Tata Electronics Breach Exposes Apple and Tesla Trade Secrets After Ransomware Attack
Ransomware group World Leaks published over 200,000 files from Tata Electronics, including confidential Apple iPhone specs and Tesla engineering drawings, exposing critical supply-chain risks.
Indian electronics manufacturer Tata Electronics confirmed a ransomware attack on Monday after the extortion group World Leaks published over 200,000 files totaling more than 630 gigabytes on the dark web. The leaked data includes proprietary documents belonging to two of the world's most valuable companies: Apple and Tesla. The breach underscores the escalating risk of ransomware targeting Tier-1 suppliers in global technology supply chains, where a single compromise can expose the intellectual property of multiple Fortune 500 clients simultaneously.
World Leaks, a ransomware group previously linked to a breach at Nike in early 2026, claimed responsibility for the attack. The group posted the stolen data on its dark web site, accessible only via specialized browsers. Indian cybersecurity researcher Rajshekhar Rajaharia, who reviewed the files for Reuters, confirmed the data has been accessible since at least June 10, 2026. A ransom demand was issued to Tata Electronics, though the company declined to comment on specifics.
The leaked dataset reportedly includes emails, multi-year event logs, employee passport copies (including those of foreign nationals), and a wide range of manufacturing and component design specifications. A search for "Apple" within the World Leaks database returned 181 files and folders, several labeled "com.apple.factorydata" and referencing "material specification." Among the files was a 52-page document bearing Apple's proprietary markings, purportedly detailing quality inspection standards for iPhone circuit board components. Some files explicitly carried the footer: "This document contains proprietary and confidential information of Apple Inc."
On the Tesla side, one folder was labeled "NV36 Chargeport Controller – North America," a purported reference to components used in an upgraded Tesla Model Y SUV. Another file, marked "TRADE SECRET" and dated 2023, contained engineering drawings tied to Project Highland, Tesla's publicly known internal codename for the revamped Model 3 sedan. An assembly document dated May 2025 was also identified. Tesla's leaked files carried footers stating the contents were "deemed confidential, proprietary, and a trade secret of Tesla Inc."
Tata Electronics stated that its "response protocols were deployed immediately" following detection of the incident and that operations across its businesses remain unaffected. Apple confirmed it is investigating the breach, with a full analysis underway according to a source familiar with the matter. Neither Apple nor Tesla responded to media requests for comment at the time of reporting.
Critically, the incident affects one of Apple's most strategically significant supply chain partners. Tata currently manufactures approximately one-third of Apple's iPhone production in India, with Foxconn accounting for the remainder. This is not Tata's first encounter with a major cyber incident. In 2025, its British subsidiary Jaguar Land Rover suffered a ransomware attack that halted production output for six weeks.
The Tata Electronics breach highlights the growing danger of ransomware groups targeting manufacturers that hold intellectual property for multiple clients. As supply chains become more interconnected, a single vulnerability can cascade across industries, exposing trade secrets and sensitive employee data. The incident also raises questions about the adequacy of security measures at contract manufacturers handling designs for the world's most valuable technology companies.