Tata Electronics Confirms Breach; Alleged Apple, Tesla Files Exposed

When a ransomware group publishes hundreds of thousands of files from a major Apple supplier, the first question is whether any of it is real. CNBC reported that Reuters researchers reviewing the files could not immediately verify their authenticity. What is not in dispute is that Tata Electronics confirmed a cybersecurity incident, and that the World Leaks extortion group published more than 200,000 files totaling over 630 gigabytes, claiming the data was stolen from Tata's systems.

Tata Electronics reportedly accounts for roughly a third of iPhone production in India, which makes the alleged contents sensitive. The cache reportedly includes Apple-labeled folders named "com.apple.factorydata," a 52-page document bearing Apple's proprietary markings purportedly detailing quality inspection standards for iPhone circuit board components, and Tesla engineering materials including a folder labeled "NV36 Chargeport Controller - North America," described as a reference to parts for an upgraded Tesla Model Y, and a 2023 document marked "TRADE SECRET" containing drawings for Tesla's internal "Highland" project, the publicly known codename for its revamped Model 3 sedan. Emails, multi-year event logs, and passport copies of employees including foreign nationals are also reportedly in the dump.

Tata said in a statement: "A few weeks ago, Tata Electronics identified a cybersecurity incident on some of our systems. Our response protocols were deployed immediately, and the incident has had no impact on our operations across businesses, which remain unaffected." Apple said it is investigating. Tata reportedly received a ransom demand but declined to comment on it. Neither company has confirmed whether any specific documents are authentic or whether proprietary manufacturing IP was genuinely compromised.

The data was reportedly accessible on the dark web since at least June 10, with World Leaks formally adding the Tata Electronics data on or around June 12. Tata's public confirmation followed several days later. That gap matters most for the employees whose passport scans and personal records were reportedly accessible in the interim. World Leaks has previously claimed responsibility for a Nike breach, establishing it as an active extortion-and-publication group, though that history does not resolve the question of what Tata data is genuinely in those files.

The reporting leaves the most consequential questions open: whether the files are authentic, how the breach occurred, and what the ransom demand entailed. Apple's other manufacturing partners in India will be watching how Tata and Apple respond, and whether this incident raises the floor for what supplier security audits require.