Tata Electronics Confirms 630GB Breach With Apple and Tesla Files

Tata Electronics, an Indian electronics and semiconductor manufacturer and a key supplier to Apple and Tesla, confirmed a cybersecurity incident on Monday, weeks after a hacker forum listing offered more than 630GB of files purportedly stolen from the company. The cache, posted by the World Leaks ransomware group, includes documents that researchers say carry Apple supplier specifications and Tesla trade-secret markings. Tata said its response protocols were deployed immediately and that operations across its businesses remain unaffected.

The weight of the Tata Electronics data breach sits in what the dump contains. Researchers reviewing the World Leaks listing told Reuters they found Apple folders labelled “com.apple.factorydata” and a 52-page document bearing Apple’s proprietary footer on iPhone circuit board quality inspection, alongside a Tesla folder for the “NV36 Chargeport Controller – North America” and a 2023 “TRADE SECRET” file tied to Project Highland, the internal codename for the revamped Model 3 sedan.

The 630GB Posting and What Researchers Have Seen

The World Leaks listing on its dark web leak site claims to offer more than 200,000 files totalling over 630GB, taken from Tata Electronics. But the data had been accessible on the dark web since at least June 10, 2026, according to cybersecurity researcher Rakesh Krishnan, who told Reuters the files were posted two days before the company surfaced on the ransomware.live victim list. A review of a sample of the files by TechCrunch found what appear to be Apple supplier specifications and Tesla manufacturing documents, though the authenticity, provenance, and completeness of the data could not be independently verified.

Indian cybersecurity researcher Rajshekhar Rajaharia, who reviewed the Tata files on World Leaks for both TechCrunch and Reuters, said the advertised cache included Outlook email conversations, SAP-related information, and event logs spanning several years. He told Reuters the files also contain passport copies of employees including foreign nationals, and that some folders carried operational labels such as “War Room,” “Equipment Data,” “IATF Audit Documents,” and “Maintenance Engineer reports.” The Cybernews review of the same listing turned up Tata Electronics energy bills, factory licences, cryptographic certificates and key files, and dozens of Standard Operating Procedure spreadsheets covering machine setup, inspection, and manufacturing processes. References to Pegatron, Foxconn, and Qualcomm also appear in the text file, though Cybernews noted there is no evidence those companies have been compromised.

Inside the World Leaks listing, a search for “Apple” returned 181 files and folders, and a search for “Tesla” returned files including what appeared to be manufacturing specifications and an assembly document dated May 2025. Tied to “Hosur,” the Tamil Nadu location of Tata’s main iPhone assembly plant, the same listing also surfaces 33 files and folders, alongside documents dated as late as May of this year. Tata Electronics declined to say on Monday whether the company is negotiating with World Leaks or how much money the attackers demanded.

• Outlook email conversations and SAP-related operational data
• Apple supplier specifications, including a 52-page document on iPhone circuit board quality inspection
• Tesla manufacturing documents, including a 2023 “TRADE SECRET” file and the “NV36 Chargeport Controller – North America” folder
• Event logs spanning several years
• Passport copies of employees including foreign nationals
• Factory energy bills, licences, and “War Room” documents
• Standard Operating Procedure spreadsheets covering machine setup and inspection
• Cryptographic certificates and key files

What the Apple and Tesla Documents Inside the Dump Show

The consequential exposure in the Tata Electronics data breach sits in the Apple and Tesla files inside the listing. Researchers who reviewed the cache for Reuters said the Apple materials include a 52-page document bearing Apple’s proprietary footer on iPhone circuit board quality inspection, plus folders labelled “com.apple.factorydata” and “material specification.”

Some of the files published by World Leaks carried footers stating, “This document contains proprietary and confidential information of Apple Inc.” and “information contained herein is deemed confidential, proprietary, and a trade secret of Tesla Inc.” Reuters couldn’t immediately verify the authenticity of those documents and couldn’t immediately reach World Leaks for comment. Tata Electronics itself declined to confirm whether any of its customer information was exposed, and Apple and Tesla didn’t respond to requests for comment.

The Tesla side of the cache includes a folder labelled “NV36 Chargeport Controller – North America,” a purported reference to parts used in an upgraded Model Y SUV, and a 2023 document described as “TRADE SECRET” containing drawings for Project Highland, the publicly known internal codename for the revamped Model 3 sedan. Cybernews also identified PDF, Excel, and PowerPoint files in the listing, including Tata Electronics energy bills, factory licences, and a folder titled “War Room documents.” The dump includes material that spans several years of activity, with some documents dated as late as May of this year. The file names include supplier-specific labels such as “com.apple.factorydata,” “material specification,” and “NV36 Chargeport Controller – North America,” per the Reuters review of the listing.

