Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
Hackers stole 630 gigabytes of confidential information from Tata Electronics, one of Apple’s biggest suppliers in India, and released the documents, revealing part details, vendor information and images of the iPhone 18 Pro, which is due to be launched in September.
Tata Electronics is the world’s largest electronics manufacturer for companies such as Apple and Tesla.
Reports say that the World Leaks ransom group is behind the release of the stolen files. The breach provides rare insight into something that Apple has been controlling for years – how its global operations work.
Apple said it is concerned about the leak and is investigating.
Here’s what we know about leaks and why they matter:
What do we know about leaks?
World Leaks claimed to have breached its black website on June 12, posting more than 200,000 files totaling more than 630 gigabytes, according to Reuters. Tata Electronics has publicly confirmed its cybersecurity practices.
The files include information about the iPhone 18 Pro from the chips on its main board to the battery parts and camera modules and component suppliers. There is more which suppliers are competing for contracts to supply certain parts – information that could reveal where Apple is at risk and where the tech giant has the power to choose between multiple suppliers.
Paolo Pescatore, founder and analyst at technology research and consulting firm PP Foresight, said the leak has revealed more than just actual images of the iPhone 18 Pro.
“The main problem is to show information that Apple doesn’t want to make public,” he told Al Jazeera. “It could give competitors, sellers, fraudsters and bad actors a little more insight into how Apple’s supply chain is structured and where it can be exposed.”
How did the leak happen?
Tata Electronics has said it has blocked access and is conducting a forensic investigation into the leak.
But Pescatore said, “This type of violation is not usually an exercise.”
To achieve this kind of scale and quality, he said, attackers “often need a deep concentration within the organization, compromised information, limited control or the ability to bypass internal systems undetected”.
This access should not only be within Apple but – as it seems to have been the case – within vendors. “This underscores how cybersecurity is now as strong as the weakest link in the retail system,” he said.
What is World Leaks?
It is a ransom group that follows what is known as “hack-and-leak”: Victims are extorted to pay or risk the leakage of large amounts of stolen data.
World Leaks is known for targeting large companies. In July last year, it stole 1.3 terabytes of data from Dell, which the company downplayed, saying it was not a problem.
And in January, it said it stole 1.4 terabytes of Nike data.
Who is involved?
The information stolen from Tata Electronics is mostly corporate. There is no indication that consumer payment information or data from Apple users was stolen.
Apple announced in June that it was making several software updates available to consumers earlier than planned. The company said the software updates are in line with the pace of technological advancements. It is unclear whether these changes are in any way related to the recent data breach.
The most affected by the hack, so far, are Tata Electronics and Apple. The breach will result in damage to the company’s reputation and relationship, which has grown rapidly in the short term as Apple tries to reduce its reliance on China.
“Apple is concerned because its trade secrets and its suppliers’ intellectual property may be compromised,” Pescatore said. “Tata is concerned because this raises questions about its online resilience at a time when it is becoming increasingly important to Apple’s ambitions in India.
For Apple, the hack comes at a critical time. In June, the tech company raised its prices on consumer products, such as MacBooks, by up to 30 percent. The increase in prices was attributed to the speed of hardware due to the rapid spread of smart information centers around the world and the shortage of chips.
How Apple handles its complex manufacturing operations
India will collect about one in four iPhones in the world in 2025. This is about 55 million iPhones. It’s a big jump from four years ago when India assembled about 6 percent of iPhones.
While the breach may not affect Apple’s strategy in India, Mr Pescatore said: “It would raise interest if the new product environment matches Apple’s expectations of privacy, online resilience and trust.”
Apple products are sold in many countries and are considered to be one of the best in the world. It is also known as one of the most secretive things.
What does this breach mean for Apple’s move to India?
For most of the iPhone’s history, assembly was concentrated in China. This changed after 2020 with the COVID-19 pandemic, followed by the escalation of US-China trade tensions and the pressure to become less dependent on one country. This allowed Apple to diversify, and that’s where India came into the picture.
Tata entered the iPhone business in 2023. It grew rapidly, from the production of key components to the production of the entire assembly.
This expansion of Tata Electronics also means that most of Apple’s products are now owned by one partner – and that partner has just been severely damaged.
“Other hacker groups may launch attacks again in the future,” said Rajshekhar Rajaharia, a cybersecurity researcher.
He cited the recent bailout of Jaguar Land Rover, also owned by the Tata conglomerate, as an example.
“The hacking of manufacturing systems or online money laundering is very common. It doesn’t matter if you are an IT company or not. The manufacturing industry is at a high risk these days.”
