Cyber Incident Victim: Apple Inc.
Date:
Jun 2026
Location:
United States of America
Summary
Hackers exfiltrated over 630 gigabytes of confidential data from Tata Electronics, a key supplier for Apple, and released the files online, exposing details of the upcoming iPhone 18 Pro and its supply chain. The ransomware group World Leaks claimed responsibility, stating the data included component specifications, supplier information and internal photos, though no consumer payment or user data were compromised. The technology firm said it is investigating the leak, which has raised concerns about the security of its relationships with manufacturing partners and could affect efforts to diversify production away from China.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 0 techniques |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On June 12, 2026, the ransomware group World Leaks claimed responsibility for a cybersecurity incident on its dark web leak site, posting more than 200,000 files that together exceeded 630 gigabytes of data. Tata Electronics confirmed that it had experienced a cybersecurity incident and acknowledged the breach publicly. Apple stated that it was concerned about the leak and was conducting an investigation. The leaked files contained detailed information about the iPhone 18 Pro, including specifics of chips on the main circuit board, battery components, camera modules, and which suppliers provide each part, as well as photographs of the device. The data also revealed which suppliers were competing for contracts to supply particular components. World Leaks operates under a hack‑and‑leak model, having previously claimed to have stolen 1.3 terabytes of data from Dell and 1.4 terabytes from Nike in earlier incidents. No consumer payment details or data belonging to Apple users were reported as part of the stolen information.

The breach exposed aspects of Apple’s supply chain that the company had kept confidential, leading to reputational damage for both Tata Electronics and Apple. Apple stated that it was concerned about the leak and was conducting an investigation. Tata Electronics said it has restricted internal access and is reportedly conducting a forensic investigation into the leak. In June, Apple made a series of software updates available to consumers earlier than planned, stating that the updates relate to the speed of artificial intelligence cybersecurity developments, though it is unclear whether they are connected to the breach.
Tata Electronics began iPhone assembly operations in 2023 and rapidly expanded from producing components to handling full device assembly, making it a significant partner in Apple’s shift toward manufacturing in India. As a result, a larger volume of Apple’s sensitive manufacturing data is now stored with Tata Electronics, which experienced the breach. The breach demonstrates how a cybersecurity incident at a supplier can affect a major technology company.
