Tata Electronics, a primary supplier for tech giant Apple in India, has increased its internal security measures following a potential leak of confidential client files on the dark web, according to a source from Tata and two industry representatives.
In response to the incident, Tata has engaged an international consultant to perform a forensic audit. The company has also reported the incident to the Indian government and its customer base. The source from Tata chose to remain anonymous due to the sensitive nature of the situation.
The cybercrime group known as World Leaks claimed responsibility for uploading over 200,000 files onto the dark web. These files allegedly include design documents for components used by both Apple and Tesla, another of Tata’s clients. The authenticity of the data remains unverified.
Tata acknowledged the occurrence of a “cybersecurity incident” but assured that its operations were not affected, without providing further details.
In addition to Apple and Tesla, the leaked data is believed to include at least 16 files and folders from Taiwan Semiconductor Manufacturing Co (TSMC) and 23 from Qualcomm. Both companies supply parts for iPhones.
Following the breach, Tata Electronics strengthened security protocols across all its facilities and offices. Remote access to sensitive internal tools, such as those used for placing purchase orders, was limited to a select group of employees. Prior to the incident, these tools were more accessible. The updated protocols apply across Tata Electronics and are not limited to specific factories.
The investigation into the breach continues, with Apple’s security team reportedly collaborating closely with Tata. The security enhancements include stricter regulations for accessing Tata’s official network from outside the company’s premises.
Tata Electronics, led by former Intel and Applied Materials executive Randhir Thakur, is a critical part of Apple’s strategy to expand iPhone production outside China. However, the breach poses a significant setback to Apple’s supply chain. Tata is also facing scrutiny over alleged farmland contamination near one of its iPhone parts plants in India.
World Leaks claimed to have published more than 204,341 files containing Tata Electronics data, amounting to over 630.4 gigabytes. The exposed documents include purported “product reliability test” details of a TSMC component and mechanical specifications for a power management integrated circuit from Qualcomm.
Despite the challenges, India is expected to manufacture 26% of the world’s iPhones by 2026, a significant increase from the 6% it produced four years ago, as reported by research firm Counterpoint.
How has Tata Electronics responded to the data breach?
Tata Electronics has increased internal security measures, limited remote access to sensitive systems, and engaged an international consultant for a forensic audit.
What does the leaked data purportedly contain?
The data allegedly contains design documents from Apple and Tesla, and files from Taiwan Semiconductor Manufacturing Co and Qualcomm.
What are the potential impacts of the breach on Tata and its clients?
The breach could interrupt Apple’s supply chain and increase scrutiny on Tata, which is already facing allegations of farmland contamination in India.
