Key Points
- World Leaks published over 200,000 files allegedly from Tata Electronics systems
- Leaked data reportedly includes Apple and Tesla proprietary documents
- Tata accounts for roughly one-third of iPhone production in India
Tata Electronics has confirmed a cybersecurity incident affecting some of its systems, days after ransomware group World Leaks published more than 200,000 files allegedly stolen from the company on the dark web — hidden websites accessible only through specialised software and often used for illicit data trading.
Reuters reported on Tuesday (23 June) that the group had posted files purportedly linked to Apple and Tesla, both customers of the Hosur-based electronics manufacturer. The leaked dataset reportedly totals over 630 GB and includes emails, event logs spanning several years, and passport copies of employees, including foreign nationals.
“A few weeks ago, Tata Electronics identified a cybersecurity incident on some of our systems. Our response protocols were deployed immediately, and the incident has had no impact on our operations across businesses, which remain unaffected,” the company said to the news agency.
Apple investigating breach
Apple is investigating the breach and a full analysis is under way, according to a people familiar with the matter. The source also said Tata had received a ransom demand — a payment demanded by attackers in exchange for not releasing or destroying stolen data — related to the incident. Tata Electronics declined to comment on the alleged ransom demand.
The incident comes as Tata continues to expand its role in Apple’s global supply chain. The company has emerged as one of Apple’s most important manufacturing partners outside China and currently accounts for roughly one-third of iPhone production in India, with Foxconn producing the remainder.
World Leaks, which has previously claimed responsibility for a breach involving Nike, announced on its dark web site that it was publishing stolen data from Tata Electronics.
A database visible on the site reportedly includes several purported Apple files and folders, some titled “com.apple.factorydata”, as well as documents referring to material specifications.
Tesla documents also exposed
Cybersecurity researchers, who reviewed the files, said the dataset also contained documents linked to Apple and Tesla. Among the files reviewed was a 52-page document bearing Apple’s proprietary markings and purportedly detailing quality inspection standards for iPhone circuit board components. Several files and folders were also linked to the term “Hosur”, the location of Tata’s main iPhone assembly facility in Tamil Nadu.
Industry sources say Tata Electronics also manufactures components for Tesla. One folder on the leaked database was labelled “NV36 Chargeport Controller – North America“, appearing to reference components used in an upgraded version of Tesla’s Model Y SUV.
Another purported Tesla document from 2023, marked “TRADE SECRET”, contained drawings linked to Project Highland, the publicly known internal codename for Tesla’s updated Model 3 sedan. Some files carried footers stating that they contained proprietary and confidential information belonging to Apple and Tesla.
The data had been accessible on the dark web since at least 10 June, according to cybersecurity researchers who reviewed the files.
The Indian Computer Emergency Response Team (CERT-In), which oversees cyber incidents in the country is yet to comment on the matter.
Your Questions, Answered
What happened in the Tata Electronics cyber breach?
Tata Electronics confirmed a cybersecurity incident affecting some of its systems. Ransomware group World Leaks subsequently published over 200,000 files allegedly stolen from the company on the dark web, totalling more than 630 GB of data.
Was Apple data compromised in the Tata Electronics breach?
The leaked files reportedly include documents linked to Apple, including a 52-page document with Apple's proprietary markings detailing quality inspection standards for iPhone components. Apple is investigating the breach.
What Tesla information was allegedly leaked?
The leaked data reportedly includes Tesla documents, including one marked 'TRADE SECRET' with drawings linked to Project Highland, the codename for the updated Model 3 sedan, and files referencing Model Y chargeport controller components.
Has Tata Electronics paid the ransom demand?
Tata Electronics declined to comment on the alleged ransom demand. A source told Reuters that Tata had received a ransom demand related to the incident, but the company has not confirmed whether it has engaged with the attackers.
