Vaarta.space
Back to Blog
2026-06-24· 5 min read

Tata Electronics Breach Exposes Apple and Tesla Trade Secrets — 200,000 Files Leaked

Ransomware group World Leaks posted 630GB of Tata Electronics data including Apple iPhone manufacturing specs and Tesla engineering drawings labeled "TRADE SECRET" on the dark web.

Ransomware Data Breach Supply Chain Intellectual Property India

The Breach That Shook the Tech World


Tata Electronics, which manufactures roughly one-third of all iPhones assembled in India, confirmed a devastating cyberattack on June 23, 2026. The breach, carried out by ransomware group World Leaks, exposed trade secrets from two of the world's most valuable companies: Apple and Tesla.


What Was Stolen


The stolen data totals over 630 gigabytes and includes more than 200,000 files:


Apple Trade Secrets

  • Proprietary iPhone manufacturing quality standards
  • Circuit board specifications
  • Inspection protocols
  • Component tolerances

    • Tesla Trade Secrets

  • Internal engineering drawings explicitly labeled "TRADE SECRET"
  • "NV36 Chargeport Controller — North America" folder (believed to reference Model Y components)
  • Project Highland engineering drawings (Tesla's Model 3 revamp)

    • How World Leaks Operates


    World Leaks is a relatively new ransomware-as-a-service operation that targets high-profile manufacturing and technology suppliers. The group:


    1. Steals data before deploying ransomware

    2. Uses the threat of public leaks as leverage

    3. Operates a dark web portal for publishing stolen data

    4. Employs "double extortion" — encrypt systems AND threaten exposure


    World Leaks launched in early 2025 and is widely believed to be a rebrand of the Hunter's International ransomware group.


    The Supply Chain Risk


    This breach highlights a critical vulnerability in the global supply chain: when a supplier is compromised, their customers' most sensitive data is exposed too.


    Apple confirmed to Reuters that it was "actively investigating" the breach. Tesla did not immediately respond to requests for comment.


    The fact that Tesla's trade-secret-marked engineering documents ended up on Tata's servers raises serious questions about how intellectual property is managed across manufacturing partnerships.


    Impact on the Industry


    For Manufacturers

  • Implement zero-trust architecture for IP management
  • Segment sensitive data from general operations
  • Encrypt trade secrets at rest and in transit
  • Regular security audits of third-party integrations

    • For Tech Companies

  • Audit supplier security posture regularly
  • Implement data loss prevention (DLP) controls
  • Limit IP sharing to need-to-know basis
  • Require suppliers to meet security standards

    • Lessons Learned


    1. **Supply chain attacks are increasing** — protect your vendors as carefully as you protect yourself

    2. **Trade secrets need special protection** — encryption, access controls, and monitoring

    3. **Detection matters** — Tata detected the breach weeks before disclosure, but the damage was already done

    4. **Ransomware groups are targeting IP** — not just customer data


    Check Your Security


    Scan your domain for vulnerabilities that could expose your organization to similar attacks.


    [Free security scan at Vaarta.space](https://vaarta.space)


    Related Articles

    2026-04-25

    India Cyber Threat Landscape 2026 — Ransomware, Phishing Statistics | Vaarta

    India cyber threats 2026 report. Ransomware statistics, phishing attack vectors, sector-specific risks, and compliance requirements for Indian organizations.

    2026-06-15

    ShinyHunters Gang: How a Single Cybercriminal Group Breached Oracle, Instructure, and the FBI in 2026

    The ShinyHunters extortion gang is behind some of the worst breaches of 2026 — Oracle PeopleSoft zero-day, Instructure Canvas (30M+ students), FBI surveillance systems, and 7-Eleven. Learn how they operate and how to protect your organization.

    2026-06-24

    FortiBleed: 430,000+ FortiGate Firewalls Compromised, 110 Million Credentials Stolen

    A massive credential-harvesting campaign dubbed FortiBleed has silently compromised over 430,000 FortiGate firewalls globally, stealing 110 million+ credentials from live network traffic since February 2026.

    Ready to check your domain security?

    Run a free scan to identify potential vulnerabilities.

    Start Free Scan