Tata Electronics, a significant player in the global technology supply chain and a key manufacturer for companies like Apple and Tesla, has officially confirmed a data breach. The confirmation follows weeks after a large cache of files, purportedly obtained from the company, surfaced on a prominent hacker forum, raising immediate concerns about the security of sensitive manufacturing and design information.
The hacker forum listing claims to offer more than 630 gigabytes of data, comprising over 204,300 individual files allegedly exfiltrated from Tata Electronics. A preliminary review of a sample of these files by the US tech publication TechCrunch reportedly revealed documents that appear to be Apple supplier specifications and manufacturing details related to Tesla. While the full authenticity and completeness of the data remain unverified, the nature of the alleged content points to a potentially serious compromise of intellectual property.
Founded in 2020, Tata Electronics has rapidly ascended as a crucial component of India's strategic initiative to bolster its electronics manufacturing and semiconductor production capabilities. The company operates extensive facilities across India, employing a workforce exceeding 75,000. It has forged significant partnerships with leading global technology firms, including Apple, ASML, Intel, Qualcomm, and Tesla, as part of a broader industry trend to diversify supply chains away from China and towards alternative production hubs.
Cybersecurity experts have indicated that the data advertised on the forum reportedly included internal communications such as Outlook email conversations, SAP-related information, and documents purportedly linked to some of Tata Electronics' high-profile customers. A spokesperson for Tata Electronics acknowledged the cybersecurity incident, stating it was identified on some systems "a few weeks ago" and that response protocols were immediately activated. The company maintained that its operations across all businesses remain unaffected.
However, Tata Electronics has declined to provide further details regarding the nature of the compromised data, the exact number of individuals or organisations affected, whether customer notifications have been issued, or if client-specific information belonging to companies like Apple and Tesla was indeed exposed. Reuters previously reported that Tata Electronics informed some employees at its iPhone assembly operations about the breach and that Apple is conducting its own investigation into the incident, which also reportedly involved a ransom demand made to Tata Electronics.
This incident occurs at a pivotal time as the broader Tata Group expands its influence within global technology supply chains. In 2023, the conglomerate entered iPhone manufacturing through the acquisition of Wistron's Indian operations, a long-standing Apple supplier. More recently, Tata Electronics secured a 60% stake in the Indian unit of Pegatron, another major manufacturing partner for Apple. Furthermore, a semiconductor supply deal signed with Tesla in 2024 underscores the group's deepening relationships with some of the world's largest technology companies, making the security of its data paramount.