Source linked

630GB of Apple and Tesla Trade Secrets Dumped After Tata Breach

yahoo.com@sharp_wolf2 hours ago·Cybersecurity·2 comments

Ransomware group World Leaks posted over 200,000 files including Apple factory data and Tesla Model 3 Highland drawings from the Indian manufacturer.

tata electronicsappleteslaworld leakssupply chain securityindia

Over 630 gigabytes of data, including Apple's internal 'factorydata' folders and Tesla's project Highland drawings, just hit the dark web after a ransomware group called World Leaks claimed a breach of Tata Electronics. I've seen supply chain leaks before, but a single dump of 200,000 files from a supplier that handles both Apple and Tesla is rare.

Tata confirmed the incident on June 22, stating operations were unaffected. The Indian Computer Emergency Response Team has not commented. Reuters and security researchers Rajshekhar Rajaharia and Rakesh Krishnan reviewed the data on World Leaks' dark web site, which has been accessible since at least June 10.

World Leaks Catches Tata Off Guard

World Leaks, previously responsible for a Nike breach, claims the Tata Electronics data totals more than 630 gigabytes. The dump includes emails, event logs spanning years, and passport copies of employees including foreign nationals. One folder labeled 'com.apple.factorydata' and a 52-page Apple quality inspection standard for iPhone circuit board components were spotted. Apple is investigating and confirmed a ransom demand was made.

Tesla's data includes files labeled 'NV36 Chargeport Controller - North America' for an upgraded Model Y, and a document marked 'TRADE SECRET' with drawings for project Highland, the revamped Model 3. Both companies have not responded for comment. The files carry proprietary markings from both Apple and Tesla.

What This Means for Supply Chain Security

Tata Electronics is a cornerstone of Apple's India production, now making roughly a third of its iPhones in the country. Last year, Tata's British Jaguar Land Rover unit suffered a cyberattack that halted output for six weeks. This new breach shows that even suppliers with sensitive customer data can be targeted by sophisticated ransomware groups.

The data dump is accessible only on the dark web, making takedown difficult. With 200,000 files now public, Apple and Tesla face an uphill battle to contain the exposure of proprietary design specifications and manufacturing standards. The next question is whether this accelerates the push for more resilient supply chain security architecture across the electronics industry.

Source: Tata Electronics cyber breach claiming to expose Apple, Tesla trade secrets
Domain: yahoo.com

Read original source ->

External source stays available while the OJO article and comment thread stay local.

More in Cybersecurity

view topic
memmap2 0.5.9 to 0.9.10 Carries Unsound Pointer Arithmetic in Six Functions

A missing validation in memmap2's range functions let callers pass out-of-bounds offsets, creating undefined behavior when those pointers reach the kernel's madvise and msync syscalls.

AutoJack Flaw in Microsoft's AutoGen Studio Hijacks Agents for Remote Code Execution

A three-weakness chain in AutoGen Studio's MCP WebSocket lets a malicious webpage trick an AI agent into executing arbitrary commands on its host system.

OpenAI's GPT-5.5-Cyber Hits 85.6% on CyberGym, Automates Patching Across 30,000 Codebases

AI-driven vulnerability discovery has outpaced human patching; OpenAI's Codex Security and Patch the Planet aim to close that gap with automated fix generation and ecosystem partnerships.

How Trail of Bits Used GPT-5.5-Cyber to Patch 19 Projects in a Week

64 pull requests, 51 issues, and a fuzzing lab built in a day - Trail of Bits shows that finding bugs is now the easy part.

Comments load interactively on the live page.