Tata Electronics has confirmed a cybersecurity breach that compromised some of its systems, following the discovery by security researchers that the ransomware group World Leaks had leaked over 200,000 files allegedly stolen from the company. The exposed data reportedly includes confidential documents related to Apple and Tesla, two of Tata’s major global clients. The breach involves more than 630 gigabytes of data available on the dark web, including Apple component specifications, manufacturing documents, material standards, emails, event logs, and employee passport copies.
Tata Electronics detected the incident weeks ago and activated its response protocols, clarifying that its business operations and manufacturing activities remain unaffected. Apple is conducting a thorough investigation into the potential exposure of sensitive supplier data. Tata Electronics also received a ransom demand linked to the cyberattack.
Among the leaked files are documents marked as confidential by Apple, including a detailed document on quality inspection standards for iPhone circuit board components. Files referencing “com.apple.factorydata,” material specifications, and manufacturing records from Tata’s Indian facilities were also identified. Tesla-related documents in the data dump include references to the “NV36 Chargeport Controller – North America” and engineering drawings related to Project Highland, Tesla’s redesigned Model 3 sedan.
This breach occurs at a crucial time for Tata Electronics, a key manufacturing partner for Apple outside China, responsible for about one-third of Apple’s iPhone production in India. The incident underscores the growing cybersecurity risks in global electronics supply chains, where sensitive intellectual property and customer information are increasingly targeted by ransomware groups. It also raises concerns about cybersecurity resilience within the global technology manufacturing ecosystem, as India aims to become a major electronics production hub. The outcome of ongoing investigations could have significant implications for supply chain security, data protection, and customer trust in the sector.