The “Hosur”-tagged files in the World Leaks listing correspond to the Tamil Nadu location of Tata’s main iPhone assembly plant. Reuters reports that Tata currently accounts for roughly a third of Apple’s iPhone production in India, with Foxconn making up the rest. The same Tata Electronics facilities in India are the source of the Apple supplier specifications and Tesla component documents in the World Leaks listing.

Tata’s Statement and the Five Questions It Does Not Answer

Tata Electronics confirmed the incident on Monday through a statement to both TechCrunch and Reuters. The spokesperson said the company had identified a cybersecurity incident on some of its systems and had immediately deployed its response protocols. The same statement added that the incident had no impact on operations across its businesses, which remain unaffected. The confirmation came after a Reuters report earlier in the week that Tata had informed some employees at its iPhone assembly operations about the breach.

What the statement didn’t address is the larger part of the story. Tata Electronics declined to answer questions about the nature of the compromised data, the number of affected individuals or organizations, and whether customers had been notified. The company also declined to comment on the ransom demand that Reuters reported had been made in connection with the incident.

A few weeks ago, Tata Electronics identified a cybersecurity incident on some of our systems. Our response protocols were deployed immediately, and the incident has had no impact on our operations across businesses, which remain unaffected.

Tata Electronics’ spokesperson, in the same statement to TechCrunch and Reuters, didn’t specify how many files were exfiltrated or whether the customer files in the World Leaks listing were among them. Apple and Tesla haven’t commented on the World Leaks posting either, leaving the customer side of the breach without a public confirmation or denial.

Apple and Tesla Both Decline to Confirm Exposure

Apple’s public response to the Tata Electronics data breach has been a single line. Reuters reported on Monday that Apple is investigating the breach and that a source familiar with the matter said a “full analysis was going on.” And the company hasn’t issued a public statement on whether any Apple data was exposed in the World Leaks listing or responded to requests for comment from TechCrunch or Reuters.

Apple’s disclosure on the breach now matches Tata’s. Apple has confirmed that it is looking into the incident and that an analysis is underway, but it hasn’t confirmed whether any of the documents in the World Leaks listing are genuine Apple materials, whether they were taken from Tata Electronics, or whether they have any operational impact. The same posture applies to data residency: Apple hasn’t said whether any of the exposed documents relate to employees, suppliers, or production lines in India, where Tata Electronics accounts for roughly a third of Apple’s iPhone production. Tata and Apple have each cited an internal review and declined to share any of the findings publicly.

Tesla hasn’t commented on the Tata Electronics data breach. The carmaker didn’t respond to requests for comment from TechCrunch or Reuters, and the Reuters report didn’t include a Tesla statement on the World Leaks listing.

• 630GB total size of the World Leaks listing
• More than 200,000 files in the listing, per Reuters
• 181 Apple-tagged files in the listing
• 52 pages in an iPhone circuit board quality inspection document
• 33 Hosur-tagged files in the listing

Reuters’ researchers counted the contents of the World Leaks listing by hand. The “Apple” search returned 181 files and folders; the “Tesla” search returned manufacturing specifications and an assembly document dated May 2025. A 52-page iPhone circuit board quality inspection document, the “NV36 Chargeport Controller – North America” folder, and 33 files tagged “Hosur” are part of the supplier-specific material in the dump.

The file listings include specific product details. The “NV36 Chargeport Controller” folder references parts for an upgraded Model Y, per Reuters, while the “TRADE SECRET” drawings are tied to Project Highland, Tesla’s codename for the revamped Model 3 sedan. The Apple materials reference circuit board quality inspection standards, an internal document that would not typically be published and that competitors would pay to see. None of the documents have been authenticated by Apple, Tesla, Tata Electronics, or the named cybersecurity researchers who reviewed them, and none of the three companies has issued a public confirmation that the documents are theirs.

A Pattern That Already Runs Through the Tata Group

In the past two years, the Tata Electronics data breach is the third major cyber incident tied to the wider Tata Group. Two of the prior incidents sit in the supply chain that runs from Indian IT services to British car manufacturing, and both have already cost their targets millions of dollars in lost revenue and operations.

In the spring of 2025, Tata Consultancy Services (TCS) was identified as the third-party IT services vendor whose employees were compromised in a Scattered Spider ransomware attack. The breach led to a months-long intrusion at British retailer Marks & Spencer, costing the company $400 million in lost revenue, and TCS was eventually fired as the retailer’s IT help desk vendor. A separate cyberattack on Tata Motors, the parent of Jaguar Land Rover, forced a complete shutdown of the high-end automaker’s UK production facilities last August; the six-week halt was carried out by the same Scattered Lapsus Hunters collective, with a reported cost of $68 million per week.

