Tata Electronics confirmed a cybersecurity incident after extortion group World Leaks posted more than 200,000 files, over 630GB, on the dark web.
The leak allegedly includes Apple and Tesla proprietary documents, technical drawings, and employee passport scans.
Apple is investigating and Tata reportedly faces a ransom demand, though the authenticity of the data has not been independently verified.
Tata Electronics confirmed on Monday, June 22, 2026, that it detected a cybersecurity incident on some of its systems, after the ransomware and extortion group World Leaks claimed to have stolen and published company data. The Indian manufacturer said its response protocols kicked in immediately and that the incident had “no impact on our operations” across its businesses. Reuters reported that Tata also received a ransom demand.
What Was Leaked
World Leaks says it took more than 200,000 files, totaling over 630 gigabytes, and posted them on its dark web leak site, where the data has reportedly been available since at least June 10.
Security researchers who reviewed the cache for Reuters said it appears to contain Apple manufacturing specifications, component designs, and quality-control files, along with Tesla engineering documents. The dump also reportedly holds employee emails, years of event logs, and passport scans of staff, including foreign nationals.
This Hindi explainer breaks down the full story:
https://www.youtube.com/watch?v=L6NuW3iOZIk
Why Apple and Tesla Are Involved
Tata Electronics builds roughly one-third of Apple’s iPhones in India and has supplied Tesla since 2025 with chips, circuit board assemblies, motor controller units, and door-control parts. That places it deep inside two of the world’s biggest supply chains.
Researchers reported folders named “com.apple.factorydata” and a 52-page iPhone circuit board inspection document, plus a Tesla file marked “TRADE SECRET” tied to Project Highland, the codename for the revamped Model 3. Apple said it is investigating. Neither Apple nor Tesla confirmed whether their data is genuine.
https://www.youtube.com/watch?v=2bQcY86-ZW4
Who Is Behind It
World Leaks is a rebrand of the Hunters International group, which shifted to pure data extortion in early 2025. It claimed a major Nike breach earlier this year. The Tata attack follows a rough stretch for the group, after a separate cyberattack last year on its Jaguar Land Rover unit halted production for six weeks.
Breaking updates were shared on X here:
The incident is a fresh reminder that attackers increasingly target manufacturers and their vendors to reach the brands they serve. Reuters could not verify the authenticity of the leaked files, and the story is still developing.
Quick Links: