The Indian electronics manufacturer confirmed on Monday that it had recently detected a cybersecurity incident affecting some of its systems, triggering immediate internal response measures. The disclosure comes after security researchers reported that a large cache of sensitive data had been uploaded to the dark web by the cybercriminal group known as World Leaks.
According to researchers who reviewed the leaked material, the data dump contains more than 200,000 files amounting to over 630 gigabytes of information. The files reportedly include engineering documents, manufacturing specifications, emails, employee records and confidential information linked to Tata Electronics' global operations.
In a statement to Reuters, Tata Electronics sought to reassure customers and partners that its business activities remain unaffected.
“A few weeks ago, Tata Electronics identified a cybersecurity incident on some of our systems. Our response protocols were deployed immediately, and the incident has had no impact on our operations across businesses, which remain unaffected,” the company said.
The alleged breach has drawn particular attention because of Tata Electronics' growing role in the global supply chains of Apple and Tesla, two of the world's most valuable technology companies.
Sources familiar with the matter said Apple has launched an internal investigation into the incident to determine the extent of any exposure involving its proprietary information.
“Full analysis was going on,” a source familiar with the matter told Reuters, adding that Tata Electronics had received a ransom demand connected to the cyberattack.
While Tata declined to comment on the reported ransom demand, the development raises fresh concerns about cybersecurity risks facing multinational manufacturers and their suppliers.
Researchers who reviewed the leaked database said several folders appeared to contain Apple-related information, including documents allegedly marked with titles such as “com.apple.factorydata” and files relating to material specifications and quality control procedures.
One of the documents reportedly contained detailed inspection standards for iPhone circuit board components and carried markings identifying the information as proprietary to Apple.
The leak may also have exposed data linked to Tesla. Researchers reported finding documents labelled as confidential and trade secret material connected to projects believed to be associated with Tesla vehicle components.
Among the files was a folder reportedly referencing the “NV36 Chargeport Controller – North America,” believed to be linked to components used in upgraded versions of Tesla's Model Y sport utility vehicle. Other documents allegedly referenced Project Highland, Tesla's internal codename for the redesign of its Model 3 sedan.
Neither Apple nor Tesla immediately responded to requests for public comment on the reported exposure of company-related documents.
Indian cybersecurity expert Rajshekhar Rajaharia, who reviewed the leaked files, said the database appeared to contain years of company emails, system logs and passport copies belonging to employees, including foreign nationals.
A second cybersecurity researcher, Rakesh Krishnan, told Reuters that the data had reportedly been accessible on the dark web since at least June 10, raising concerns about how widely the information may have already circulated.
The incident represents another challenge for Tata Electronics, which has become one of Apple's most important manufacturing partners outside China. The company plays a key role in India's ambitions to establish itself as a major global electronics manufacturing hub under the government's industrial expansion strategy.
Industry estimates suggest Tata currently accounts for roughly one-third of Apple's iPhone production in India, with Taiwanese manufacturing giant Foxconn responsible for the remainder.
The cyberattack also follows previous security challenges within the wider Tata Group. Last year, a cyber incident affecting Jaguar Land Rover, the British luxury vehicle manufacturer owned by Tata Motors, reportedly disrupted production for several weeks.
Experts say the latest breach highlights the growing threat posed by ransomware groups targeting major corporations and critical supply chains. As global manufacturers become increasingly interconnected through digital systems, cybercriminals continue to focus on stealing sensitive intellectual property and business information in an effort to extort large ransom payments.
The Indian Computer Emergency Response Team (CERT-In), the government agency responsible for coordinating responses to cybersecurity incidents, had not publicly commented on the matter at the time of reporting.
With investigations ongoing, attention is now focused on determining the authenticity of the leaked files, assessing the extent of the breach and evaluating any potential impact on Tata Electronics' customers, suppliers and business partners worldwide.