Apple: World Leaks Ransomware Group targets Apple and Tesla Trade Secrets

Apple: World Leaks Ransomware Group targets Apple and Tesla Trade Secrets

World Leaks Ransomware Group Claims Breach of Tata Electronics, Exposing Apple and Tesla Trade Secrets

The ransomware group World Leaks has resurfaced, alleging a breach of Tata Electronics, an Indian technology and manufacturing firm that supplies hardware and software to major corporations, including Apple and Tesla. The attack, reportedly occurring in May 2026, involved the theft of 634GB of sensitive data, including confidential client information and trade secrets.

Among the stolen files are nearly 200,000 documents linked to Apple’s component designs for products like iPhones, iPads, and Macs. The hackers also claim to have accessed Tesla’s factory-related documents, including technical details on the NV36 Chargeport Controller used in the Model Y SUV. Portions of the data are already being sold on dark web marketplaces, raising concerns about intellectual property theft, corporate espionage, and industrial sabotage.

World Leaks previously targeted Nike earlier this year, reinforcing its pattern of high-profile breaches. The group has threatened to publicly release the stolen data unless its demands are met. Cybersecurity experts suggest the attackers may have lurked undetected in Tata Electronics’ network for months, a tactic known as "dwell time," allowing them to exfiltrate large volumes of data without immediate detection.

This incident is not the first cybersecurity controversy for the Tata Group. In a prior attack, Jaguar Land Rover (JLR), another Tata subsidiary, was targeted by the Scattered Lapsus$ Hunter collective a collaboration of notorious cybercrime groups, including Scattered Spider, Lapsus$, and Shiny Hunters.

While Apple and Tesla have not commented, Tata Electronics has acknowledged the breach, stating it has strengthened security measures and is working to mitigate risks. Analysts warn that such leaks can fuel phishing attacks, blackmail, and industrial espionage, with stolen intellectual property fetching high prices in underground markets.

The breach underscores the growing threat to global supply chains, as ransomware groups increasingly target third-party vendors to exploit interconnected corporate networks. The incident highlights the need for enhanced vendor security in an era of expanding digital ecosystems.

Source: https://www.cybersecurity-insiders.com/world-leaks-ransomware-group-targets-apple-and-tesla-trade-secrets/

Apple cybersecurity rating report: https://www.rankiteo.com/company/apple

"id": "APP1782203449",
"linkid": "apple",
"type": "Ransomware",
"date": "5/2026",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"
{'affected_entities': [{'customers_affected': ['Apple', 'Tesla'],
                        'industry': 'Electronics Manufacturing, Supply Chain',
                        'location': 'India',
                        'name': 'Tata Electronics',
                        'type': 'Technology and Manufacturing Firm'},
                       {'industry': 'Consumer Electronics',
                        'location': 'Global',
                        'name': 'Apple',
                        'type': 'Technology Corporation'},
                       {'industry': 'Automotive, Energy',
                        'location': 'Global',
                        'name': 'Tesla',
                        'type': 'Automotive and Energy Corporation'}],
 'attack_vector': 'Unknown (likely dwell time/exfiltration)',
 'data_breach': {'data_exfiltration': 'Yes',
                 'number_of_records_exposed': '200,000 documents',
                 'sensitivity_of_data': 'High (intellectual property, product '
                                        'designs)',
                 'type_of_data_compromised': ['Trade secrets',
                                              'Client information',
                                              'Technical documents']},
 'date_detected': '2026-05',
 'description': 'The ransomware group *World Leaks* has resurfaced, alleging a '
                'breach of **Tata Electronics**, an Indian technology and '
                'manufacturing firm that supplies hardware and software to '
                'major corporations, including **Apple** and **Tesla**. The '
                'attack involved the theft of **634GB of sensitive data**, '
                'including confidential client information and trade secrets. '
                'Among the stolen files are **nearly 200,000 documents** '
                'linked to **Apple’s component designs** for products like '
                'iPhones, iPads, and Macs, as well as **Tesla’s '
                'factory-related documents**, including technical details on '
                'the **NV36 Chargeport Controller** used in the **Model Y '
                'SUV**. The group has threatened to **publicly release the '
                'stolen data** unless its demands are met.',
 'impact': {'brand_reputation_impact': 'High',
            'data_compromised': '634GB of sensitive data, including 200,000 '
                                'documents'},
 'initial_access_broker': {'data_sold_on_dark_web': 'Yes',
                           'high_value_targets': ['Apple', 'Tesla'],
                           'reconnaissance_period': 'Months (dwell time)'},
 'investigation_status': 'Ongoing',
 'lessons_learned': 'Growing threat to global supply chains; need for enhanced '
                    'vendor security and monitoring of dwell time.',
 'motivation': ['Intellectual property theft',
                'Corporate espionage',
                'Financial gain'],
 'post_incident_analysis': {'corrective_actions': 'Strengthened security '
                                                  'measures, ongoing '
                                                  'mitigation efforts',
                            'root_causes': 'Prolonged unauthorized access '
                                           '(dwell time), potential supply '
                                           'chain vulnerability'},
 'ransomware': {'data_exfiltration': 'Yes'},
 'recommendations': 'Enhance vendor security, implement stricter access '
                    'controls, and improve detection of prolonged unauthorized '
                    'access.',
 'references': [{'source': 'Cyber Incident Report'}],
 'response': {'communication_strategy': 'Acknowledged breach, working to '
                                        'mitigate risks',
              'incident_response_plan_activated': 'Yes',
              'remediation_measures': 'Strengthened security measures'},
 'threat_actor': 'World Leaks',
 'title': 'World Leaks Ransomware Group Claims Breach of Tata Electronics, '
          'Exposing Apple and Tesla Trade Secrets',
 'type': 'Ransomware, Data Breach'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.