Indian electronics manufacturing giant Tata Electronics has confirmed a “cybersecurity incident” after ransomware group World Leaks published over 200,000 files totaling more than 630 gigabytes on the dark web. The stolen dataset allegedly contains proprietary and confidential documents from two of Tata’s most prominent clients: Apple and Tesla. The breach is one of the most significant supply chain data exposures affecting global technology companies in recent years.
What Was Stolen and Leaked
Independent cybersecurity researcher Rajshekhar Rajaharia reviewed the files for Reuters, confirming the data has been accessible on the dark web since at least June 10, 2026. A ransom demand was issued to Tata Electronics; the company declined to comment on specifics and the group proceeded with the full dump.
On the Apple side, a search within the World Leaks database returned 181 files and folders, several labeled com.apple.factorydata and referencing “material specification.” Among them was a 52-page document bearing Apple proprietary markings, detailing quality inspection standards for iPhone circuit board components. Multiple files carried the footer: “This document contains proprietary and confidential information of Apple Inc.”
The Tesla materials are equally sensitive. One folder is labeled “NV36 Chargeport Controller – North America,” reportedly referencing components used in an upgraded Tesla Model Y. Another file, marked “TRADE SECRET” and dated 2023, contains engineering drawings tied to Project Highland — Tesla’s internal codename for the revamped Model 3. An assembly document from May 2025 was also recovered. Tesla files carried footers stating contents were “deemed confidential, proprietary, and a trade secret of Tesla Inc.”
Full Scope of the Dataset
Beyond the Apple and Tesla materials, the leaked dataset includes:
- Internal emails and multi-year event logs
- Employee passport copies including those of foreign nationals at Tata facilities
- Manufacturing process documentation and component design specifications
- Supply chain operational records across multiple product lines
Who Is World Leaks?
World Leaks is a ransomware operation with a growing record of high-profile attacks. The group was previously linked to a breach at Nike in early 2026. They operate on the double-extortion model — exfiltrating data before encrypting systems, then demanding ransom under threat of public disclosure. When Tata Electronics declined to engage, World Leaks released the full dataset.
The Strategic Significance
Tata Electronics currently manufactures approximately one-third of Apple’s total iPhone production in India, with Foxconn handling the remainder. Tata is a critical node in Apple’s supply chain diversification away from sole reliance on Chinese manufacturing — making its security posture directly relevant to Apple’s global intellectual property protection.
Apple confirmed it is investigating the breach. Neither Apple nor Tesla responded to media requests for further comment. Tata Electronics stated its “response protocols were deployed immediately” and that operations remain unaffected.
This is not Tata’s first major incident. In 2025, its subsidiary Jaguar Land Rover suffered a ransomware attack that halted production for six weeks. The recurring targeting of Tata group companies reflects deliberate ransomware operator strategy: Tier-1 suppliers provide simultaneous access to the IP of multiple Fortune 500 clients from a single breach.
Implications for Supply Chain Security
- Client confidential data held by third-party manufacturers requires the same security controls as the originating company’s own infrastructure.
- Supply chain security assessments must extend beyond compliance questionnaires to include real-world control validation at supplier facilities.
- Organizations sharing IP with suppliers must review breach notification obligations and assess their exposure from this specific incident.
- Ransomware resilience measures — air-gapped backups, network segmentation, and tested recovery procedures — must be validated across the entire supplier ecosystem.