Tata Electronics cyber incident: What we know so far

Tata Electronics has confirmed that it recently identified a cybersecurity incident on some of its systems after ransomware group World Leaks claimed it had stolen company data, including documents allegedly linked to Apple and Tesla.

“A few weeks ago, Tata Electronics identified a cybersecurity incident on some of our systems. Our response protocols were deployed immediately, and the incident has had no impact on our operations across businesses, which remain unaffected,” the company’s spokesperson told Fortune India.

The disclosure comes after cybersecurity researchers told Reuters that World Leaks had published more than 200,000 files, amounting to over 630 GB of data, on its leak site. Reuters reported that the files allegedly contain engineering documents, manufacturing specifications, emails, logs and employee records.

Tata Electronics manufactures precision components, semiconductor products and consumer electronics, and has emerged as one of India’s biggest bets in electronics and chip manufacturing. It operates iPhone assembly plants in India after acquiring Wistron’s India operations and has also taken control of Pegatron’s India business, making it one of Apple’s largest manufacturing partners in the country.

What happened at Tata Electronics?

Tata Electronics has confirmed a cybersecurity incident but has not disclosed when it occurred, how attackers gained access, whether data was stolen, or whether customers were affected.

According to Reuters, researchers who reviewed files posted by World Leaks said the leaked material appeared to contain sensitive documents linked to Tata Electronics’ operations and customers. The files have reportedly been available on the dark web since at least June 10.

While Tata Electronics says business operations remain unaffected, investigations into the incident are ongoing.

What is World Leaks claiming and what does it want?

World Leaks is a ransomware-linked extortion group that typically steals data and threatens to publish it unless its demands are met, who claimed responsibility for Nike’s break in. As per reports, Tata Electronics received a ransom demand related to the incident, though the company declined to comment on it.

Cybersecurity researchers who reviewed the group’s leak site told Reuters that World Leaks claims to possess more than 200,000 files from Tata Electronics. Separately, threat-intelligence researchers who tracked the post said the group threatened to release the data publicly if the company failed to engage through its communication channels.

Are Apple and Tesla affected?

Reuters reported that researchers who examined sample files found documents bearing Apple’s proprietary markings as well as files labelled as Tesla trade secrets. The material allegedly includes component designs, manufacturing specifications and assembly-related documents. Apple was investigating the matter and conducting a full analysis, the news report said. The company has not publicly commented on the alleged leak, while Tesla has not issued a public response.

At this stage, neither Apple nor Tesla has confirmed that any of their data was compromised.

Is this the first major cyber incident linked to the Tata Group?

No. The incident comes less than a year after a major cyberattack disrupted operations at Jaguar Land Rover (JLR), the British luxury automaker owned by Tata Motors. Both the incidents are not linked, and are two completely different incidents.

The September 2025 attack forced JLR to halt production for weeks, with Reuters reporting that the company was losing around £50 million a week during the shutdown. Production resumed only after a phased restart following a roughly six-week disruption.

The UK’s Cyber Monitoring Centre later estimated the broader economic impact of the JLR cyberattack at £1.9 billion, making it one of the most costly cyber incidents to affect British industry.