Tata Electronics data leaked on dark web:Hackers stole Apple Tesla’s secret designs

Tata Group’s company Tata Electronics’ data has been leaked on the dark web. In this cyber attack, hackers have leaked more than 2 lakh secret files of the company on the dark web. These include component designs, specification papers and secret documents of Tata’s two biggest clients – Apple and Tesla. However, Tata Electronics has clarified that this incident has not affected their business operations and all work is continuing normally. World Leaks gang takes responsibility, 630 GB data stolen According to cybersecurity researchers, a ransomware group named ‘World Leaks’ has posted data stolen from Tata Electronics’ system on the dark web. This group had earlier claimed a cyber attack on Nike’s system. According to the website published on the dark net, this leak includes a total of 630 gigabytes (GB) of data, which contains more than 2 lakh files and folders. Apple and Tesla’s ‘Trade Secrets’ Leaked Several folders of Apple have been found in the leaked database, some of which are named “com.apple.factorydata” and some contain material specification information. Additionally, a 52-page document has also been found, which details the quality inspection standards of iPhone circuit board components. Meanwhile, a folder related to Tesla’s parts has been found named “NV36 Chargeport Controller – North America”, which is believed to be Tesla’s upgraded Model Y SUV. Another document from Tesla from the year 2023 has been found which is marked ‘Trade Secret’, this is the assembly document of its revamped Model 3 sedan (Project Highland). Employees’ Passports and Emails Also on Dark Web Indian cybersecurity researcher Rajshekhar Rajaharia, after reviewing these files, stated that this data on the dark web contains not just designs, but also several years of emails, event logs, and copies of passports of Tata employees including foreign nationals. According to another researcher Rakesh Krishnan, this data has been available on the dark web since at least June 10. Tata Received Ransom Demand, Apple Conducting Investigation A source related to the matter revealed that after this cyber attack, Tata Electronics also received calls or messages demanding ransom. Apple is investigating this data breach and a complete analysis is being conducted. However, Tata Electronics has refused to comment on this ransom demand, while Apple and Tesla have also not issued any statement on this. India’s cyber agency CERT-In has also not commented on this yet. 33 Files from Tata’s Hosur Plant Leaked In the data leak, 33 files and folders related to search terms connected to Tata’s main iPhone assembly plant located in Hosur, Tamil Nadu have been found. Tata had informed some employees associated with its iPhone assembly operations about this data breach just last week. It should be noted that Tata Electronics manufactures approximately one-third (33%) of Apple’s total iPhone production in India, while the remaining portion is produced by Foxconn. A New Headache for Apple’s Supply Chain This incident is being considered another new setback for Apple’s supply chain in India. Prior to this, Tata is also under investigation regarding allegations of pollution of agricultural land near a plant in Hosur that manufactures iPhone parts. Under Prime Minister Narendra Modi’s vision to make India a powerhouse of electronics manufacturing, Tata is emerging as Apple’s biggest and most important partner outside China. Earlier last year, Tata Group’s British company Jaguar Land Rover (JLR) was also hit by a cyber attack, which halted production for 6 weeks. What is Dark Web and Ransomware Attack? Dark Web: That hidden part of the internet which is not visible on common search engines like Google or Bing. Special software (like Tor Browser) is required to access it. It is often used for illegal activities and selling data. Ransomware: This is a type of dangerous digital virus (malware) that locks or hacks the computer system of a company or individual. After this, hackers demand hefty ransom by threatening to delete or leak data.