
Tata Electronics, the Indian manufacturer that assembles roughly a third of the iPhones built in India and supplies semiconductor components to Tesla, has confirmed that hackers broke into its systems and published more than 630 gigabytes of company data online.
The extortion group World Leaks claimed possession of more than 630GB of information spanning over 204,300 files. The group posted the archive on its dark web leak site on June 12, 2026. However, Tata confirmed the breach ten days later and said the intrusion had not disrupted its manufacturing operations.
What the Stolen Files Contain
Researchers who reviewed samples of the leaked data found a 52-page quality inspection document for iPhone circuit board components. The cache also included technical drawings referencing Tesla’s Project Highland, the company’s internal codename for its revamped Model 3, with one document marked as a trade secret.
Other files referenced chipmakers TSMC and Qualcomm, along with cryptographic certificates and key files that security experts say could be reused in follow-on attacks. The leak further exposed employee passport copies, including those of foreign nationals, and years of internal event logs and email correspondence.
How the Breach Happened
World Leaks did not encrypt any systems or disrupt operations. Instead, it quietly sat inside the network, mapped out the highest value data, and exfiltrated it over time, a pattern researchers say is harder to detect than traditional ransomware.
Tata said it identified the incident a few weeks before going public and deployed its response protocols immediately but did not disclose what data was compromised or how many parties were affected. Although Reuters reported that the company did receive a ransom demand.
Why Tata Matters So Much to Apple and Tesla
Tata Electronics entered iPhone manufacturing in 2023 through the acquisition of the India operations of Wistron, then later acquired a 60% stake in the Indian unit of Pegatron. It also signed a semiconductor supply deal with Tesla in 2024.
India assembled about one in four iPhones sold worldwide in 2025, and Tata currently accounts for roughly a third of Apple’s iPhone production in India, with Foxconn making up the rest.
A Pattern Inside the Tata Group
This is the second major cyberattack to hit a Tata Group company within a year. A cyberattack on Tata Motors, parent of Jaguar Land Rover, forced a complete standstill at the automaker’s UK production facilities last August, with the six week shutdown estimated to have cost the company $68 million per week.
The Weak Link Apple and Tesla Don’t Fully Control
Security researchers have long warned that a company can lock down its own network completely, and its data can still be exposed because that data often sits on a supplier’s servers too. This breach is a clear example of that.
Verizon’s 2025 Data Breach Investigations Report found that third party involvement in confirmed data breaches doubled year over year, from 15% to 30%. The same report found manufacturing was hit especially hard, with espionage motivated breaches in the sector jumping nearly sixfold, from 3% to 20%. Tata Electronics sits at the center of that trend, as it holds design files, quality specifications, and prototype data for two of the world’s most valuable companies, making it a far more attractive target.
But neither Apple’s nor Tesla’s own networks were touched in this incident, as the exposure was only limited to Tata.
Apple has, however, said it is investigating the leak, and the iPhone 18 series remains on track for its expected September 2026 launch.
