, and the Indian company were not good at placating them?
Just a thought.
There's so much of it going on with large companies it's a joke. Maybe senior management need to consider their outsourcing partners and how diligently they manage their staff and those they contract out to.
I still can't believe that so much UK sensitive data and processing is performed and managed by offshore commpanies in nations that trade with countries like Russia!