• Spring 2025: TCS employees compromised in a Scattered Spider attack, leading to a months-long Marks & Spencer breach that cost the retailer $400 million in lost revenue
• August 2025: A cyberattack on Tata Motors forced a six-week halt at Jaguar Land Rover’s UK production facilities, carried out by the Scattered Lapsus Hunters collective
• June 2026: World Leaks posts more than 200,000 files totalling 630GB allegedly stolen from Tata Electronics, including Apple supplier specifications and Tesla trade-secret-marked documents

The India-as-Supply-Chain-Alternative Test

Tata Electronics’ role in Apple’s India supply chain sits at roughly a third of all iPhones produced in India, with Foxconn making up the rest, per Reuters. Tata entered iPhone manufacturing in 2023 when it acquired the India operations of Taiwanese supplier Wistron, and it later took a 60 percent stake in the Indian unit of Pegatron, another major Apple manufacturing partner. Tata Electronics also signed a semiconductor supply deal with Tesla in 2024, according to TechCrunch, and became an official Tesla supplier in 2025, per Cybernews, supplying semiconductor chips, circuit board assemblies for battery management systems, vehicle motor controller units, and door-control mechanisms. The same export engine is the focus of the India smartphone export story that put Tata alongside Foxconn.

The Tata Electronics data breach is tied to the supply chain that produces Apple’s iPhones in India and Tesla’s components for the Model Y and Model 3. The leaked cache includes Apple supplier specifications and Tesla manufacturing documents produced on Indian factory floors. Tata Electronics has not yet disclosed what was taken, who was affected, or whether any of the customer files in the World Leaks listing are genuine.

Tata Electronics employs more than 75,000 people and operates facilities across India, including its main iPhone assembly plant in Hosur, Tamil Nadu. The company has said the incident has had no impact on operations across its businesses, and Reuters reported that Apple is investigating with a full analysis underway. Tata declined to say on Monday whether it is negotiating with World Leaks. Apple and Tesla have not confirmed or denied whether the documents in the World Leaks listing are theirs, and none of the three companies has issued a public disclosure on the customer side of the breach.

Frequently Asked Questions

What did Tata Electronics confirm about the breach?

Tata Electronics confirmed the breach on Monday in statements to TechCrunch and Reuters, saying it had identified a cybersecurity incident on some of its systems “a few weeks ago” and that its response protocols were deployed immediately. The company said operations across its businesses were unaffected. Tata declined to disclose the number of affected parties or the nature of the data, and declined to say whether information belonging to customers such as Apple and Tesla was exposed.

Who is the World Leaks group that claimed the Tata Electronics hack?

World Leaks is a dark-web ransomware operation that posted the Tata files on its leak site, accessible to outside researchers since June 10, 2026. The group, which surfaced in early 2025, is widely seen as a successor to Hunters International, per Cybernews, and its biggest 2026 claim before Tata was an attack on Nike in January.

What kinds of Apple and Tesla files are in the World Leaks dump?

Researchers say the World Leaks listing includes Apple folders labelled “com.apple.factorydata” and a 52-page document on iPhone circuit board quality inspection standards bearing Apple’s proprietary footer. Tesla files include a folder labelled “NV36 Chargeport Controller – North America” tied to an upgraded Model Y, and a 2023 document marked “TRADE SECRET” containing drawings for Project Highland, Tesla’s internal codename for the revamped Model 3 sedan. The cache also includes employee passport copies, emails, event logs spanning several years, and factory energy bills.

Has Apple or Tesla confirmed a customer data exposure?

Apple has not confirmed or denied that any of its data was exposed. Reuters reported that Apple is investigating the incident and that a source familiar with the matter said a “full analysis was going on.” Tesla didn’t respond to requests for comment from TechCrunch or Reuters, and Tesla materials found in the World Leaks listing haven’t been authenticated by the company.

What is Tata Electronics’ role in Apple’s iPhone production in India?

Tata Electronics’ iPhone manufacturing in India began in 2023 with the acquisition of Wistron’s India operations, and the company later took a 60 percent stake in the Indian unit of Pegatron. The supplier relationship with Apple covers iPhone back panels, metallic enclosures, circuit board parts, and fully assembled devices, per Cybernews. Tata also signed a semiconductor supply deal with Tesla in 2024 and became an official Tesla supplier in 2025, supplying semiconductor chips, battery management circuit board assemblies, vehicle motor controller units, and door-control mechanisms.